A repository that contains an Vue example that uses Authress to Login.
Run yarn and then yarn start. Or use pnpm to install dependencies and then start the site.
srcmain.ts- Application Root and contains all the routes of the starter kit applicationauthressClient.ts- Configuration for Authress for users to loginrouteshome.ts- Landing page which has login and logout buttonsprotected.ts- Page protected by user login via the login guard defined in themain.tsfile
yarnyarn start
There is a demo experience that has a UI and an service API. The UI makes API calls to the service. We can see the data rendered in the view.
SET DEMO AS AUTHRESS ACCOUNT:
0A. Reminder, it takes 30 after updating the record and removing reports/* for that to be propagated, because Access Record resource removals take 30s in the background.
- https://authress.io/app/#/settings
- Delete comments in report controller
- Delete Server.ts middleware
- All data is public, users can log in and see their icon displayed.
- The API is running and the UI can make these calls, but they are unauthenticated.
- Add a middleware to get the token and verify it
app.use(authress);- Demo that the UI doesn't work anymore because the user isn't logged in.
- Add a guard in the UI that requires the user to log in.
await ensureUserIsLoggedIn(next);- Then they log in
- Navigate to a specific resource
- We'll add a check to the service code which ensures that a user has the right permission to the resource
const result = await authress.hasAccessToResource(userId, '/reports', 'reports:get');
if (!result) {
return forbidden(response);
}-
Then we'll see that they don't
-
Then go to Authress and configure:
- A new role
- Add the role to the access record for the global reports
-
What if they should only have access to some reports:
const result = await authress.getUserResources(userId, '/reports', 'reports:get');
allowedReports = result;- Go back to the UI to display the list which now only has one element
-
Show Access Record for Sub Resources
-
Show Audit Trial