Securely store user authentication information

ionicbeginner · April 10, 2017, 2:22pm

Hi All,

I’m new to Ionic and i wanted to check about securing the authentication data. I have this method to login to the web service, and everytime i wanted to access the web service, i’d need to put my email and password in the header. Is there any way to securely store this information? Thanks.

login(email, password): Promise {
let user: User;
this.authString = 'Basic ’ + btoa(email + ‘:’ + password);
…
}

getEntriesData(): Promise<Entry[]> {
console.log("User data: " + this.user);
if (this.user && this.authString && this.authString!=’’) {
return this.http.get(this.getEntriesUrl, {headers: this.getHeaders()})
.toPromise()
.then(response => response.json() as Entry[])
.catch(this.handleError);
}
else {
return null;
}
}

private getHeaders(){
let headers = new Headers();
headers.append(‘Accept’, ‘application/json’);
headers.append(‘Authorization’, this.authString);
return headers;
}

rapropos · April 10, 2017, 6:15pm

It depends on who you’re trying to secure it from. If the answer is “the device owner”, that’s not really possible. I would recommend looking into JWT here.

ionicbeginner · April 15, 2017, 3:06am

ok, thanks for the recommendation.

Topic		Replies	Views
Secure API with Ionic Auth Token ionic-v3	0	466	June 28, 2017
Securest way to store JWT token coming from my backend? ionic-v3	3	4743	July 13, 2017
Security with Ionic 2 ionic-v3	3	2228	July 16, 2016
Remembering user once logged into app Ionic Angular	6	5195	September 7, 2020
Where to store authorization token in the Ionic Web Application ionic-v3	1	678	July 19, 2021

Securely store user authentication information

Related topics