This project demonstrates how to implement the Authorization Code Flow with PKCE for an Angular SPA.
Disclaimer: This project is for educational purposes only and should not be used in production without proper security review and testing.
This project is deployed on Cloudflare Pages. You can access the live demo here.
Before getting started, make sure you have the following:
- Node.js installed on your machine
- An OpenID Connect provider that supports the Authorization Code Flow with PKCE
- Clone the repository:
git clone https://github.com/cerberauth/openid-connect-examples.git- Install the dependencies:
cd openid-connect-examples/angular-spa
npm ci- Configure the OpenID Connect provider:
If you don't have an OpenID Connect provider, you can use TestID OpenID Connect Provider.
- Obtain the client ID and client secret from your OpenID Connect provider.
- Register the redirect URI for your React SPA in the provider's developer console.
- Update the configuration:
-
Update the
environment.tsfile in thesrc/environmentsdirectory. -
Add the necessary environment variables to the
environment.tsfile. For example:export const environment = { production: false, clientId: 'your-client-id', redirectUri: 'http://localhost:4200/callback', issuer: 'https://testid.cerberauth.com', scopes: 'openid profile email', };
Replace
your-client-id,http://localhost:4200/callback, andhttps://testid.cerberauth.comwith the actual values provided by your OpenID Connect provider.
- Start the development server:
npm start-
Open your browser and navigate to
http://localhost:4200/. -
Click on the "Login" button to initiate the authorization code flow.
-
After successful authentication, you will be redirected back to the React SPA and the user information will be displayed.