Find out why "protecting" an Angular application is actually a misnomer
Build a user registration form and keep new user records in a Mongo database
Store passwords properly by salting and hashing them with bcrypt
Move data to MongoDB and implement cookie and session authentication to protect it. Learn the advantages and disadvantages of session-based authentication for single page apps
Refactor the app to use JSON Web Tokens for authentication. Learn the advantages and disadvantages of JSON Web Tokens and where they fall short
Learn how to add client-side route protection by preventing unauthorized users from accessing certain routes
Simplify the process of attaching JSON Web Tokens to HTTP requests. Respond to unauthorized requests and reroute users back to the login screen
Add a user role to grant privileges and allow or dissallow requests based on that role
Mitigate some of the most common attacks such as CSRF and XSS. Implement an assortment of protections to keep the front end and backend safe
Ryan has been an avid contributor in the Angular community for many years now. I'm so happy that he's taken the time to consolidate his years of experience in building security into Angular applications into this complete guide. Thanks for making this happen!
Ryan is my go-to for anything related to authentication and authorization. He has been super informative as I’ve been building out the auth related aspects of Ultimate Angular. I highly recommend this book and course for anyone looking to lock down their Angular apps.
Authentication is not something to be taken lightly. Your app and your users rely on you to stay safe. Relying on Ryan to take complex authentication/authorization topics and deliver as real live code is a no-brainer. Ryan has the expertise from his years in the auth field and the rare teaching quality to be your reliable source for securing your Angular apps.
This is by far the most comprehensive books on web application security that I have ever read. As a Google Developer Expert and Angular contributor, I know quite a bit on this topic, but Ryan blew me away the breadth and depth of amazing information within this book. In particular, I love the way he frames server-side vs client-side security concerns and lays out an overall mental model for web application security. This book is a must have for all web developers.
I have had the pleasure of working, speaking, and running workshops with Ryan all in the context of authentication. Ryan has extremely thorough and expert knowledge of web application authentication and authorization. Having the opportunity to learn from Ryan has changed my perspectives on these topics. Everyone who builds apps for the web should take advantage of any chance to learn from his expertise. This book showcases his approachable and fun teaching style, as well as his in-depth knowledge of authentication and Angular. Highly recommended!
Comprehensive and practical examples you can easily integrate into your existing applications. If you're wondering if your authentication system is secure, you need this book.
With privacy and security becoming more valuable by each passing minute, authentication has to be taken seriously and from what I read in this book, Ryan has done nothing short of depicting this. The concise manner in which key fragments of important information were detailed kept me eagerly turning every page for more. Newbie and veteran alike - this book is a must read for anyone who wants to implement that quintessential authentication solution on their Angular apps.
Ryan is not only an expert software engineer but a great teacher because at a fundamental level, he deeply cares about his students and digs deep to explain concepts in clear, concise forms. I am constantly learning new things from Ryan and I frequently recommend his material to programmers looking to sharpen their skillset.
Authentication and authorization are parts of almost any project that are so easy to do badly. When your auth story is off, your business and users are at risk. Ryan comes from deep in the trenches of a leading company in this space and brings this depth of knowledge to the Angular scene.