How to secure the application structure in Ember?

F

fsamorodov2015-12-16 11:27:38

JavaScript

fsamorodov, 2015-12-16 11:27:38

Hello!
Here's the deal:
There's an application for business automation on Ember. When a user enters the application, even if he is not yet authorized, he has access to the application structure, which can be used to understand some business logic.
Question: how to organize authorization on the backend so that Ember is loaded only after registration using the backend?
Moreover, Amber must receive information about the session.
Thanks in advance!

Reply

Answer the question

In order to leave comments, you need to log in

1 answer(s)

S

Stanislav Romanov, 2015-12-16
@fsamorodov

It all depends on your backend and the authorization system you use.
Ember should boot up and check the session, and at the same time you can drag the actual data.
If the session is valid, it continues to work, if not, it redirects to the login page. The moment of check can be done in the initializer. It may also be that some routes should be closed to anonymous users, and some should not (for example, help). Then you need to protect the necessary pages at the route level, when it is activated.
Judging by the question, it looks like they didn’t start using ember-simple-auth like that?