Reputation: 166
Angular app protection and user authentication
Implementation of user authentication in Angular app means that application's javascript must be available to user before he is authenticated. That is the problem. What is the correct way to make this happen with Angular? Do I need to implement a separate app for authentication and then redirect users to the base app?
Upvotes: 0
Views: 62
Answers (1)
Reputation: 26
Authentication should be on server level. The angular app should be responsible for only the capturing of credentials, possibly encrypting it, and sending an authentication request to the server with those credentials. The server response(possibly a token) could be used for any further communications with the server to identify the logged in user and its available services.
If the application itself does not contain any private business logic, I don't see value in keeping the application away from the end user even before authentication. On that note, however, take a look at tasks that are used to minify javascript code. This may be second best :)
Upvotes: 1
Related Questions
- Protect angular application with password
- Authentication in Angular
- Security in front-end applications
- Angular - authentication service
- Angular - Protected Pages
- Handling authentication with angular front-end -> How to protect specific pages?
- Authorization in AngularJS
- Security of AngularJS applications
- AngularJS app: How to properly implement authentication and authorization
- Authentication API for Angular.js App