https://github.com/authress/demo

Authress Demo Walkthrough
https://github.com/authress/demo

Last synced: 28 days ago
JSON representation

Authress Demo Walkthrough

• Host: GitHub
• URL: https://github.com/authress/demo
• Owner: Authress
• Created: 2023-11-07T17:47:48.000Z (over 2 years ago)
• Default Branch: main
• Last Pushed: 2025-03-10T19:06:45.000Z (about 1 year ago)
• Last Synced: 2025-03-10T20:22:33.298Z (about 1 year ago)
• Language: TypeScript
• Size: 608 KB
• Stars: 1
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          


  



# Authress Interactive Demo

A repository that contains an Vue example that uses Authress to Login.

## Getting Started

Run `yarn` and then `yarn start`. Or use pnpm to install dependencies and then `start` the site.

### File Directory

* `src`

  * `main.ts` - Application Root and contains all the routes of the starter kit application

  * `authressClient.ts` - Configuration for Authress for users to login

  * `routes`

    * `home.ts` - Landing page which has login and logout buttons

    * `protected.ts` - Page protected by user login via the login guard defined in the `main.ts` file

## Demo Instructions

* `yarn`

* `yarn start`

There is a demo experience that has a UI and an service API. The UI makes API calls to the service. We can see the data rendered in the view.

# WALKTHROUGH

SET DEMO AS AUTHRESS ACCOUNT:

* [Demo slides](https://docs.google.com/presentation/d/1wVFtEbk7ilQS5MJzrTABA4dS3z2mCIpv1rBcPdL4_aU/edit#slide=id.g291f1f3c024_0_0)

* [Extended Version](https://drive.google.com/drive/folders/1qeY7_MOUJQ7-b-WXptIgD7HOwILPNwjJ)

0A. Reminder, it takes 30 after updating the record and removing reports/* for that to be propagated, because Access Record resource removals take 30s in the background.

1. https://authress.io/app/#/settings

2. Delete comments in report controller

3. Delete Server.ts middleware

### Starting

* All data is public, users can log in and see their icon displayed.

* The API is running and the UI can make these calls, but they are unauthenticated.

### Add Login verification

* Add a middleware to get the token and verify it

```js server.ts

app.use(authress);

```

* Demo that the UI doesn't work anymore because the user isn't logged in.

* Add a guard in the UI that requires the user to log in.

```js router.ts

await ensureUserIsLoggedIn(next);

```

* Then they log in

### Add authorization

* Navigate to a specific resource

* We'll add a check to the service code which ensures that a user has the right permission to the resource

```js reportsController.ts

const result = await authress.hasAccessToResource(userId, '/reports', 'reports:get');

  if (!result) {

    return forbidden(response);

  }

```

* Then we'll see that they don't

* Then go to Authress and configure:

  * A new role

  * Add the role to the access record for the global reports

* What if they should only have access to some reports:

```js reportsController.ts

const result = await authress.getUserResources(userId, '/reports', 'reports:get');

allowedReports = result;

```

* Go back to the UI to display the list which now only has one element

## Resource Hierarchies

* Show Access Record for Sub Resources

* Show Audit Trial