Angular 4 Token Based Authentication

The Token based authentication has received expansion over last few years due to RESTful Web APIs, SPA and so on. The Token based authentication is stateless.

Stateless – every transaction is performed as if it was being done for the very first time and there is no previously stored information used for the current transaction.

Token Based Authentication Steps As -

User enters their login credentials and the server verifies the entered credentials. Validating to the entered credentials, It’s correct or not. If the credentials are correct, returns a signed token. This token is stored local storage in the client side. We can also store in session storage or cookie.

Example As –

private _setSession(authResult, profile) {

//Save session data and update login status subject

localStorage.setItem('access_token', authResult.accessToken);

localStorage.setItem('id_token', authResult.idToken);

localStorage.setItem('userProfile', JSON.stringify(profile));

this.setLoggedIn(true);

}

Advantages of Token-Based Authentication -

1. Stateless,

2. Scalable

3. Decoupled

4. JWT is placed in the browsers local storage

5. Protect Cross Domain and CORS

6. Store Data in the JWT

7. Protect XSS and XSRF Protection

Where To Store Tokens?

It does depend on you, where you want to store the JWT. The JWT is placed in your browsers local storage.

Example - Authentication Service [auth.service.ts]

import { Injectable } from '@angular/core';

import { Router } from '@angular/router';

import { BehaviorSubject } from 'rxjs/BehaviorSubject';

import { AUTH_CONFIG } from './auth0-variables';

import { tokenNotExpired } from 'angular2-jwt';

import { UserProfile } from './profile.model';

// Avoid name not found warnings

declare var auth0: any;

@Injectable()

export class AuthService {

// Create Auth0 web auth instance

// @TODO: Update AUTH_CONFIG and remove .example extension in src/app/auth/auth0-variables.ts.example

auth0 = new auth0.WebAuth({

clientID: AUTH_CONFIG.CLIENT_ID,

domain: AUTH_CONFIG.CLIENT_DOMAIN

});

userProfile: UserProfile;

// Create a stream of logged in status to communicate throughout app

loggedIn: boolean;

loggedIn$ = new BehaviorSubject<boolean>(this.loggedIn);

constructor(private router: Router) {

// If authenticated, set local profile property and update login status subject

if (this.authenticated) {

this.userProfile = JSON.parse(localStorage.getItem('profile'));

this.setLoggedIn(true);

}

setLoggedIn(value: boolean) {

// Update login status subject

this.loggedIn$.next(value);

this.loggedIn = value;

}

// Auth0 authorize request

// Note: nonce is automatically generated: https://auth0.com/docs/libraries/auth0js/v8#using-nonce

this.auth0.authorize({

responseType: 'token id_token',

redirectUri: AUTH_CONFIG.REDIRECT,

audience: AUTH_CONFIG.AUDIENCE,

scope: AUTH_CONFIG.SCOPE

});

}

handleAuth() {

// When Auth0 hash parsed, get profile

this.auth0.parseHash((err, authResult) => {

if (authResult && authResult.accessToken && authResult.idToken) {

window.location.hash = '';

this._getProfile(authResult);

this.router.navigate(['/']);

} else if (err) {

this.router.navigate(['/']);

console.error(`Error: ${err.error}`);

}

});

}

private _getProfile(authResult) {

// Use access token to retrieve user's profile and set session

this.auth0.client.userInfo(authResult.accessToken, (err, profile) => {

this._setSession(authResult, profile);

});

}

private _setSession(authResult, profile) {

// Save session data and update login status subject

localStorage.setItem('access_token', authResult.accessToken);

localStorage.setItem('id_token', authResult.idToken);

localStorage.setItem('profile', JSON.stringify(profile));

this.userProfile = profile;

this.setLoggedIn(true);

}

logout() {

// Remove tokens and profile and update login status subject

localStorage.removeItem('access_token');

localStorage.removeItem('id_token');

localStorage.removeItem('profile');

this.userProfile = undefined;

this.setLoggedIn(false);

}

get authenticated() {

// Check if there's an unexpired access token

return tokenNotExpired('access_token');

}

Use of AuthService in the Component Page –

//Use of AuthService in the Component Page.

import { Component } from '@angular/core';

import { AuthService } from './auth/auth.service';

export class Login {

constructor(private authService: AuthService) {

// Check for authentication and handle, if hash present.

authService.handleAuth();

}

I hope you are enjoying with this post! Please share with you friends. Thank you!!

nullinjectorerror no provider for httpclient angular 17

In Angular 17 where the standalone true option is set by default, the app.config.ts file is generated in src/app/ and provideHttpClient(). We can be added to the list of providers in app.config.ts Step 1: To provide HttpClient in a standalone app we could do this in the app.config.ts file, app.config.ts: import { ApplicationConfig } from '@angular/core'; import { provideRouter } from '@angular/router'; import { routes } from './app.routes'; import { provideClientHydration } from '@angular/platform-browser'; //This (provideHttpClient) will help us to resolve the issue import {provideHttpClient} from '@angular/common/http'; export const appConfig: ApplicationConfig = { providers: [ provideRouter(routes), provideClientHydration(), provideHttpClient () ] }; The appConfig const is used in the main.ts file, see the code, main.ts : import { bootstrapApplication } from '@angular/platform-browser'; import { appConfig } from ...

How To convert JSON Object to String?

To convert JSON Object to String - To convert JSON Object to String in JavaScript using “JSON.stringify()”. Example – let myObject =[ 'A' , 'B' , 'C' , 'D' ] JSON . stringify ( myObject ); ü Stayed Informed – Object Oriented JavaScript Interview Questions I hope you are enjoying with this post! Please share with you friends!! Thank you!!!

List of Countries, Nationalities and their Code In Excel File

Download JSON file for this List - Click on JSON file Countries List, Nationalities and Code Excel ID Country Country Code Nationality Person 1 UNITED KINGDOM GB British a Briton 2 ARGENTINA AR Argentinian an Argentinian 3 AUSTRALIA AU Australian an Australian 4 BAHAMAS BS Bahamian a Bahamian 5 BELGIUM BE Belgian a Belgian 6 BRAZIL BR Brazilian a Brazilian 7 CANADA CA Canadian a Canadian 8 CHINA CN Chinese a Chinese 9 COLOMBIA CO Colombian a Colombian 10 CUBA CU Cuban a Cuban 11 DOMINICAN REPUBLIC DO Dominican a Dominican 12 ECUADOR EC Ecuadorean an Ecuadorean 13 EL SALVA...

Encryption and Decryption Data/Password in Angular

You can use crypto.js to encrypt data. We have used 'crypto-js'. Follow the below steps, Steps 1 – Install CryptoJS using below NPM commands in your project directory npm install crypto-js --save npm install @types/crypto-js –save After installing both above commands it looks like – NPM Command 1 -> npm install crypto-js --save NPM Command 2 -> npm install @types/crypto-js --save Steps 2 - Add the script path in “ angular.json ” file. "scripts" : [ "../node_modules/crypto-js/crypto-js.js" ] Steps 3 – Create a service class “ EncrDecrService ” for encrypts and decrypts get/set methods . Import “ CryptoJS ” in the service for using encrypt and decrypt get/set methods . import { Injectable } from ...

Angular Testing Questions and Answers | 9, 8, 7, 6

What Is Testing? The testing is a tools and techniques for a unit and integration testing Angular applications . Why Test? Tests are the best ways to prevent software bugs and defects. How to Setup Test in Angular Project? Angular CLI install everything you need to test an Angular application. This CLI command takes care of Jasmine and karma configuration for you. Run this CLI command- ng test The test file extension must be “.spec.ts” so that tooling can identify the test file. You can also unit test your app using other testing libraries and test runners. Types of Test – The all great developer knows his/her testing tools use. Understanding your tools for testing is essential before diving into writing tests. The Testing depends on your project requirements and the project cost. The types of Testing looks like - 1. Unit Test 2. Integration Test 3. En...

Anil Singh | Code-sample.com

Search This Blog