-
Notifications
You must be signed in to change notification settings - Fork 1
Docs: Auth
- Introduction
- Installation
- Overview
-
Key Concepts
- State Management
- Authentication Workflow
- Cookie Management
- HTTP Interceptors
- Callback Component
-
Core Components
AuthModule- Components (
AuthCallbackComponent)
-
Key Services
AuthFacade
-
Usage
- Authentication Workflow
- Accessing State Management
- Utilizing HTTP Interceptors
- API Reference
- Examples
- Testing
The Angular Auth Library provides an authentication framework designed to integrate OpenID Connect workflows with Angular applications. Using NgRx for centralized state management, it offers a streamlined approach to handling login, logout, session data, and user information. The library supports advanced features like effects-driven workflows, cookie-based session management, and interceptors for handling unauthorized access scenarios.
Install the library and its dependencies using npm:
npm install oidc-client ngrxThe library focuses on creating robust authentication workflows through state management and closely integrates with NgRx to handle asynchronous actions and user sessions efficiently.
- State Management: Centralized store for managing user state and session data.
- Authentication Workflow: Support for login, logout, and authentication callbacks using OpenID Connect.
-
Cookie Management: Manage and persist session data securely with the
Cookiemodel. - HTTP Interceptors: Handles unauthorized requests (e.g., 401 status codes) seamlessly.
- Facades: Simplifies interaction with the store and authentication workflows.
The library uses NgRx to manage authentication-related data in a centralized store. It provides the following:
- Reducers to process state updates based on dispatched actions.
- Selectors for querying authentication state, such as accessing user details or session tokens.
Authentication is handled using OpenID Connect via the oidc-client library:
- Login Action: Initiates user login flow.
- Logout Action: Signs the user out and clears session data.
- Authentication Callback: Handles redirection back to the application post-login and processes tokens.
Cookies are used to persist session data with configurable expiration policies for enhanced security.
The library includes an interceptor (LogoutInterceptor) that listens for 401 Unauthorized responses and handles application-level logout automatically.
The AuthCallbackComponent simplifies post-login workflows. It integrates with the facade to finalize authentication and redirects users to their intended destinations.
The AuthModule encapsulates the library's functionality, including state management, metadata registration, and providing the AuthFacade.
Features:
- Registers reducer and facade services.
- Integrates
AuthCallbackComponent.
Configuration Example:
import { AuthModule } from './auth.module';
@NgModule({
imports: [
AuthModule.forRoot(),
],
})
export class AppModule {}This component handles authentication callbacks after OpenID Connect redirects. It finalizes user authentication and navigates the user to the appropriate application route.
Usage Example:
<classifieds-ui-auth-callback></classifieds-ui-auth-callback>The AuthFacade provides a unified way to interact with authentication-related workflows. It abstracts the NgRx actions, selectors, and state management for ease of use.
Features:
- Observables for accessing user data, authentication tokens, and session details.
- Methods for login, logout, setting user data, and completing authentication.
API:
| Method | Description |
|---|---|
login() |
Dispatches the Login action to initiate authentication flow. |
logout() |
Signs the user out using the Logout action. |
setUser(user: User) |
Updates the store with authenticated user data. |
completeAuthentication() |
Finalizes authentication flow after a redirect. |
Usage Example:
import { AuthFacade } from './lib/+state/auth.facade';
constructor(private authFacade: AuthFacade) {}
ngOnInit() {
this.authFacade.getUser$.subscribe(user => console.log(user));
}
onLogin() {
this.authFacade.login();
}
onLogout() {
this.authFacade.logout();
}Simple login and logout workflows using the facade:
Component Usage:
import { AuthFacade } from './lib/+state/auth.facade';
constructor(private authFacade: AuthFacade) {}
onLogin() {
this.authFacade.login();
}
onLogout() {
this.authFacade.logout();
}You can subscribe to state observables for accessing user data, tokens, and more.
Example:
authFacade.getUser$
.subscribe(user => console.log('Authenticated user:', user));
authFacade.token$
.subscribe(token => console.log('Authentication token:', token));Integrate LogoutInterceptor to handle unauthorized access:
App Module Configuration:
import { HTTP_INTERCEPTORS } from '@angular/common/http';
import { LogoutInterceptor } from './lib/http-interceptors/logout-interceptor';
@NgModule({
providers: [
{ provide: HTTP_INTERCEPTORS, useClass: LogoutInterceptor, multi: true },
],
})
export class AppModule {}- AuthModule: Core module encapsulating library functionalities.
- AuthFacade: Centralized service for interacting with authentication workflows.
- AuthCallbackComponent: Handles OpenID Connect authentication redirects.
-
UserInfo: Represents basic user information like
sub(identifier). - PublicUserProfile: Represents publicly accessible user profile details.
- Cookie: Represents cookie data structure for managing session information.
Use the AuthCallbackComponent for handling post-login redirects:
<classifieds-ui-auth-callback></classifieds-ui-auth-callback>Handle login and logout workflows with facades:
import { AuthFacade } from './lib/+state/auth.facade';
constructor(private authFacade: AuthFacade) {}
onLogin() {
this.authFacade.login();
}
onLogout() {
this.authFacade.logout();
}Unit tests included for facades, reducers, selectors, and components ensure functionality by validating outcomes against test cases.
Example Test for Reducer:
import { reducer, initialState } from './auth.reducer';
import { SetUser } from './auth.actions';
describe('Auth Reducer', () => {
it('should update state with SetUser action', () => {
const user = { sub: '12345' };
const action = new SetUser(user);
const state = reducer(initialState, action);
expect(state.user).toEqual(user);
});
});To run tests, use:
npm run testThe Angular Auth Library simplifies authentication workflows by using NgRx-based state management, OpenID Connect, and facades. It is flexible, tested, and scalable, providing developers with a streamlined authentication solution for modern Angular applications.
Feel free to contribute or report issues to improve the library further!