Securing the AngularJS application
We previously discussed that we need to ensure that all browser requests are secured and validated on the server for specific scenarios. Any browser request can be manipulated and changed even unintentionally, so we cannot rely on client-side validation alone.
When discussing securing an AngularJS application, there are a couple of alternatives available, of which I'll mention the following:
- You can use client-side authentication and employ a web service call to authenticate the current user. You can create a time-limited authentication token that will be passed with each data request. This approach involves additional code in the AngularJS application to handle authentication.
- You can rely on server-side authentication ...