i was waiting for this video, literally i will cry.. i am so happy, please make videos on angular. we have comparatively less good videos for angular in RUclips, i am from India, and now I'm leaning mean stack, but my collogues changed to react and other domain because angular having less resources, so please make more videos on angular, its very helpful for new developers like us.
Angular authentication and all other real world features are covered in my full Angular NgRx course which is 8 hours long. monsterlessons-academy.com/courses/angular-and-ngrx-building-real-project-from-scratch
This is good. But for additional security I believe that we can use set-cookie in response and with-credentials header to store and pass token. (If we have control over the backend)
Please put subtitle to the courses on your webpage, im hard of hearing and im not purchasing for that reason, also subtitles make it easier to understand to people who don't know english at high level, at least for me it does these two functions. I mean audio transcription is ok, im not asking for traduction, just subtitles. Thanks :)
I think the way you teach angular is amazing, the only reason I don't buy your courses is because I find it very difficult to understand your IDE and the way you move through files with the terminal, I'm used to VSC because of that most courses are done using it...
Since it is beginner course this is the simplest way one can implement auth. Along with this, there are conceps like angular guards, cookies, that is used on enterprise software.
Regarding cookies, it probably should be considered just as a recommendation, but it doesn't have anything to do with security, as there's no such thing as "security" on the client side. The same goes for guards. Blocking routes in Angular is not a security measure, but merely a UX improvement.
This is a fantastic tutorial. Could you extend this tutorial with refresh (token) logic: use an interceptor to automatically get a new access token using the refresh token when the access token has expired? Anyway, I've subscribed and thanks for the tutorial.
Hi man, great video. Can you please make a video on new angular 17 project structure? To understand the new default behavior of standalone components throughout the project and also to understand the starting points and lazy loading of routes etc. Already a subscriber :))
I already have videos about these topics ruclips.net/video/v1omt9uVpXk/видео.htmlsi=hDvlGuLqcebA63-- ruclips.net/video/NFJbXP6Ci98/видео.htmlsi=sgi4C2boPU_8k1Rq
Nice vid thank you... I still get a 401 from the ngOnInit... also in your code from github... looks like the interceptor doesn't get triggert? I mean it works but the get still throws an error or is that like normal and ok?
Great video! But i don`t understand why You need 'undefined' state for signal? Looks like it can be only 'null | User' state. And in that case You avoid additional request to server. Only check for null or User. Can You explaine?
Dear Olex, could you please explain if there is any specific point you use inject, not DI in a constructor? I'm just a beginner so it's better to develop good habits right from the start.
I always follow your tutorials and courses. I have a question here. why not just save the user information on localstorage instead of making api call every time we reload.
You can do that but you can't be sure that it's a same user if it is a public computer. Your backend will check token anyway to know if you have access to the resource
Dear Oleksandr, great content! so many thanks, please provide us Nestjs authentication and authorization with best peactice also would be nice to implenent it with cookies
You rolled jackpot. The video about Nest authentication comes on 21th of November and is already available for silver members. If you are interested on implementing authentication inside real project I have a full NestJS course which includes it. monsterlessons-academy.com/courses/nestjs-building-an-api-for-real-project-from-scratch
Hi. I have a question. When you register, you get a token, what's the use of it? Cause when you log in you will get a new token and save it to localstorage
Hi I was wondering if I can request a video about Angular Elements, how they are created and used 😊 I was looking for a section about angular elements in your courses but I could not find any
I checked what it is first time in my life and the topic doesn't look that popular. I added it in the list of ideas but I doubt that I make a video about it.
@@MonsterlessonsAcademy you are right, I guess is only a very niche group of people who have the need of this feature. This is very useful when trying to migrate gradually from an old framework or from no framework to angular. Or when trying to implement micro-frontends using different frameworks. Anyways… thanks for your reply.
currently im having a problem when im in home page and i reload it the login page flashes for a moment, why is that? currently i implemented a guard that if the user is not logged in redirect the user to login page if trying to access home page.
@@MonsterlessonsAcademy when i try to set the value of ssr and prerender to false in angular.json file it will not flash the login page. But doing so makes the app having some disadvantage. I don't know why its happening and maybe someone can answer my concern
what if i want to store more stuff from the user at the registration like for example their age. and retrieve that as well after login. is that api link good or allows only username,email,password,bio,image?
is there a known issue about angular 17 I created my interceptor and added to config file. I have added some console.logs for test but its not intercepts my http calls. always returns 401 unauthorized after check headers there is no token information added. and of course api returns error : {status: 'error', message: 'missing authorization credentials'}
it was because of component-based http calls. in angular 17 inject is not enough for http calls you have to provide it in to config file. but i imported every single component. that was blocked interceptor. because my http calls reach the destination through the component. if(someOneFacedWithSameProblem) {ResolveItEasly return Console.log("Thank You")}
new angualar have but or my pc already dont know, When im writing code in SCSS and for example I write color: ; before I give property to this color angular goes on the error and if I will write after 1 second color: #fff; angular already eat my brain with error wich was one second ago and if I dont ctrl + c and ng serve again code isnot working and goes on the error, Its waste my time and I'm very tired already with it please people give me advice this is my pc problem or Angular have bug.
could you make a solution for me please.i want to verify my token from angular side when user click one link for registration. Like i send a link with token from nodejs. when user click this link i want to verify from Frontend that token is valid. if valid registration will be successful else false. thanks
@@MonsterlessonsAcademy It is because i dont have access to localStorage in server side. (not localhost. my mistake). Can you please make a video how to do auth in angular 17 with ssr enabled? It is very confusing. I think localStorage is accessible if i turn off ssr.
Beginners beware! This video should not have been titled “The Correct Way”. Do not copy this way of doing things exactly. While the video does show the basics of authentication, there are a lot of things that are missing in order to keep the video simple. There is no error handling anywhere for one thing. Also, there is no separation of concerns between components and services. State management is almost completely ignored. So, yes there are some great concepts here for beginners, but it is NOT “The Correct Way”.
I agree. It's basics of authentication and it doesn't include lots of authentication advanced stuff. "The correct way" is only correct regarding the implementation of this basics in the video as I saw lots of video where even these basic were not correct.
Нема сумніву, що у вас є знання, але ви не в змозі організувати або пояснити (чому? і як?) просто "повзання" відео не допоможе багато, доки ви краще не організуєте відео. Щодо другого пункту, пишіть код з початку або взагалі не пишіть, оскільки є багато початківців, які не мають уявлення, про що ви говорите.
Respect and Appreciate the efforts of others ! I bet u didn't even completed the vid.. @monsterlessonsAcademy great content bro all the support keep going im new to angular and your vids are very useful 🙏🏻
WATCH NEXT: Angular with NgRx - Building Angular Project From Scratch - ruclips.net/video/vcfZ0EQpYTA/видео.htmlsi=BptT7eqgflHIoQiQ
i was waiting for this video, literally i will cry.. i am so happy, please make videos on angular. we have comparatively less good videos for angular in RUclips, i am from India, and now I'm leaning mean stack, but my collogues changed to react and other domain because angular having less resources, so please make more videos on angular, its very helpful for new developers like us.
Angular authentication and all other real world features are covered in my full Angular NgRx course which is 8 hours long.
monsterlessons-academy.com/courses/angular-and-ngrx-building-real-project-from-scratch
This is good. But for additional security I believe that we can use set-cookie in response and with-credentials header to store and pass token. (If we have control over the backend)
Sure. I just didn't want to overcomplicate beginner knowledge.
@@MonsterlessonsAcademyBut in title, you have mentioned the "the correct way". is it not the right way then?
Hi, do you have any tutorial regarding this? How to do securely?
@@MaheshKumar-bg5rewhy is that the correct way?
@@TUMSonY I just run to you YT channel looking for a video from you explaining the RIGHT way. Are you upload it? Thanks!
Please put subtitle to the courses on your webpage, im hard of hearing and im not purchasing for that reason, also subtitles make it easier to understand to people who don't know english at high level, at least for me it does these two functions. I mean audio transcription is ok, im not asking for traduction, just subtitles. Thanks :)
Hi thank you for the feedback. I will put it in the list of things to improve.
I think the way you teach angular is amazing, the only reason I don't buy your courses is because I find it very difficult to understand your IDE and the way you move through files with the terminal, I'm used to VSC because of that most courses are done using it...
I understand that but I don't want to use an editor which is not comfortable for me and there I'm not productive.
very help full with the explanation, i will try to follow this video
Happy coding
ual! Nice Pal!
Thanks!
Since it is beginner course this is the simplest way one can implement auth.
Along with this, there are conceps like angular guards, cookies, that is used on enterprise software.
Yes of course. This is a beginner introduction in authentication.
Regarding cookies, it probably should be considered just as a recommendation, but it doesn't have anything to do with security, as there's no such thing as "security" on the client side. The same goes for guards. Blocking routes in Angular is not a security measure, but merely a UX improvement.
This is a fantastic tutorial. Could you extend this tutorial with refresh (token) logic: use an interceptor to automatically get a new access token using the refresh token when the access token has expired? Anyway, I've subscribed and thanks for the tutorial.
I will add it to the list of ideas
Very nice video please continue creating videos on different topics in angular 17 ❤
Will do
Thank you for the lesson, I learned a lot of new information. 👍
Glad to hear that!
Hi man, great video. Can you please make a video on new angular 17 project structure? To understand the new default behavior of standalone components throughout the project and also to understand the starting points and lazy loading of routes etc. Already a subscriber :))
I already have videos about these topics
ruclips.net/video/v1omt9uVpXk/видео.htmlsi=hDvlGuLqcebA63--
ruclips.net/video/NFJbXP6Ci98/видео.htmlsi=sgi4C2boPU_8k1Rq
Great video. Why do you use inject() instead of providing the dependencies to a constructor?
I already covered it here
Great video. Very helpful.
Glad it was helpful!
Awesome explanation
Thanks
Great work ❤
Thanks ✌️
Thank youuuuuuuuuuuuuuuuuu , this is good.
You're welcome!!
Very good video but I wonder if we can create getUser function inside the AuthService ? Isn't this better ?
It's a matter of taste
Nice vid thank you... I still get a 401 from the ngOnInit... also in your code from github... looks like the interceptor doesn't get triggert? I mean it works but the get still throws an error or is that like normal and ok?
same error..
What version of Angular is? why you don't use constractor?
17. Because inject is easier and modern way to do this
thank you very much, but i was wishing to see handling the server validations errors
You can read them in error part of subscribe when server delivers 422 with an error and just render it on screen
Thank you!
You're welcome!
its very good !!
Thank you!
Great tutorial! Thank you 👍
Glad it was helpful!
Great video! But i don`t understand why You need 'undefined' state for signal? Looks like it can be only 'null | User' state. And in that case You avoid additional request to server. Only check for null or User. Can You explaine?
No. In order to know if the use is logged it we must do an API call. Before it is done we need a value and it's undefined.
Dear Olex, could you please explain if there is any specific point you use inject, not DI in a constructor? I'm just a beginner so it's better to develop good habits right from the start.
Hi, I already made a video about it
ruclips.net/video/SMFhsSQvsEc/видео.htmlsi=EcLatp3-Li-A9ba3
I always follow your tutorials and courses. I have a question here. why not just save the user information on localstorage instead of making api call every time we reload.
You can do that but you can't be sure that it's a same user if it is a public computer. Your backend will check token anyway to know if you have access to the resource
Great video and thanks for your work! Why didn´t you use Guards?
Because they are not directly related to authentication process and it make a video even longer.
@@MonsterlessonsAcademy Perfect, thanks for the explanation!
Dear Oleksandr, great content! so many thanks, please provide us Nestjs authentication and authorization with best peactice also would be nice to implenent it with cookies
You rolled jackpot. The video about Nest authentication comes on 21th of November and is already available for silver members.
If you are interested on implementing authentication inside real project I have a full NestJS course which includes it.
monsterlessons-academy.com/courses/nestjs-building-an-api-for-real-project-from-scratch
i am looking forward to that! so nany thaks you are a senior dev with many experiences i love your style
@@MonsterlessonsAcademy to anyone reading this comment just know this course is worth every cent, go for it.
The correct way is use backend for frontend patteren, jwt should never be stored in storage accessible by javascript.
Sure but this is a beginners video of implementing authentication. It doesn't cover all production security cases.
Could you make a video with firebase authorization ? There are many lessons but they all do not work with angular 17)
I will add it to the list of ideas for future videos
Could you please create a tutorial regarding authentication in angular SSR 😢
I will add it to the list of ideas
which editor you are using. it is clean
It's Vim
Thanks alot
Most welcome
Hi. I have a question. When you register, you get a token, what's the use of it? Cause when you log in you will get a new token and save it to localstorage
So you avoid loginning and can login a user right after registration.
Hi I was wondering if I can request a video about Angular Elements, how they are created and used 😊 I was looking for a section about angular elements in your courses but I could not find any
I checked what it is first time in my life and the topic doesn't look that popular. I added it in the list of ideas but I doubt that I make a video about it.
@@MonsterlessonsAcademy you are right, I guess is only a very niche group of people who have the need of this feature. This is very useful when trying to migrate gradually from an old framework or from no framework to angular. Or when trying to implement micro-frontends using different frameworks. Anyways… thanks for your reply.
If the ssr is on. I can't find the localstorage reference. That's the issue I am facing right now with v17. Can anyone help me with that please 🥺
Then you should use cookie as it also exists on backend
@@MonsterlessonsAcademy thank you brother. I'm now managing with the cookies. Ngx-cookie-service-ssr. Thank you for the info.
currently im having a problem when im in home page and i reload it the login page flashes for a moment, why is that? currently i implemented a guard that if the user is not logged in redirect the user to login page if trying to access home page.
Not really. If you have guard it won't flash the page. Probably problem in the guard values.
@@MonsterlessonsAcademy when i try to set the value of ssr and prerender to false in angular.json file it will not flash the login page. But doing so makes the app having some disadvantage. I don't know why its happening and maybe someone can answer my concern
Sorry the question is not related to the video, is there any way i make observable out of signal which is production ready
toObservable like I show in this video but it is still in dev preview.
ruclips.net/video/WL7QEhdqh00/видео.htmlsi=uvPCRCWsWOcAlJLi
what if i want to store more stuff from the user at the registration like for example their age. and retrieve that as well after login. is that api link good or allows only username,email,password,bio,image?
You can check official documentation for possible API calls and information that you can pass.
Can u make it with the same form but using with firebase?
I will add it to the list of ideas.
insane
Thanks!
is there a known issue about angular 17 I created my interceptor and added to config file. I have added some console.logs for test but its not intercepts my http calls. always returns 401 unauthorized after check headers there is no token information added. and of course api returns error : {status: 'error', message: 'missing authorization credentials'}
it was because of component-based http calls. in angular 17 inject is not enough for http calls you have to provide it in to config file. but i imported every single component. that was blocked interceptor. because my http calls reach the destination through the component. if(someOneFacedWithSameProblem) {ResolveItEasly return Console.log("Thank You")}
I can't really help here. Interceptors are working for me in Angular 17
@@user-wd1wc7ee3v could you please share more details on how you solve it? I'm facing similar issue
Isn't it safer to use Guards?
Guards is just client route protection. It doesn't bring any real protection. It should always be on backend.
@@MonsterlessonsAcademy well yeah, obviously! But guards have a part in frontend, don't you think it's better with them? I'm curious to know now 😉
new angualar have but or my pc already dont know, When im writing code in SCSS and for example I write color: ; before I give property to this color angular goes on the error and if I will write after 1 second color: #fff; angular already eat my brain with error wich was one second ago and if I dont ctrl + c and ng serve again code isnot working and goes on the error, Its waste my time and I'm very tired already with it please people give me advice this is my pc problem or Angular have bug.
I sorry but I don't do consultations on debugging specific problems. You can find lots of beginner videos about Angular on my channel. Hope it helps.
This happened a lot to me. Hope the angular team fixes it soon
could you make a solution for me please.i want to verify my token from angular side when user click one link for registration. Like i send a link with token from nodejs. when user click this link i want to verify from Frontend that token is valid. if valid registration will be successful else false. thanks
Unfortunately I don't solve custom problems in youtube comments.
@@MonsterlessonsAcademy I feel bad for you, all of these comments are ridiculous
withInterceptors - after adding this, i am getting localhost is not defined error. why? I am using Angular17
No idea, you need to debug this
@@MonsterlessonsAcademy It is because i dont have access to localStorage in server side. (not localhost. my mistake). Can you please make a video how to do auth in angular 17 with ssr enabled? It is very confusing. I think localStorage is accessible if i turn off ssr.
@@MaheshKumar-bg5re in your interceptor inject platformid and use function isPlatformBrower(platformid) on the top of my head...
@@MaheshKumar-bg5re If SSR enabled, inside of auth.interceptors.ts. Write this:
const platformId = inject(PLATFORM_ID);
const token = isPlatformBrowser(platformId) ? localStorage.getItem('token') : '';
Beginners beware! This video should not have been titled “The Correct Way”. Do not copy this way of doing things exactly. While the video does show the basics of authentication, there are a lot of things that are missing in order to keep the video simple. There is no error handling anywhere for one thing. Also, there is no separation of concerns between components and services. State management is almost completely ignored. So, yes there are some great concepts here for beginners, but it is NOT “The Correct Way”.
I agree. It's basics of authentication and it doesn't include lots of authentication advanced stuff. "The correct way" is only correct regarding the implementation of this basics in the video as I saw lots of video where even these basic were not correct.
average inject() enjoyer
whats your code editor name?
Vim
@@MonsterlessonsAcademy can you make a vido how to customize like yours
Why youtube showed me this now? I already used firebase and I wanna die 😭😭😭
Better now than never -_-
Нема сумніву, що у вас є знання, але ви не в змозі організувати або пояснити (чому? і як?) просто "повзання" відео не допоможе багато, доки ви краще не організуєте відео. Щодо другого пункту, пишіть код з початку або взагалі не пишіть, оскільки є багато початківців, які не мають уявлення, про що ви говорите.
І змініть редактор.
That's not a correct way mate
Why is that?
@@MonsterlessonsAcademy coding style is not up to date and very cluttered, it will be hard to maintain.
maybe not everyone is beginner so...
Very terrible.
Why?
Respect and Appreciate the efforts of others ! I bet u didn't even completed the vid..
@monsterlessonsAcademy great content bro all the support keep going im new to angular and your vids are very useful 🙏🏻