Active Directory Authentication Library (ADAL) for Angular
This is a wrapper library for Angular 8+ modules over Microsoft ADAL (Azure Active Directory Authentication Library) - https://github.com/AzureAD/azure-activedirectory-library-for-js that helps you integrate your web app with Microsoft's AAD (Azure Active Directory) for authentication scenarios.
This library was wrote initiali by manishrasrani, and it was updated to work with higher versions of angular
For information on how to configure Azure Active Directory refer - https://docs.microsoft.com/en-us/azure/app-service/app-service-mobile-how-to-configure-active-directory-authentication
Consumption of the library
Step 1: Install the package
npm i ngx-adal-angular
Also add it to your dependencies section in package.json so that it is restored when you do an npm install.
Step 2: Import MsAdalModule and configure Adal options
In the root module of your application, import the MsAdalModule module.
import { NgxAdalAngularModule } from 'ngx-adal-angular';
Configure Adal options while importing the module.
@NgModule({
imports: [
NgxAdalAngularModule.forRoot({
tenant: '<YOUR TENANT>',<-------------------------------- ADD
clientId: '<YOUR CLIENT / APP ID>',<--------------------- ADD
redirectUri: window.location.origin,
endpoints: { <------------------------------------------- ADD
"https://localhost/Api/": "xxx-bae6-4760-b434-xxx",
---
---
},
navigateToLoginRequestUrl: false,
cacheLocation: '<localStorage / sessionStorage>', <------ ADD
}),
---
---
],
---
---
})
In case you need to set configuration values dynamically at runtime, you can also pass a function:
export function getAdalConfig() {
return {
tenant: '<YOUR TENANT>',
clientId: '<YOUR CLIENT / APP ID>',
redirectUri: window.location.origin,
endpoints: {
"https://localhost/Api/": "xxx-bae6-4760-b434-xxx",
},
navigateToLoginRequestUrl: false,
cacheLocation: '<localStorage / sessionStorage>',
};
}
@NgModule({
imports: [
NgxAdalAngularModule.forRoot(getAdalConfig),
],
})
This might be the case if you need to pass window.location.origin
as redirectUri
, since the Angular AOT compiler applies a special behavior when compiling @Decorators.
For a list of all available adal configuration options, refer - https://github.com/AzureAD/azure-activedirectory-library-for-js/blob/dev/lib/adal.js
Step 3: Secure individual routes
Use the NgxAdalGuard to secure indivuadual routes in your application. This ensures that users navigating to them must be authenticated with AAD to view them.
Import NgxAdalGuard and add it as a provider in your root module.
import { NgxAdalGuard } from 'ngx-adal-angular';
@NgModule({
providers: [NgxAdalGuard],
---
---
})
In your routing module, add it to the routes you want to secure -
const routes: Routes = [
{ path: '', component: AppComponent, pathMatch:'full', canActivate: [NgxAdalGuard]}
];
@NgModule({
imports: [
RouterModule.forRoot(routes),
],
exports: [
RouterModule
]
})
export class AppRoutingModule { }
Step 4 (Optional): Generating resource tokens
To generate resource level tokens for APIs your website may consume, specify the resources in your endpoints array while injecting adalConfig into NgxAdalAngularModule. Then to generate token, use acquireToken() of NgxAdalAngularService-
constructor(private adalSvc: NgxAdalAngularService) {
this.adalSvc.acquireToken('<RESOURCE>').subscribe((resToken: string) => {
console.log(resToken);
});
Step 5 (Optional): Other properties and methods
Based on your application needs you could use the below supported properties and methods of adalSvc -
this.adalSvc.userInfo // Gives you the complete user object with various properties about the logged in user
this.adalSvc.LoggedInUserEmail // Gets the LoggedInUserEmail
this.adalSvc.LoggedInUserName // Gets the LoggedInUserName
this.adalSvc.RenewToken() // Renews the AAD token
this.adalSvc.logout() // Logs out the signed in user
With these steps your application should be up and running with ADAL.
Important links