Security News
PyPI Introduces Digital Attestations to Strengthen Python Package Security
PyPI now supports digital attestations, enhancing security and trust by allowing package maintainers to verify the authenticity of Python packages.
@elemental-concept/grappa-jwt
Advanced tools
Decorator-powered JWT handling library for Grappa and Angular
Decorator-powered JWT handling library for Grappa and Angular 9+, plus RxJs 6+.
Last version | Angular Versions | Node |
---|---|---|
0.8.4 | 9+ up to 14 (included) | 14.15.0 or later |
npm i --save @elemental-concept/grappa-jwt
yarn add @elemental-concept/grappa-jwt
Add GrappaJwtModule
to your main AppModule
to imports section.
@NgModule({
declarations: [ ... ],
imports: [
...,
GrappaJwtModule
],
providers: [ ],
bootstrap: [ ... ]
})
export class AppModule {
}
Grappa JWT provide a easy and automatic way of using JWT in your HttpClient.
To be able to use is you need to pass the token to the SessionManagerService
:
@Injectable()
export class JWTService {
constructor(sessionManagerService: SessionManagerService) {
}
login = () =>
this.someService
.login(request)
.subscribe(
response => !!response.token
? this.authSuccess(response)
: this.authError(),
() => this.authError());
private authSuccess(response: Response) {
this.sessionManagerService.token = `Bearer ${ response.token }`;
// do somehting
}
private authError() {
// error handling
}
}
You can use GrappaJwt with Grappa to have the full potential:
@Injectable()
@RestClient('http://example.com/api/')
@Authenticate()
export class UserService {
@GET('/users')
list: () => Observable<User[]>;
@GET('/users/{0}')
find: (id: number) => Observable<User>;
@POST('/users')
create: (user: User) => Observable<User>;
@PUT('/users/{0}')
update: (id: number, user: User) => Observable<User>;
}
if you want somehthing
@Injectable()
@RestClient('http://example.com/api/')
@Authenticate()
export class UserService {
constructor(sessionManagerService: SessionManagerService, router: Router) { }
@GET('/users')
list: () => Observable<User[]>;
@GET('/users/{0}')
find: (id: number) => Observable<User>;
@POST('/users')
create: (user: User) => Observable<User>;
@PUT('/users/{0}')
update: (id: number, user: User) => Observable<User>;
@AfterRequest()
expirationFilter(observable: Observable<any>) {
return observable.pipe(catchError(e => this.deauthorise(e)));
}
private deauthorise(e) {
if (e.status === 401 || e.status === 403) {
this.sessionManagerService.clear();
this.router.navigate([ '' ]).then();
}
return throwError(e);
}
}
by default GrappaJwt will use window.sessionStorage
, but you can use it with other storage. The Ionic Storage is a good example:
You first need to add a new PersistenceManager
using the Ionic Storage.
Remeber to user GRAPPA-JWT
as key.
export class PersistenceManager {
constructor(private readonly storage: Storage) { }
put(value: string) {
return this.storage.set('GRAPPA-JWT', value);
}
get() {
return this.storage.get('GRAPPA-JWT');
}
remove() {
this.storage.remove('GRAPPA-JWT');
}
}
Then you have to create a factory to create a GrappaAuthConfigToken
export function grappaConfigFactory(storage: Storage) {
return {
persistence: new PersistenceManager(storage)
};
}
Finally, provide the GrappaAuthConfigToken
using the grappaConfigFactory
you created, passing Storage
into the dependencies:
@NgModule({
declarations: [ AppComponent ],
imports: [
...,
IonicStorageModule.forRoot(),
GrappaAuthModule,
GrappaModule,
],
providers: [
{
provide: GrappaAuthConfigToken,
useFactory: grappaConfigFactory,
deps:[ Storage ]
}
],
bootstrap: [ AppComponent ]
})
export class AppModule { }
FAQs
Decorator-powered JWT handling library for Grappa and Angular
We found that @elemental-concept/grappa-jwt demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
PyPI now supports digital attestations, enhancing security and trust by allowing package maintainers to verify the authenticity of Python packages.
Security News
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.