Skip to content

MirzaeiRasoul/startop-react

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits
public
public
 
 
src
src
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

React Best Practices

This project is created for test and run best practices hello world.

Authentication Management

  • JWT authentication with refresh tokens: Store JWT access token in memory and refresh token in cookie.

To Do List

1. Select Best Authentiaction Mechanism. [:heavy_check_mark:]

  • Use JWT to generate access and refresh token and send to client after login request.
  • Client store JWT access token in memory and refresh token stored in cookie from backend response.
  • After any page refresh, if user is logined, client call refresh request and update tokens.
  • User can aceess to required_auth APIs with in memory access token.

2. Manage IsLogined Global State in React (Persist Login). [:heavy_check_mark:]

  • Use refresh token, AuthProvider context and AuthManager component.

3. Resolve Extra Server Request Problem by Check in Client. [:heavy_check_mark:]

  • Definition: It's update in next sequence after login (Profile.js) X No!
    Problem is render Profile page twice (one after login, one after refresh). Both of them fetch request to server.
  • Resolve this issue with remove wrong useffect dependencies.

4. Setup CSRF Protection Config. [:heavy_check_mark:]

  • Use csurf (CSRF token middleware) package and CsrfManager component.

5. Check and Verify Authentication Mechanism Functionality after the Access Token Expires. [:heavy_check_mark:]

  • Now: If access token expires, land on login page. Problem: refresh token is ok and must use it rather re-login.
  • Use refresh api call after request is failed.

6. Prevent Default Browser Console Error Logs. [:heavy_check_mark:]

  • Use from custom axios and clear console is catch blocks.

7. Select Best Database (Mongo).

8. Check and Verify User Exist in Database.

9. Study and Develop PWA Version

10. Study React reportWebVitals Package.

Optimization and Improvements

1. Check to decrease number of refresh reqs (refresh just on need auth page?) (It's Correct?)

2. Axios Error Handling Best Practices.

3. Add Blacklist Mechanism for Prevent Old Tokens.


React from Scratch\ React Global State with Context

About

Startup Search Engine

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages