node.js - Session and Login User data with Node and AngularJS -

-

i need know if authentication , session management method right.

i using session management when receive successful auth. node server. store user data(without trace of pass.) in $window.sessionstorage , if user marked rememberme(checkbox), store data in $window.localstorage too.

through able data in different controllers. though read somewhere session implementation @ server(nodejs) side possible. not sure how use session along jsontoken authentication.

i using https://jasonwatmore.com/post/2015/12/09/mean-stack-user-registration-and-login-example.aspx learning example not understand it.

/app/app.js

why in run() method ?

    // add jwt token default auth header     $http.defaults.headers.common['authorization'] = 'bearer ' + $window.jwttoken;

and this:

// manually bootstrap angular after jwt token retrieved server $(function () {     // jwt token server     $.get('/app/token', function (token) {         window.jwttoken = token;          angular.bootstrap(document, ['app']);     }); });

/controllers/app.controller.js

// use session auth secure angular app files router.use('/', function (req, res, next) {     if (req.path !== '/login' && !req.session.token) {         return res.redirect('/login?returnurl=' + encodeuricomponent('/app' + req.path));     }      next(); });  // make jwt token available angular app router.get('/token', function (req, res) {     res.send(req.session.token); });  // serve angular app files '/app' route router.use('/', express.static('app'));

so using session server-side jwt kind of defeats purpose of using jwt. jwt's awesome in number of ways, 1 of ways great, regardless server intercepts request, can verify user.

if put in session, have make sure client keeps going same server session saved in memory on machine. there plenty of ways around that, again kind of defeats purpose of json web token.

what did authentication angular/node/jwt passed jwt in header every time, , middleware intercepted with:

req.header.whatever_my_tokens_name_is

Comments

Post a Comment

Popular posts from this blog

java - Run spring boot application error: Cannot instantiate interface org.springframework.context.ApplicationListener -

-
i have spring project , try make use spring boot , run @ embadded tomcat following : https://spring.io/guides/gs/rest-service/ this application //@configuration //@enableaspectjautoproxy @springbootapplication @componentscan(basepackages = "gux.prome") public class application { public static void main(string[] args) { springapplication.run(application.class, args); } } if use maven command: mvn spring-boot:run , project starts fine, need debug , run main method @ intelij, exception occurs: exception in thread "main" java.lang.illegalargumentexception: cannot instantiate interface org.springframework.context.applicationlistener : org.springframework.boot.logging.classpathloggingapplicationlistener @ org.springframework.boot.springapplication.createspringfactoriesinstances(springapplication.java:414) @ org.springframework.boot.springapplication.getspringfactoriesinstances(springapplication.java:394) @ org.springframework.bo...
Read more

reactjs - React router and this.props.children - how to pass state to this.props.children -

-
i'm using react-router first time , don't know how think in yet. here's how i'm loading components in nested routes. entry point .js reactdom.render( <router history={hashhistory} > <route path="/" component={app}> <route path="models" component={content}> </route> </router>, document.getelementbyid('app') ); app.js render: function() { return ( <div> <header /> {this.props.children} </div> ); } so child of app content component sent in. i'm using flux , app.js has state , listens changes, don't know how pass state down this.props.children. before using react-router app.js defines children explicitly, passing state natural don't see how now. using couple of react helper methods can add state, props , whatever else this.props.children render: function() { var children = react.ch...
Read more

Excel VBA "Microsoft Windows Common Controls 6.0 (SP6)" Location Changes -

-
i have excel workbook used generate quotations customers. there main page user inputs data, , there buttons generate various pdfs , send them customer. however, 1 user consistently getting error preventing generating , sending pdfs. i beleive "microsoft windows common controls 6.0 (sp6)". it's installed on users' computers. on mine, location "c:\windows\syswow64\mscomctl.ocx" on others "c:\windows\system32\mscomctl.ocx" the user experiencing issues on 32-bit machine, "mscomctl.ocx" file should in system32. have manually put in there, , pointed common controls reference in vba it. issue seems keep reverting looking in syswow64. since folder doesn't exist, can't find it, , can't produce pdfs. i thought perhaps issue user running older version of office (2007) there users on 2013 , 2016. thought perhaps mixture of 64-bit , 32-bit users. user gets sent workbook other users (as quotation process goes further, gets passed ...
Read more