Using OAuth2 with Angular SPA

There are quite a few stackoverflow questions out there asking how to secure an OAuth2 client ID + secret in a pure-Angular SPA (eg. here, here or here) A lot of the answers eventually aim at changing the givens: pure client-side Angular application use OAuth2 want to secure client ID + secret by suggesting to … Continue reading Using OAuth2 with Angular SPA


Technology stack growing pains

The basic technology stack of the server and web client is pretty much defined. The server will be running on a Java app server, the code is based on the Spring framework, jOOQ and an underlying PostgreSQL DBMS. Mainstream stuff, really. The client will be a stand-alone Angular 4 client, with Material design. A … Continue reading Technology stack growing pains