stackoom
  简体   繁体   中英

Angular route authorization & security

 原文  2018-06-01 11:30:52       angular

Question

I am new to angular and I just learned about the routing mechanics and the routing guards to provide authorization to access routes. As a front end framework, this guard mechanic seems insufficient to me to secure my web server, unless I'm failing to understand something, as the restricted 'pages' (routes) are also downloaded during the first connection. What would be the best practice to protect, say, a /admin route ?

1 answers

solution1
 0  2018-06-01 11:39:12

"The restricted pages are also downloaded during first connection". This is not true. Only if your guard interface return true the route will even be loaded.

You can use the CanActivate to check before resolving route.

Example from here : 

import { Injectable }     from '@angular/core';
import { CanActivate }    from '@angular/router';

@Injectable()
export class AuthGuard implements CanActivate {
  canActivate() {
    console.log('AuthGuard#canActivate called');
    return true;
  }
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Angular - BeforeLoginService not responding for route authorization Angular 5 set an authorization header in a protected route Angular 2 Route Guard / Auth Guard Security Angular authorization Angular 6 authorization Spring Security JWT - Postman authentication through Authorization header works but from my Angular front end doesn't work D3 Authorization in angular Keycloak authorization in Angular CORS configuration with Authorization and angular Angular 2: Get Authorization header
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM