Demystifying Token Authentication in NgRx (Angu...

August 02, 2019

200

Demystifying Token Authentication in NgRx (Angular Denver 2019)

So, you’ve got a shiny new Angular application and you’re thrilled to be managing your state with NgRx. You’ve got your store, reducers, and actions set up, but your boss asks you an innocent question during your first demo: “How do I log in?” You stare blankly, realizing that you’ve never thought about that. Isn’t it the same as in a regular Angular application? How does authentication in NgRx work, anyway? (And not just tutorial authentication — real authentication using tokens!)

I’ve got your back in this talk. You’ll learn not only the HOW of token-based authentication in NgRx, but also the WHY. We’ll talk about managing app-wide authentication state through the store, dispatching actions through effects, and keeping your application safe using authentication best practices.

Sam Julien

August 02, 2019

Tweet

More Decks by Sam Julien

See All by Sam Julien

Where to Start with AWS as a Developer

0

380

The Counterintuitive Secret to Shipping Better Articles Faster

0

1.2k

Becoming a “Secret” Agent: Securing Your GraphQL Backend with JWTs (2021)

0

94

GroupBy: RxJS’ Secret Weapon for Complex UIs

0

180

Finding the Right Path from AngularJS to Angular

0

160

Building a Learning System

0

260

A Recipe to Power Up Gatsby with Auth

0

170

Power Up Gatsby with Auth!

0

180

The Role of Effects in NgRx Authentication

1

780

Other Decks in Technology

See All in Technology

TanStack Routerに移行するのかいしないのかい、どっちなんだい！ / Are you going to migrate to TanStack Router or not? Which one is it?

0

580

リンクアンドモチベーションソフトウェアエンジニア向け紹介資料 / Introduction to Link and Motivation for Software Engineers

4

300k

Lambdaと地方とコミュニティ

2

370

ドメイン名の終活について - JPAAWG 7th -

33

20k

SREによる隣接領域への越境とその先の信頼性

shonansurvivors

2

520

Taming you application's environments

0

180

サイバーセキュリティと認知バイアス：対策の隙を埋める心理学的アプローチ

0

380

OCI Security サービス概要

oracle4engineer

0

6.5k

開発生産性を上げながらビジネスも30倍成長させてきたチームの姿

2

1.7k

dev 補講: プロダクトセキュリティ / Product security overview

1

2.3k

[FOSS4G 2024 Japan LT] LLMを使ってGISデータ解析を自動化したい！

1

210

AIチャットボット開発への生成AI活用

0

170

Featured

See All Featured

Making the Leap to Tech Lead

133

8.9k

Designing for Performance

604

68k

Evolution of real-time – Irina Nazarova, EuRuKo, 2024

4

370

Helping Users Find Their Own Way: Creating Modern Search Experiences

29

2.3k

VelocityConf: Rendering Performance Case Studies

325

24k

The MySQL Ecosystem @ GitHub 2015

250

12k

Dealing with People You Can't Stand - Big Design 2015

364

24k

Unsuck your backbone

668

57k

Stop Working from a Prison Cell

267

20k

Easily Structure & Communicate Ideas using Wireframe

191

16k

Raft: Consensus for Rubyists

136

6.6k

How to train your dragon (web standard)

88

5.7k

Transcript

Demystifying Token Authentication in NgRx
Great, but how do I log in? @samjulien
What goes where? @samjulien
Sam Julien @samjulien Technical Community Manager at Auth0 GDE &
Angular Collaborator UpgradingAngularJS.com @samjulien
@samjulien State Actions Effects
State
What goes in the store? @samjulien
SHARI @samjulien Shared Impacted Retrieved Available Hydrated
export interface State { isAuthenticated: boolean; userProfile: UserProfile; accessToken: AccessToken;
} @samjulien
export interface State { isAuthenticated: boolean; userProfile: UserProfile; accessToken: AccessToken;
} @samjulien
export interface State { isAuthenticated: boolean; userProfile: UserProfile; accessToken: AccessToken;
} @samjulien
export interface State { isAuthenticated: boolean; userProfile: UserProfile; accessToken: AccessToken;
} @samjulien
Don’t keep access tokens in local storage! @samjulien
Actions
@samjulien
@samjulien
Start login Handle redirect Log in to provider
Handle redirect Success Error
@samjulien Good Action Hygiene(TM)
@samjulien Write actions first Don’t reuse actions Clarity > Brevity
Good Action Hygiene(TM)
export const login = createAction( '[Login Page] Start Log In’
); @samjulien
export const handleRedirect = createAction( '[Auth API] Handle Redirect' );
@samjulien
export const loginSuccess = createAction( '[Auth API] Login Success’, props<{
redirectUrl: string }>() ); export const loginFailure = createAction( '[Auth API] Login Failure', props<{ error: Error }>() ); @samjulien
export const loginSuccess = createAction( '[Auth API] Login Success’, props<{
redirectUrl: string }>() ); export const loginFailure = createAction( '[Auth API] Login Failure', props<{ error: Error }>() ); @samjulien
export const loginSuccess = createAction( '[Auth API] Login Success’, props<{
redirectUrl: string }>() ); export const loginFailure = createAction( '[Auth API] Login Failure', props<{ error: Error }>() ); @samjulien
export const loginSuccess = createAction( '[Auth API] Login Success’, props<{
redirectUrl: string }>() ); export const loginFailure = createAction( '[Auth API] Login Failure', props<{ error: Error }>() ); @samjulien
export const loginSuccess = createAction( '[Auth API] Login Success’, props<{
redirectUrl: string }>() ); export const loginFailure = createAction( '[Auth API] Login Failure', props<{ error: Error }>() ); @samjulien
Effects
Authentication service will be very thin.
Start login Handle redirect Log in to provider
Handle redirect Success Error
login$ = createEffect( () => this.actions$.pipe( ofType(AuthActions.login), tap(() => this.authService.login())
), { dispatch: false } ); @samjulien
login$ = createEffect( () => this.actions$.pipe( ofType(AuthActions.login), tap(() => this.authService.login())
), { dispatch: false } ); @samjulien
login$ = createEffect( () => this.actions$.pipe( ofType(AuthActions.login), tap(() => this.authService.login())
), { dispatch: false } ); @samjulien
login$ = createEffect( () => this.actions$.pipe( ofType(AuthActions.login), tap(() => this.authService.login())
), { dispatch: false } ); @samjulien
handleRedirect$ = createEffect(() => this.actions$.pipe( ofType(AuthActions.handleRedirect), exhaustMap(() => { @samjulien
) ); ... })
handleRedirect$ = createEffect(() => this.actions$.pipe( ofType(AuthActions.handleRedirect), exhaustMap(() => { @samjulien
) ); ... })
handleRedirect$ = createEffect(() => this.actions$.pipe( ofType(AuthActions.handleRedirect), exhaustMap(() => { @samjulien
) ); ... })
handleRedirect$ = createEffect(() => this.actions$.pipe( ofType(AuthActions.handleRedirect), exhaustMap(() => { @samjulien
) ); ... })
this.actions$.pipe( ofType(AuthActions.handleRedirect), exhaustMap(() => { @samjulien }) // handle redirect
and process tokens this.authService.handleRedirect.pipe( map(({ redirectUrl }) => AuthActions.loginSuccess({ redirectUrl })), catchError(({ error }) => AuthActions.loginFailure({ error })) );
this.actions$.pipe( ofType(AuthActions.handleRedirect), exhaustMap(() => { @samjulien }) // handle redirect
and process tokens this.authService.handleRedirect.pipe( map(({ redirectUrl }) => AuthActions.loginSuccess({ redirectUrl })), catchError(({ error }) => AuthActions.loginFailure({ error })) );
this.actions$.pipe( ofType(AuthActions.handleRedirect), exhaustMap(() => { @samjulien }) // handle redirect
and process tokens this.authService.handleRedirect.pipe( map(({ redirectUrl }) => AuthActions.loginSuccess({ redirectUrl })), catchError(({ error }) => AuthActions.loginFailure({ error })) );
this.actions$.pipe( ofType(AuthActions.handleRedirect), exhaustMap(() => { @samjulien }) // handle redirect
and process tokens this.authService.handleRedirect.pipe( map(({ redirectUrl }) => AuthActions.loginSuccess({ redirectUrl })), catchError(({ error }) => AuthActions.loginFailure({ error })) );
loginSuccess$ = createEffect( () => this.actions$.pipe( ofType(AuthActions.loginSucess), tap(({ redirectUrl })
=> this.router.navigate([redirectUrl])) ), { dispatch: false } ); @samjulien
loginSuccess$ = createEffect( () => this.actions$.pipe( ofType(AuthActions.loginSucess), tap(({ redirectUrl })
=> this.router.navigate([redirectUrl])) ), { dispatch: false } ); @samjulien
loginSuccess$ = createEffect( () => this.actions$.pipe( ofType(AuthActions.loginSucess), tap(({ redirectUrl })
=> this.router.navigate([redirectUrl])) ), { dispatch: false } ); @samjulien
loginSuccess$ = createEffect( () => this.actions$.pipe( ofType(AuthActions.loginSucess), tap(({ redirectUrl })
=> this.router.navigate([redirectUrl])) ), { dispatch: false } ); @samjulien
loginFailure$ = createEffect( () => this.actions$.pipe( ofType(AuthActions.loginFailure), tap(({ error })
=> { this.loggingService.error(error); this.router.navigate(['/']); }) ), { dispatch: false } ); @samjulien
loginFailure$ = createEffect( () => this.actions$.pipe( ofType(AuthActions.loginFailure), tap(({ error })
=> { this.loggingService.error(error); this.router.navigate(['/']); }) ), { dispatch: false } ); @samjulien
loginFailure$ = createEffect( () => this.actions$.pipe( ofType(AuthActions.loginFailure), tap(({ error })
=> { this.loggingService.error(error); this.router.navigate(['/']); }) ), { dispatch: false } ); @samjulien
loginFailure$ = createEffect( () => this.actions$.pipe( ofType(AuthActions.loginFailure), tap(({ error })
=> { this.loggingService.error(error); this.this.router.navigate(['/']); }) ), { dispatch: false } ); @samjulien
@samjulien State Actions Effects
samj.im/angular-denver @samjulien
samj.im/angular-denver Thank you! @samjulien