Single Page Application Authentication using Active Directory in Intranet - active-directory

Is it possible to create a SPA using a JavaScript framework like Vue, React or Angular and secure it using Active Directory authentication? I've only seen Forms authentication examples.
Thanks for any help.

Yes. Windows authentication is performed by the web server (IIS or Apache, for example) so that's where you need to set it up. You can search Google for help on setting it up. There are lots of examples.
The framework behind the web server (Vue, React, Angular, etc.) isn't really relevant.

Related

ADAL, Angular and WEB API strategy

I am a Microsoft developer. Making an ASP.NET application with authentication to Azure AD is very easy. The traditional multi page application with Vue (as an example) can be created within two minutes (by using the Authentication wizard in Visual Studio). However watching some Angular and NPM videos I liked the CLI/npm approach. So I decided to build my next project using ADAL.js, ASP.NET Core API and Angular 6 (deploy to Azure web app). But I haven't been able to succeed, and have only been met by complexity and issues.
Is the combo of these three technologies just a bad mix, Visual Studio not suited for SPA, or have I just gotten a bad start? Any suggestions on a good setup? I am considering to split the API and front end in two apps, so I can use clean Angular without having to worry about who is building TypeScript (VS or Node) etc. But then I need two web apps, and have to worry about CORS. Any suggestions here, what is a good setup to get started?
I have followed a lot of articles like:
http://www.talkingdotnet.com/how-to-create-an-angular-6-app-with-visual-studio-2017/
https://www.npmjs.com/package/microsoft-adal-angular6
But all of them had issues.
Refer to this Microsoft published GitHub sample. This sample demonstrates the use of ADAL for JavaScript for securing an AngularJS based single page app, implemented with an ASP.NET Web API backend, that calls another ASP.NET Web API using CORS.
Call an Azure AD protected Web API in an AngularJS Single Page App

is there any skype api available to integrate with salesforce [skypedeveloper]

we wanted customize our salesforce application via giving the skype conference link while sending the email from the application itself. the application is completely on visualforce pages and controller so i dont see any appexchange app will help on this.
I have already checked the below links though i could not get any integration apis
https://msdn.microsoft.com/en-us/skype/ucwa/onlinemeetinginvitation_ref
https://ucwa.skype.com/websdk
There are no integration Apis as of now. Only you have to write your own integration logic using Skype for Web SDK. It is a bit complicated SDK and not properly documented or maintained. It has tight coupling with Azure AD and video streaming doesn't work in Chrome/Firefox.
Some integration use cases/examples can be found here
Other relevant information.
https://dev.skype.com/
https://github.com/OfficeDev/skype-docs/tree/master/Skype

How to set up authentication already setup in MEAN app in Ionic app?

I am developing an application using MEAN Stack. However I am developing an app using ionic framework for the same application. How would I use the same authentication used in MEAN, in Ionic framework app?
Ionic Framework is built on top of Angular. I would suggest you to use token-based authentications for that; one popular strategy would be JSON Web Tokens (JWT). JWT is basically a standard to transmit data between communicating entities (client/server) through JSON.
I am not exactly sure what kind of authentication system are you using in your MEAN app. It's very likely that you will be using cookie-based authentication. If that is the case, you will need to alter your code so that instead of storing user/session info in cookies, you'll store them in JSON. You can check out the jsonwebtoken module for that.
There are a couple of token based authentication tutorials out there. You could try these out:
https://thinkster.io/angularjs-jwt-auth
http://code.tutsplus.com/tutorials/token-based-authentication-with-angularjs-nodejs--cms-22543

How to deploy website on live server?

I have created a website on angularJS. I have local server running using nodeJS. Can anyone please tell me the further process to deploy the website.
Your local server is probably only for development purposes.
You can deploy it as usual application. All you need is web server. The most common selection is Apache, nginx or IIS. You can set up one of these on your own (on your own computer/VPS etc.) or use web hosting (just google it...).
Selecting correct solution depends on budget, needed support and number of users. I assume that usual "cheap web hosting" is the best for you.

API REST to be used for an angular application and a mobile application

I'm building a REST APIs in Symfony2. The idea is to use these apis from a angular web app and a mobile app. Authentication is required to use the APIs.
I thought in the following possibilites:
Separate Symfony and angular in diferent projects:
The URLs under /api would use OAuth2 to authenticate user (FOSOAuthServerBundle). Both web and mobile app would need to use an access token.
Include angular inside Symfony: In the web app the users are authenticated using a symfony form, and therefore no need to protect the urls under /api with OAuth2. But how would authenticate users from the mobile app?
Please, any help is good!
In short, what I need is that the APIs can be used from two clients: web app and mobile app
Thanks!
I'm currently studying and suffering from the same problem and so far the best option I've seen is to keep the projects separate. If you include angularJS in your Symphony project, you will end up using resources that Symphony provides that you won't be able to replicate in the mobile structure. By detaching the server with the client completely, your Web App built only with Angular will be more similar to your mobile app, mimicking the stand-alone application mode.
Personally, I chose JWT Auth since it doesn't require 12 tables in your database, but using OAuth2 would have similar result.
Is always better to choose some solution that is already tested for many people and is used by them. So, I think is better you to use the OAuth technique, so you can consume your api from mobile, web and every other technology.
If you will join the API and WEBApp is up to you. because REST use no session and every call is a new call that you need to check and block or respond. I have an app that has an Codeigniter API and an AngularJS APP in the same project, but thoose does not share any exclusive thing as sessions.
I built e-commerce with FOSRestBundle, HWIOOauthBundle and FOSUserBundle
From server side, generate accesstoken and authenticate via api/login/ api/login_check/
write your security.yml routing access
From client side, call your api. It should render 200 or 403 HTTP_Code.

Resources