Storing credentials in a REST environment
This recipe presents a solution for storing credentials in RESTful applications.
The solution is a compromise between temporary client-side storage and permanent server-side storage.
On the client side, we are using HTML5 session storage to store temporarily the usernames and passwords encoded in base 64. On the server side, only hashes are stored for passwords. Those hashes are created with
passwordEncoder is registered in Spring Security, autowired, and used in the
How to do it...
Client side (AngularJS)
- We have made use of the HTML5
sessionStorageattribute. The main change has been the creation of a
httpAuthfactory. Presented in the ...