UNPKG

@first-line/firstline-angular

Version:

Firstline SDK for Angular Single Page Applications (SPA)

github.com/firstline-idp/firstline-angular

firstline-idp/firstline-angular

171 lines (132 loc) 5.18 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
# Firstline Angular This library enables you to add authentication to your Angular app. ## Helpful resources - [Quick setup](https://docs.firstline.sh/quicksetup/angular) - our guide for quickly adding login, logout and user information to an Angular app using Firstline. - [Angular sample app](https://github.com/firstline-idp/sample-firstline-angular) - a full-fledged Angular application integrated with Firstline. - [Firstline docs](https://docs.firstline.sh) - explore our docs site and learn more about Firstline. ## Getting started ### Setup Firstline Application & API 1. Follow the [Quick setup](https://docs.firstline.sh/quicksetup/angular) to configure a Firstline Application. 2. Add a Firstline API as shown in [Secure API](https://docs.firstline.sh/secureapi). **Important:** Don't forget to configure the Application URIs. ### Installation Using npm: ```sh npm install @first-line/firstline-angular ``` Using yarn: ```sh yarn add @first-line/firstline-angular ``` **Hint:** You can also try out our [Angular sample app](https://github.com/firstline-idp/sample-firstline-angular). ### Configuration Add the following code to your Angular project. Replace **DOMAIN**, **API_IDENTIFIER** and **CLIENT_ID** with the settings you configured in the setup step. You can also find them in the Application's and API's "Configure" tab in your dashboard. Furthermore, replace **API_URL** with the base URL of your secured API endpoints. For example, by specifying `http://localhost:8080/*` all calls to endpoints that start with `http://localhost:8080` have an Authorization header. ```ts // app.module.ts import { NgModule } from '@angular/core'; import { AuthModule } from '@first-line/firstline-angular'; @NgModule({ // ... imports: [ AuthModule.forRoot({ domain: 'DOMAIN', audience: 'API_IDENTIFIER', // = audience client_id: 'CLIENT_ID', redirect_uri: window.location.origin, logout_uri: `${window.location.origin}/logout`, // or window.location.origin to redirect back to home after logout httpInterceptor: { allowedList: [ 'API_URL/*' ] } }), ] }) export class AppModule {} ``` ### Add login, logout, isAuthenticated & user Implement the following component in your frontend and you have a fully functional login/logout. ```ts // home.component.ts import { Component } from '@angular/core'; import { AuthService } from '@first-line/firstline-angular'; @Component({ selector: 'app-home', templateUrl: './home.component.html', styleUrls: ['./home.component.css'] }) export class NavBarComponent { constructor(public auth: AuthService) { } loginWithRedirect() { this.auth.loginWithRedirect(); } logout() { this.auth.logout(); } } ``` ```html <!-- home.component.html --> <div class="container" *ngIf="auth.isLoading$ | async; else loaded"> <app-loading></app-loading> </div> <ng-template #loaded> <div class="container" *ngIf="auth.user$ | async as user; else homesignin"> <h1 class="text-2xl">Welcome {{user.email}}.</h1> <button (click)="logout()">Logout</button> </div> <ng-template #homesignin> <h1>Please sign-in </h1> <button (click)="loginWithRedirect()">Login</button> </ng-template> </ng-template> ``` You can use the auth variable to - log in - log out - check if the user is signed in - retrieve the logged in user ### Make a secured backend call You now only need to implement the API call. Firstline will automatically inject an Authorization header into all API calls that have a URL starting with `API_URL` (that you configured above). ```ts // api.service.ts import { Injectable } from '@angular/core'; import { HttpClient } from '@angular/common/http'; @Injectable({ providedIn: 'root', }) export class ApiService { constructor(private http: HttpClient) {} loadPosts$() { return this.http.get('API_URL/posts'); } } ``` In this example, we assume that the API endpoint http://localhost:8080/posts exists. ### Protect a page Create a component `SecureComponent` with secure UI content. Add the following code to `app-routing.module.ts`. If you have implemented everything correctly, unauthenticated users can no longer access `/secured`. ```ts // app-routing.module.ts import { NgModule } from '@angular/core'; import { Routes, RouterModule } from '@angular/router'; import { HomeComponent } from './pages/home/home.component'; import { SecuredComponent } from './pages/secured/secured.component'; import { LogoutComponent } from './pages/logout/logout.component'; import { AuthGuard } from '@first-line/firstline-angular'; const routes: Routes = [ { path: '', component: HomeComponent, pathMatch: 'full' }, { path: 'logout', component: LogoutComponent }, { // secured page: path: 'secured', component: SecuredComponent, canActivate: [AuthGuard], } ]; @NgModule({ imports: [RouterModule.forRoot(routes, {})], exports: [RouterModule], }) export class AppRoutingModule {} ```