Authentication in Ionic/Cordova App
nathvarun gave a very complete answer, but I'd like to share the steps I do for authentication in my app.
- Send
email
+password
via ajax to the server - Generate a
token
in the server and send it back to the app - Store
email
+token
inlocalStorage
- For every single request I make to the server I send
email
+token
viaPOST
- In the server I verify authenticity of that user with that token, if
true
the method is executed, iffalse
I send back to the app an error (401) - If app receives success, then it's ok, if receives error I redirect to login screen.
Nice thing is that when the app is open, you can get the email
+ token
from localStorage
, send to the server, if that token is ok for that user, redirect to main screen, otherwise redirect to login. Then whenever user clears the cache of the app, he is redirected to login screen.
I actually needed something like that for a few apps I'm working on. I spent quite some time investigating this and was able to achieve that.
I'm pretty happy with the result, in addition to email/password authentication I've added some social authentication which works in the same way.
- open url on client side with the provider's (facebook/twitter/instagram) url for login
- the user logs in and is redirected to the server's callback url (my server is written in nodejs)
- once I've got the access token from the provider. I save this token and then create a token for the client to reuse every time the user wants to access a protected ressource.
Download the apk and test it.
If this is what you're looking for you can checkout both the client side code at : https://github.com/malikov/Authenticate.me-client-cordova-ionic
And the server side code at : https://github.com/malikov/Authenticate.me-Node-Server