Hi Sumeet, If you are on SSL, basic authentication might be secure enough. Without SSL it's highly unsecured. You can use any form af authentication you fancy. If you don't have good knowledge in this area I would advise to use a trusted 3rth party to handle this. It's very easy to mess this up. There are a lot of solutions available for this. Google's firebase auth, google Oauth, auth0. Most social networks also provide an api to handle this. If your application has it's own server, or not makes also a big difference.
here are some relevant links on auth: - https://www.owasp.org/index.php/Authentication_Cheat_Sheet - https://codingkilledthecat.wordpress.com/2012/09/04/some-best-practices-for-web-app-authentication/ - https://developers.google.com/identity/ - https://blog.risingstack.com/web-authentication-methods-explained/ - https://auth0.com/ - https://www.firebase.com/docs/web/guide/user-auth.html - http://oauth.net/ Going with token based security <https://jwt.io/> is the smartest thing to do at the moment. Hope this helps you a bit, Regards Sander -- You received this message because you are subscribed to the Google Groups "AngularJS" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/angular. For more options, visit https://groups.google.com/d/optout.
