UNPKG

sensei-uaepass

Version:

πŸ₯‹ Master of UAE Pass integration! Angular OAuth 2.0 (PKCE) client with sensei-level signals-based state management, multi-language support, and elegant UI components.

github.com/comrade1996/sensei-uaepass

comrade1996/sensei-uaepass

224 lines (164 loc) β€’ 7.13 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
# πŸ₯‹ Sensei UAE Pass Master of UAE Pass integration! Angular OAuth 2.0 (PKCE) client with sensei-level signals-based state management and standalone components. **Based on official UAE Pass documentation**: [https://docs.uaepass.ae/feature-guides/authentication/web-application](https://docs.uaepass.ae/feature-guides/authentication/web-application) ## Features - πŸ” **OAuth 2.0 Integration** - Complete UAE Pass OAuth 2.0 flow support with PKCE - πŸš€ **Angular 19+ Support** - Built for modern Angular with signals-based state management - πŸ”§ **Easy Configuration** - Simple setup with dependency injection - 🌐 **Proxy Support** - Built-in proxy configuration for secure token exchange - πŸ“ **Comprehensive Types** - Full TypeScript interfaces for UAE Pass API - πŸ›‘οΈ **Security First** - Proper PKCE validation and CSRF protection - πŸ“Š **Signals-Based** - Reactive state management with Angular signals - πŸ›οΈ **Official Compliance** - Based on official UAE Pass documentation - 🎌 **Standalone Components** - Modern Angular architecture ## Install ```bash npm install sensei-uaepass ``` Peer deps: `@angular/core`, `@angular/common`, `rxjs`. Ensure HttpClient is provided in your app. ## Provide configuration Add the provider to your application (e.g. `app.config.ts`). ```ts import { provideHttpClient, withFetch } from "@angular/common/http"; import { provideUaePass, UaePassLanguageCode, UaePassStorageMode } from "sensei-uaepass"; export const appConfig = { providers: [ provideHttpClient(withFetch()), provideUaePass({ clientId: "<CLIENT_ID>", redirectUri: "https://your.app/uae-pass/callback", isProduction: false, language: UaePassLanguageCode.En, scope: "urn:uae:digitalid:profile:general", tokenProxyUrl: "/api/uae-pass/token", // recommended userInfoProxyUrl: "/api/uae-pass/userinfo", storage: UaePassStorageMode.Session, }), ], }; ``` ## Add routes ```ts import { Routes } from "@angular/router"; import { UaePassCallbackComponent } from "sensei-uaepass"; export const routes: Routes = [ // ... { path: "uae-pass/callback", component: UaePassCallbackComponent }, ]; ``` ## Use the login button ```html <uae-pass-login-button [label]="'Sign in with UAE PASS'" [busyLabel]="'Signing in…'" [logoSrc]="'/assets/uae-pass.svg'" (pressed)="onPressed()"></uae-pass-login-button> ``` The button calls `redirectToAuthorization()` for you. Alternatively, inject `UaePassAuthService` and call it directly. ## Handle callback result (optional) `UaePassCallbackComponent` emits outputs you can use to react: ```html <uae-pass-callback (success)="onLogin()" (failed)="onLoginError($event)"></uae-pass-callback> ``` You can also handle programmatically: ```ts constructor(private auth: UaePassAuthService) {} ngOnInit() { this.auth.handleRedirectCallback(); } ``` ## Service API ### Signals (Reactive State) - `status(): Signal<UaePassAuthStatus>` - Current authentication status - `tokens(): Signal<UaePassTokens|null>` - Access and refresh tokens - `profile(): Signal<UaePassUserProfile|null>` - User profile information - `error(): Signal<string|null>` - Last error message - `isAuthenticated(): Signal<boolean>` - Computed authentication state ### Methods - `redirectToAuthorization(): Promise<void>` - Redirect to UAE Pass login - `handleRedirectCallback(url?: string): Promise<void>` - Handle callback from UAE Pass - `logout(): void` - Logout and clear session - `resetError(): void` - Clear error state ## Proxy Server Setup ### Why Use a Proxy Server? The proxy server is **highly recommended** for security reasons: 1. **Client Secret Protection** - Keeps your client secret secure on the server-side 2. **CORS Handling** - Avoids cross-origin issues with UAE Pass APIs 3. **Token Security** - Prevents exposure of sensitive tokens in browser 4. **Request Validation** - Adds an extra layer of validation ### Backend Alternatives You can replace the proxy server with any backend technology: #### Node.js/Express Example ```javascript app.post("/api/uae-pass/token", async (req, res) => { const { code, redirect_uri, code_verifier } = req.body; const params = new URLSearchParams({ grant_type: "authorization_code", client_id: "your-client-id", client_secret: "your-client-secret", code, redirect_uri, code_verifier, }); const response = await fetch("https://stg-id.uaepass.ae/idshub/token", { method: "POST", headers: { "Content-Type": "application/x-www-form-urlencoded" }, body: params.toString(), }); const data = await response.json(); res.json(data); }); ``` #### ASP.NET Core Example ```csharp [HttpPost("api/uae-pass/token")] public async Task<IActionResult> ExchangeToken([FromBody] TokenRequest request) { var parameters = new Dictionary<string, string> { ["grant_type"] = "authorization_code", ["client_id"] = "your-client-id", ["client_secret"] = "your-client-secret", ["code"] = request.Code, ["redirect_uri"] = request.RedirectUri, ["code_verifier"] = request.CodeVerifier }; var content = new FormUrlEncodedContent(parameters); var response = await client.PostAsync("https://stg-id.uaepass.ae/idshub/token", content); var result = await response.Content.ReadAsStringAsync(); return Ok(JsonSerializer.Deserialize<object>(result)); } ``` ## Notes - For security, prefer a backend proxy for the token exchange (`tokenProxyUrl`), to avoid exposing client secrets and to handle CORS. - `storage: UaePassStorageMode.Session | Local | None` controls persistence of tokens/profile across reloads. - `acr_values` defaults to web flow in browsers. ## Demo A demo application is included in this workspace to showcase the library: ```bash # Build the library first npm run build:lib # Start the demo app npm run start:demo # Start the proxy server (in another terminal) node proxy-server.js ``` The demo shows: - UAE Pass login button with enum-based configuration - Real-time authentication status display - User profile and token information - Proper routing with callback handling ### Demo Configuration The demo uses staging environment with these settings: - `clientId: 'sandbox_stage'` - `redirectUri: 'http://localhost:4200/uae-pass/callback'` - `language: UaePassLanguageCode.En` - `storage: UaePassStorageMode.Session` ## Enums All commonly used string unions are exposed as enums for type safety: - `UaePassAuthStatus` β€” Idle, Authorizing, ExchangingToken, Authenticated, Error, LoggedOut - `UaePassStorageMode` β€” None, Session, Local - `UaePassAcr` β€” Web, MobileOnDevice - `UaePassLanguageCode` β€” En, Ar - `OAuthResponseType` β€” Code - `CodeChallengeMethod` β€” S256 - `OAuthGrantType` β€” AuthorizationCode ## Resources - πŸ“– [Complete Documentation](https://sensei-5.gitbook.io/sensei-uaepass/) - πŸ”— [NPM Package](https://www.npmjs.com/package/sensei-uaepass) - πŸ“š [Official UAE Pass Documentation](https://docs.uaepass.ae/) - πŸš€ [UAE Pass Onboarding Guide](https://docs.uaepass.ae/getting-onboarded-with-uaepass)