I'm building a spa right now that uses Vue.js as the front end framework which talks to a pure json backend which uses jsonwebtokens. I am more familiar with the React ecosystem. I'm currently not sure how I would protect client side routes in Vue.js. (Not my decision on the framework. I am a new hire. yay!)
In react I would do something like this. In the index.js file of the project. Before the app mounts check whether or not there is a jsonwebtoken in localstorage. If there is, set redux state to logged in. If not set to logged out.
I would then use higher order ponents to protect my routes so that whenever a user tries to enter a client side protected route, I would use the ponentWillMount life cycle method which checks for logged in state. If logged in render the ponent. Else redirect to log in page.
It seems that higher order ponents in vue are not able to achieve the same behaviour. Or I just cant find documentation that shows me how to achieve it. Can someone share with me how they would tackle this problem?
I'm building a spa right now that uses Vue.js as the front end framework which talks to a pure json backend which uses jsonwebtokens. I am more familiar with the React ecosystem. I'm currently not sure how I would protect client side routes in Vue.js. (Not my decision on the framework. I am a new hire. yay!)
In react I would do something like this. In the index.js file of the project. Before the app mounts check whether or not there is a jsonwebtoken in localstorage. If there is, set redux state to logged in. If not set to logged out.
I would then use higher order ponents to protect my routes so that whenever a user tries to enter a client side protected route, I would use the ponentWillMount life cycle method which checks for logged in state. If logged in render the ponent. Else redirect to log in page.
It seems that higher order ponents in vue are not able to achieve the same behaviour. Or I just cant find documentation that shows me how to achieve it. Can someone share with me how they would tackle this problem?
Share Improve this question edited Apr 15, 2017 at 9:21 asked Apr 15, 2017 at 9:15 user6127082user61270823 Answers
Reset to default 11As explained in the documentation you can use meta fields on all the routes you want to check for authentication.
The example provided in docs:
router.beforeEach((to, from, next) => {
if (to.matched.some(record => record.meta.requiresAuth)) {
// this route requires auth, check if logged in
// if not, redirect to login page.
if (!auth.loggedIn()) {
next({
path: '/login',
query: { redirect: to.fullPath }
})
} else {
next()
}
} else {
next() // make sure to always call next()!
}
})
Or for in ponent navigation guards you can follow the 2nd link provided by wostex.
i think i missed the documentation for routes meta feilds. i was doing something stupid but working i suppose. haha.
router.beforeEach((to, from, next) => {
let web = ["home", "login", "verifyAccount", "resetPassword","forgotPassword","register"];
if(web.includes(to.name)){
next();
}else{
axios.post('/api/auth/verify-token',{
token: localStorage.token
}).then(response=>{
if(response.data.verification === true){
next();
}else{
router.push({
name:'home',
params:{
serverError:true,
serverMsg: 'Please login to continue.'
}
});
}
}).catch(response=> {
console.log(response);
});
}
});
This is a good example of auth implementation using Vue.js: link
To be more specific, here is manual about nav. guards: link