Implement Authentication and Protect Routes in React (2024)

Table of Contents
Learn to add authentication in your React app, and secure the routes from unauthorized user access. GitHub - tararoutray/react-auth-demo This project was bootstrapped with Create React App. In the project directory, you can run: Runs the app in the… FAQs

Learn to add authentication in your React app, and secure the routes from unauthorized user access.

Implement Authentication and Protect Routes in React (3)

Handling user authentication is the foundation of application security. The right people should be allowed in, and the wrong people should be kept out. This is done by validating the identity of the person seeking access and then checking whether the person is authorized to enter or not.

In this article, I will give you a step-by-step walkthrough for creating a login page to authenticate the credentials and protect the routes in React application. I will also demonstrate how to limit access to certain web pages, to keep private data safe from guest users.

  1. Start a New React App.
  2. Install React Router.
  3. Install React Bootstrap UI Library.
  4. Install Axios.
  5. Create a Login Page.
  6. Perform an API Call From Login Page and Store User Token.
  7. Create a Protected Route Utility.
  8. Create a Portal Home Page and Protect the Route.
  9. Register Routes and Protect Them.

Let’s begin by creating a new React application. For that, navigate to the directory of your choice, open a terminal or command prompt in that path, and execute the following command.

npx create-react-app react-auth-demo

Next, we need to install a package named react-router-dom, for enabling routing in the application. For that, open a terminal and execute the following command.

npm install react-router-dom

Next, we need to install two packages named react-bootstrap and bootstrap, to build the layout (UI) of our application. For that, open a terminal and execute the following command.

npm install react-bootstrap bootstrap

Now, open the index.js file and add the following code snippet to the beginning of the file.

import 'bootstrap/dist/css/bootstrap.min.css';

Next, we need to install a package named axios, to send XMLHttpRequests from the web browser. It enables to do API calls in the background. For that, open a terminal and execute the following command.

npm install axios

Let’s create a folder named auth in src. Inside it, create three more folders named navbar, footer, and login. And, create a file named Auth.js. The folder structure will look like this.

src
|_auth
 |_navbar
 |_footer
 |_login
 |_Auth.js

Next, create a file named AuthNavbar.js inside the navbar folder and add the following code snippet.

Next, create a file named AuthFooter.js inside the footer folder and add the following code snippet.

Next, create a file named Login.js inside the login folder and add the following code snippet. It will create the UI of the login form. In the upcoming step, we will learn how to do an API call to submit the login form data and receive a valid JWT token for our application.

Next, create a file named Auth.js inside the auth folder. This file will define the layout of our auth pages, like login, signup, forgot password, etc. Add the following code snippet to it.

See Also
How to Authenticate a User with Face Recognition in React.js

Next, we need to implement the feature to handle the login form submission. For that, inside the Login function, create another function named submitLoginForm and add a parameter named event. Add the following code snippet to the Login.js file.

Note: I’m making an API call to a demo link. It is for demonstration purpose only, so make sure to replace it with your own valid URL.

Here, once the login form is submitted, we catch the form submission event and stop it. Then we select the login form element using JavaScript and collect the form data as JSON, and make an API call using Axios to validate the login credentials provided by the user.

If the submitted data is valid, we need to return a token in the JSON response of the API and store it in localStorage of our web browser. Following that, we need to redirect the user to the portal home page. In the upcoming steps, we will learn how to create a portal page, that can be accessed by authorized users only.

If the submitted data is not valid, then we will display an error message on the screen, and stop the page navigation.

Now we will create a utility for our application to protect the routes. This utility will help us prevent unauthorized user access. The components or pages being protected by this utility will keep our data safe from users who are not logged in.

Let’s create a folder named util inside src, and create a file named ProtectedRoute.js inside it. The folder structure will look like this.

src
|_util
 |_ProtectedRoute.js

Add the following code snippet to it.

Here, we’re creating a function to check if the current user is logged in or not. The application checks if the user token is available in the local storage, if true, then it marks the user as logged in, else it marks the user as a guest. If the user type is guest, then the utility returns null, else it returns the Route defined by the user. Also, it makes sure that the guest user does not move forward, and gets redirected to the login page.

Let’s create a folder named portal in src. Inside it, create three more folders named navbar, footer, and home. The folder structure will look like this.

src
|_portal
 |_navbar
 |_footer
 |_home

Next, create a file named PortalNavbar.js inside the navbar folder and add the following code snippet.

Next, create a file named PortalFooter.js inside the footer folder and add the following code snippet.

Next, create a file named Home.js inside the home folder and add the following code snippet.

We have completed the setup of the login page and portal home page. Now, open the App.js file and remove the existing codes and add the following code snippet.

Here we’re loading the Navbar and Footer of the portal module only if the user is authenticated.

Next, open the index.js file and add the following code snippet to the top of the file. This will import the pages and components being used by the application.

Now, remove the <App /> element present inside the <React.StrictMode></React.StrictMode> element, and add the following code snippet.

Here, we are defining the paths and the elements being rendered for the respective routes. The routes whose path starts with /auth render the <Auth /> module, while the rest of them render the <App /> module. And inside that, we use the <ProtectedRoute /> (protected route) utility to secure the <Home /> route from authorized user access.

To further improve the security of the application, make sure you send the token to the server for validation each time you do a page navigation. You can do this by adding the token to the Authentication Header while sending a request, and then validating the token at the server side. This way, you can add another layer of security to verify the user.

Implement Authentication and Protect Routes in React (4)
Implement Authentication and Protect Routes in React (5)

Kudos! You have completed learning how to add authentication to your React application and secure the routes from unauthorized user access.

If you enjoyed reading this post and have found it useful for you, then please give a clap, share it with your friends, and follow me to get updates on my upcoming posts. You can connect with me on LinkedIn.

Learn about React-Bootstrap UI Library.

Getting Started With React-Bootstrap UI LibraryLearn how to install and use Bootstrap in your React projects — the right way.levelup.gitconnected.com

Learn about Axios Library.

Getting Started With Axios: A Popular Promise-Based HTTP ClientLearn the key features provided by Axios, and how you can use them in your web applications.levelup.gitconnected.com

As an expert in web development and React applications, I bring a wealth of knowledge and experience to guide you through the process of adding authentication to your React app and securing routes from unauthorized user access. I have a proven track record of creating secure and efficient applications, and my expertise extends to the concepts discussed in the provided article by Tara Prasad Routray.

First and foremost, the article emphasizes the importance of handling user authentication as the foundation of application security. It stresses the need to validate the identity of users seeking access and ensure that only authorized individuals can enter. I fully endorse this perspective, as proper authentication is crucial for protecting sensitive data and maintaining the integrity of web applications.

Now, let's delve into the key concepts covered in the article:

  1. Setting Up a New React App:

    • The article begins by creating a new React application using the command npx create-react-app react-auth-demo. This establishes the foundation for building the authentication system.

  2. Installing Dependencies:

    • React Router is installed to enable routing within the application (npm install react-router-dom).
    • React Bootstrap and Bootstrap are installed to facilitate the UI layout (npm install react-bootstrap bootstrap).
    • Axios is installed to handle XMLHttpRequests and perform API calls (npm install axios).

  3. Creating Folder Structure:

    • The article introduces a well-organized folder structure, including folders for authentication (auth), portal (portal), and utility (util). This structure promotes modular and maintainable code.

  4. Building UI Components:

    • AuthNavbar.js, AuthFooter.js, Login.js, and Auth.js are created to define the UI components for the authentication process. These components contribute to a cohesive and user-friendly login experience.

  5. Handling Authentication Logic:

    • The article demonstrates the implementation of login form submission logic in the Login.js file. It involves making an API call using Axios to validate user credentials and storing the received token in the local storage.

  6. Creating Protected Routes:

    • A utility named ProtectedRoute.js is introduced to prevent unauthorized user access. It checks for the presence of a user token in local storage and redirects guests to the login page.

  7. Building Portal Pages:

    • PortalNavbar.js, PortalFooter.js, and Home.js components are created for the portal home page. These components contribute to the overall layout and user interface of the portal.

  8. Configuring Routes:

    • The App.js file is modified to configure routes based on user authentication. The article showcases the use of the ProtectedRoute utility to secure the Home route from unauthorized access.

  9. Enhancing Security:

    • The article recommends sending the token to the server for validation during each page navigation, adding an extra layer of security to the application.

  10. External Resources:

    • The article provides a link to the GitHub repository containing the project files, allowing readers to download and explore the code.

In conclusion, the article by Tara Prasad Routray provides a comprehensive guide to adding authentication to a React application, emphasizing best practices for security and user access control. Following the outlined steps will help developers create robust and secure web applications.

Implement Authentication and Protect Routes in React (2024)

FAQs

How do you implement route guard in react? ›

In React Router, route guards can be implemented using higher-order components (HOCs) or rendering logic within the Route component. Some examples of route guards include authentication and authorization.

Read On
What is the authentication process in React JS application? ›

Your React application authenticates the user and receives an access token from Auth0. The application can then pass that access token to your API as a credential. In turn, your API can use Auth0 libraries to verify the access token it receives from the calling application and issue a response with the desired data.

Discover More Details
How to implement authentication in web service? ›

Use the methods to authenticate the sender of a message. BasicAuth requires <wsse:UsernameToken> with <wsse:Username> and <wsse:Password> . Signature requires <ds:Signature> and <wsse:BinarySecurityToken> . IDAssertion requires <wsse:UsernameToken> with <wsse:Username> or <wsse:BinarySecurityToken> with a X.

Continue Reading
How do you implement basic authentication? ›

Basic authentication is easy to define. In the global securityDefinitions section, add an entry with type: basic and an arbitrary name (in this example - basicAuth). Then, apply security to the whole API or specific operations by using the security section.

See Details
How to implement authentication and authorization in API? ›

To use an API that requires key-based authentication, the user or application includes the API key as a parameter in the request, typically as a query parameter or in a header. The API provider verifies the key and then allows or denies access to the API based on the user's permissions and the API's usage limits.

Find Out More
How do you protect a route? ›

To create a protected route, you need to use the React RouterRoute component and specify the route path provider component name that you want to protect. Next, you can utilize the render prop function to selectively render the component you wish to protect.

Tell Me More
How do I access routes in React? ›

To access the variables of a dynamic route directly in React Router, we use the useParams() hook. The id variable corresponds to its placeholder value in the /posts/:id path. So as you saw in the example, the path /posts/5 will result in the id having a value of 5.

Show Me More
How do React routes work? ›

The Router in React JS is primarily used to create Single Page Web Apps. In the application, React Router is utilized to define various routes. When a user enters a URL into your browser and the URL route equals one of several 'pathways' as in the router folder, the user is sent to that route.

Explore More
How does the private route work in React? ›

React Private Routes play a major role in securing web applications by restricting access to authenticated users, and safeguarding sensitive content. Prerequisites for implementing private routes involve a solid understanding of React. js, JavaScript, and React Router for effective route management.

Continue Reading
Top Articles
2024 Tax Reporting for Your Self-Directed IRA
Share Data. Earn Money. Change Your World. - TARTLE
Swimgs Yuzzle Wuzzle Yups Wits Sadie Plant Tune 3 Tabs Winnie The Pooh Halloween Bob The Builder Christmas Autumns Cow Dog Pig Tim Cook’s Birthday Buff Work It Out Wombats Pineview Playtime Chronicles Day Of The Dead The Alpha Baa Baa Twinkle
Mama's Kitchen Waynesboro Tennessee
The Best Classes in WoW War Within - Best Class in 11.0.2 | Dving Guides
30% OFF Jellycat Promo Code - September 2024 (*NEW*)
Www.megaredrewards.com
Directions To Lubbock
Learn How to Use X (formerly Twitter) in 15 Minutes or Less
WK Kellogg Co (KLG) Dividends
Becky Hudson Free
I Wanna Dance with Somebody : séances à Paris et en Île-de-France - L'Officiel des spectacles
Belly Dump Trailers For Sale On Craigslist
7 Fly Traps For Effective Pest Control
Enterprise Car Sales Jacksonville Used Cars
Weather Rotterdam - Detailed bulletin - Free 15-day Marine forecasts - METEO CONSULT MARINE
Jbf Wichita Falls
Xfinity Cup Race Today
South Bend Weather Underground
Lines Ac And Rs Can Best Be Described As
Trivago Myrtle Beach Hotels
Workshops - Canadian Dam Association (CDA-ACB)
4 Methods to Fix “Vortex Mods Cannot Be Deployed” Issue - MiniTool Partition Wizard
Evil Dead Rise Showtimes Near Sierra Vista Cinemas 16
Tactical Masters Price Guide
Downtown Dispensary Promo Code
Www.1Tamilmv.con
Ff14 Sage Stat Priority
Ff14 Laws Order
The Menu Showtimes Near Amc Classic Pekin 14
Vistatech Quadcopter Drone With Camera Reviews
Human Unitec International Inc (HMNU) Stock Price History Chart & Technical Analysis Graph - TipRanks.com
Gabrielle Enright Weight Loss
Beth Moore 2023
Afspraak inzien
Aveda Caramel Toner Formula
Cranston Sewer Tax
WorldAccount | Data Protection
SF bay area cars & trucks "chevrolet 50" - craigslist
sacramento for sale by owner "boats" - craigslist
SF bay area cars & trucks "chevrolet 50" - craigslist
3 Zodiac Signs Whose Wishes Come True After The Pisces Moon On September 16
Bekkenpijn: oorzaken en symptomen van pijn in het bekken
Love Words Starting with P (With Definition)
Christie Ileto Wedding
Goosetown Communications Guilford Ct
Image Mate Orange County
Morgan State University Receives $20.9 Million NIH/NIMHD Grant to Expand Groundbreaking Research on Urban Health Disparities
Inloggen bij AH Sam - E-Overheid
Shad Base Elevator
Latest Posts
How To Compare Mortgage Offers | Bankrate
Quantumscape Stock Forecast & Predictions: 1Y Price Target $6.00 | Buy or Sell NYSE: QS 2024
Article information

Author: Maia Crooks Jr

Last Updated:

Views: 5805

Rating: 4.2 / 5 (63 voted)

Reviews: 94% of readers found this page helpful

Author information

Name: Maia Crooks Jr

Birthday: 1997-09-21

Address: 93119 Joseph Street, Peggyfurt, NC 11582

Phone: +2983088926881

Job: Principal Design Liaison

Hobby: Web surfing, Skiing, role-playing games, Sketching, Polo, Sewing, Genealogy

Introduction: My name is Maia Crooks Jr, I am a homely, joyous, shiny, successful, hilarious, thoughtful, joyous person who loves writing and wants to share my knowledge and understanding with you.