Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
I
I
Ilya Livshits2016-10-03 16:13:21
User identification
Ilya Livshits, 2016-10-03 16:13:21

React, Router and Authentication. How best to implement?

Hello. I have SPA on react and router. There is a REST service for authentication. But how to make it safe? I can make a direct request to this service from the client, and in case of successful authorization, I will be allowed to go to the page I need, if not, then redirect. But this is not safe, because you can simply go directly to the desired page. Tell me please?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
K
Konstantin Gromov, 2016-10-03
@Pathgk

This page is not static and is entirely contained in the build, but is built according to the data received on the request corresponding to it? If so, then this request should check the session or token on the server, which are set by the service for authentication. And in case of lack of rights instead of information on the page, display an error. If not, please provide details.

Report
M
Maxim, 2016-10-03
@maxfarseer

The task can be divided into 2 parts:
1) getting a token (session ID or whatever else is needed) from the service.
2) onEnter hook in the router
Sample code:

export default function configRoutes(store) {
  function _ensureAuthenticated(nextState, replace, callback) {
    const { dispatch } = store 
    const { session } = store.getState()
    const { currentUser } = session

    if (!currentUser && localStorage.getItem('token')) {
      dispatch(getCurrentAccount())
    } else if (!localStorage.getItem('token')) {
      replace('/signin')
    }

    callback()
  }

  return (
    <Route component={App}>
      <Route path='/signin' component={SigninContainer} />
      <Route path='/signup' component={SignupContainer} />

      <Route path='/' component={AuthenticatedContainer} onEnter={_ensureAuthenticated}>
        <Route component={ReportContainer}>
          <Route path='/activities' component={ActivitiesContainer} />
          <Route path='/activities/:id' component={CaptionsContainer} />
        </Route>
      </Route>

    </Route>
  )
}

More details can be found in the source . The ConfigRoutes function is called here.

Similar questions
K
Konstantin2015-11-02 23:40:31
How to set up redirection of a user by a link after authorization? 0Reply
P
philpirj2011-12-19 10:28:32
"Glue" accounts when logging in via Vkontakte and Facebook 1Reply
I
Ivan Ignatiev2015-11-06 16:44:45
How, besides the mac address, could the wifi router identify the device? 2Reply
D
divmod422018-03-22 22:45:47
How to implement a php/mysql user system? 1Reply
D
Denis Savitsky2012-04-05 10:40:24
Embedding authorization via OmniAuth in iOS, Android mobile applications? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question