angularjs - Ionic/Laravel App Client Side Auth Management -

-


angularjs - Ionic/Laravel App Client Side Auth Management -

i have been fumbling around different implementations , ideas work, sense not doing dry or smart be. i've been next "tutorial" angular auth

so, have functional laravel (4.2) end set resource routes protected oauth filter. using password grant , working fine there. i've got log in/out routes set , able sign in ionic app , obtain , access_token , refresh_token laravel fine. obtaining new access_tokens using refesh_token works fine well. but, having issues trying figure out how correctly handle next things in ionic:

make sure access_token hasn't expired before user hits ionic state consume resource end. handle case user's access_token & refresh token have both expired requiring them log in laravel end in order obtain new pair of access & refresh tokens. have user "log in" when need obtain new access_token & refresh token (or first registering) route, oauth/access_token, requires params {username, password}.

what tried

in article mentioned earlier, sets rootscope watcher in run module watches statechangestart event so.

$rootscope.$on('$statechangestart', function (event, next) { var authorizedroles = next.data.authorizedroles; if (!authservice.isauthorized(authorizedroles)) { event.preventdefault(); if (authservice.isauthenticated()) { // user not allowed $rootscope.$broadcast(auth_events.notauthorized); } else { // user not logged in $rootscope.$broadcast(auth_events.notauthenticated); } } });

i not using roles when implemented had this

$rootscope.$on('$statechangestart', function(event, next) { if (next.url != "/login") { authservice.isauthenticated().then(function() { console.log('you authed logged in , trying access: ' + next.url); }, function() { event.preventdefault(); console.log('you not have valid access token'); $location.path('/app/login'); }); } });

isauthenticated() hits route within oauth filter if throws error (401 example), know access_token bad. have private method within authservice service tries new access_token using users stored refresh_token

function userefreshtoken() { console.log('using refresh token new token:'); var deferred = $q.defer(); $http({ method: 'post', url: base_url.dev.url + 'oauth/access_token', data: $.param({ grant_type: 'refresh_token', client_id: api.client_id, client_secret: api.client_secret, refresh_token: $localstorage.session.refresh_token }), headers: { 'content-type': 'application/x-www-form-urlencoded' } }).success(function(data) { console.log('refresh token worked!'); $localstorage.session.access_token = data.access_token; $localstorage.session.refresh_token = data.refresh_token; deferred.resolve(); }).error(function(error) { console.log('refresh token failed'); currentuserservice.setlogged(false); console.log(json.stringify(error)); deferred.reject(error); }); homecoming deferred.promise; };

if above method returns rejected promise assume (which may thought or not??) refresh token has expired , user needs log in , retrieve new access & refresh token pair laravel oauth/access_token route.

so above methods have been working fine on own, in able check if users access_token valid , if not retrieve new access_token fine using users refresh_token.

here's isauthenticated method in case wanted see well. it's public method within of authservice service.

isauthenticated: function() { console.log('checking if token still valid.'); var deferred = $q.defer(); $http.get(base_url.dev.url + 'valid-token', { params: { access_token: $localstorage.session.access_token } }).success(function(data) { console.log('token still valid.'); currentuserservice.setlogged(true); deferred.resolve(); }).error(function(error) { console.log(json.stringify(error)); userefreshtoken().then(function() { deferred.resolve(); }, function(error) { deferred.reject(error); }); }); homecoming deferred.promise; }

the big problem running because authservice.isauthenticated() method runs async, state app changing to, photos, nail before isauthenticated returns , if have case: 1 mentioned @ origin of post, photos state seek utilize invalid access_token seek , consume resource on end before isauthenticated method able new access_token using refresh_token.

now able avoid above issue using resolve on every state handled using isauthenticated method check access_token , new 1 if need before consuming resource. felt horribly undry. apologize length of post wanted create sure guys knew going on , trying accomplish.

i appreciate feedback, criticism , instruction! guys.

angularjs laravel laravel-4 oauth-2.0 ionic-framework

Comments

Post a Comment

Popular posts from this blog

java - How to set log4j.defaultInitOverride property to false in jboss server 6 -

-
java - How to set log4j.defaultInitOverride property to false in jboss server 6 - how set log4j property false in jboss. not using log4j in application still property has set true. the reason, why trying set property false is, suspecting property overrides java.util.logging.logger configuration provided application. might because of this, log file not getting generated. boot.log infomation below: 02:46:10,495 debug [serverinfo] log4j.defaultinitoverride: true 02:46:10,496 debug [serverinfo] org.jboss.deployers.spi.deployer.matchers.nameignoremechanism: org.jboss.deployers.spi.deployer.helpers.dummynameignoremechanism 02:46:10,496 debug [serverinfo] org.jboss.logging.logger.pluginclass: org.jboss.logging.logmanager.loggerpluginimpl i have found in boot.log in jboss. in 1 of blog, developers told me that, log4j.defaultinitoverride property should set false avoid override of java.util.logging.logger. comment same if wrong. java logging jboss log4j
Read more

c - GStreamer 1.0 1.4.5 RTSP Example Server sends 503 Service unavailable -

-
c - GStreamer 1.0 1.4.5 RTSP Example Server sends 503 Service unavailable - i'm trying create rtsp server based on gstreamer 1.0 1.4.5 plugin. source code of illustration taken here. with_tls , with_auth flags not enabled. i'm compiling using visual studio 2013 community edition. project building , running successfully. when i'm trying play video using vlc on address rtsp://127.0.0.1:8554/test says can't open mrl. recorded traffic (using rawcap) of communication between compiled server , vlc player following: request: options rtsp://127.0.0.1:8554/test rtsp/1.0 cseq: 2 user-agent: libvlc/2.2.0 (live555 streaming media v2014.07.25) response: rtsp/1.0 200 ok cseq: 2 public: options, describe, get_parameter, pause, play, setup, set_parameter, teardown server: gstreamer rtsp server date: thu, 09 apr 2015 03:35:30 gmt request: describe rtsp://127.0.0.1:8554/test rtsp/1.0 cseq: 3 user-agent: libvlc/2.2.0 (live555 streaming media v2014.07.25) accept: applicat...
Read more

Using ajax with sonata admin list view pagination -

-
Using ajax with sonata admin list view pagination - i'm using sonata admin in project. in list view sonata refresh page when clik sec list pagination. that's default behavior of sonata.is there way utilize ajax phone call list view pagination !!! same question when using sortable list view. thanks. this possible, have overwrite of basic functionality of sonata admin bundle. tested symfony 2.6.6 sonata admin-bundle dev-master (4f23e1a30e49681bf8ebdbbae549848784be7699) 1. edit bundles services.yml you have implement own crudcontroller , new list template. tell in services.yml sonata.admin.youradmin: class: your\bundle\admin\youradmin tags: - { name: sonata.admin, manager_type: orm, group: "groupname", label: "grouplabel" } arguments: - ~ - your\bundle\entity\entityclass - yourbundle:yournewcrud # <- add together crud class here calls: ...
Read more