How to Implement JWT Authentication in React?

Secure user authentication is essential in modern web development for safeguarding sensitive data and delivering a seamless user experience. A well-liked and effective technique for handling authentication in web applications is JSON Web Tokens (JWT).

In order to improve security and user access management, we will look at how to integrate JWT authentication in a React application in this article.

What is JWT Authentication?

A condensed and self-contained method of conveying user information between two parties is through JSON Web Tokens (JWT). There are three components to them: a header, a payload, and a signature. Digital signatures on JWT tokens guarantee their integrity and guard against unwanted tampering.

JWT authentication works as follows:

  1. User login: When a user logs in with valid credentials, the server generates a JWT token containing user information, including user ID, roles, and expiration time.
  2. Token storage: The token is securely stored on the client side, typically in the browser’s local storage or an httpOnly cookie.
  3. Authorization: For each subsequent request to protected routes or APIs, the JWT token is included in the request header. The server validates the token’s signature, ensuring the user’s identity and access permissions.

Setting up the Backend Server

You must set up a backend server to handle user authentication and token creation before adding JWT authentication to a React application. This may be accomplished using widely utilized backend technologies like Node.js, Express, and MongoDB.

  1. Create user registration and login endpoints in your backend API to handle user authentication.
  2. Use a library like `jsonwebtoken` to generate and sign JWT tokens upon successful login.
  3. Ensure that your backend server includes CORS headers to allow communication with the React frontend from different domains.

Implementing JWT Authentication in React

Now that we have the backend server ready, let’s proceed with integrating JWT authentication in our React application.

  1. Install necessary packages:

npm install axios react-router-dom

  1. Create an AuthService.js file in your React application to manage authentication-related functions like login and logout.
// AuthService.js

import axios from 'axios';

const API_URL = 'http://your-backend-api-url';

class AuthService {
  login(username, password) {
    return axios.post(API_URL + '/login', { username, password })
      .then((response) => {
        if (response.data.token) {
          localStorage.setItem('user', JSON.stringify(response.data));
        }
        return response.data;
      });
  }

  logout() {
    localStorage.removeItem('user');
  }

  getCurrentUser() {
    return JSON.parse(localStorage.getItem('user'));
  }
}

export default new AuthService();

Code language: JavaScript (javascript)
  1. Set up a Login component to handle user login in your React application.
// Login.js

import React, { useState } from 'react';
import AuthService from './AuthService';

const Login = () => {
  const [username, setUsername] = useState('');
  const [password, setPassword] = useState('');

  const handleLogin = (e) => {
    e.preventDefault();
    AuthService.login(username, password).then((user) => {
      console.log(user); // You can redirect the user to a protected route here.
    });
  };

  return (
    <div>
      <h2>Login</h2>
      <form onSubmit={handleLogin}>
        <input
          type="text"
          placeholder="Username"
          value={username}
          onChange={(e) => setUsername(e.target.value)}
        />
        <input
          type="password"
          placeholder="Password"
          value={password}
          onChange={(e) => setPassword(e.target.value)}
        />
        <button type="submit">Login</button>
      </form>
    </div>
  );
};

export default Login;
Code language: JavaScript (javascript)
  1. Create a ProtectedRoute component to protect specific routes that require authentication.
// ProtectedRoute.js

import React from 'react';
import { Route, Redirect } from 'react-router-dom';
import AuthService from './AuthService';

const ProtectedRoute = ({ component: Component, ...rest }) => {
  const user = AuthService.getCurrentUser();

  return (
    <Route
      {...rest}
      render={(props) =>
        user ? <Component {...props} /> : <Redirect to="/login" />
      }
    />
  );
};

export default ProtectedRoute;

Code language: JavaScript (javascript)
  1. Set up the React Router in your App.js file.
// App.js

import React from 'react';
import { BrowserRouter as Router, Route, Switch } from 'react-router-dom';
import Login from './Login';
import ProtectedRoute from './ProtectedRoute';

const Home = () => <h2>Welcome to the Home Page!</h2>;

const App = () => {
  return (
    <Router>
      <div>
        <Switch>
          <Route path="/login" component={Login} />
          <ProtectedRoute path="/" component={Home} />
        </Switch>
      </div>
    </Router>
  );
};

export default App;

Code language: JavaScript (javascript)

Conclusion

For managing user authentication and authorization in React apps, JWT authentication is a strong and secure technique. By implementing JWT authentication as described in this blog, you can safeguard sensitive routes and APIs and make sure that only authorized users can access limited resources within your application.

This improves user experience and overall security, strengthening the stability and dependability of your React application.

Posted

in

by

Abdul Rehman (Software Developer)

Tags:

, ,

Recent Post

  • How to Implement In-Order, Pre-Order, and Post-Order Tree Traversal in Python?

    Tree traversal is an essential operation in many tree-based data structures. In binary trees, the most common traversal methods are in-order traversal, pre-order traversal, and post-order traversal. Understanding these tree traversal techniques is crucial for tasks such as tree searching, tree printing, and more complex operations like tree serialization. In this detailed guide, we will […]

  • Mastering Merge Sort: A Comprehensive Guide to Efficient Sorting

    Are you eager to enhance your coding skills by mastering one of the most efficient sorting algorithms? If so, delve into the world of merge sort in Python. Known for its powerful divide-and-conquer strategy, merge sort is indispensable for efficiently handling large datasets with precision. In this detailed guide, we’ll walk you through the complete […]

  • Optimizing Chatbot Performance: KPIs to Track Chatbot Accuracy

    In today’s digital age, chatbots have become integral to customer service, sales, and user engagement strategies. They offer quick responses, round-the-clock availability, and the ability to handle multiple users simultaneously. However, the effectiveness of a chatbot hinges on its accuracy and conversational abilities. Therefore, it is necessary to ensure your chatbot performs optimally, tracking and […]

  • Reinforcement Learning: From Q-Learning to Deep Q-Networks

    In the ever-evolving field of artificial intelligence (AI), Reinforcement Learning (RL) stands as a pioneering technique enabling agents (entities or software algorithms) to learn from interactions with an environment. Unlike traditional machine learning methods reliant on labeled datasets, RL focuses on an agent’s ability to make decisions through trial and error, aiming to optimize its […]

  • Understanding AI Predictions with LIME and SHAP- Explainable AI Techniques

    As artificial intelligence (AI) systems become increasingly complex and pervasive in decision-making processes, the need for explainability and interpretability in AI models has grown significantly. This blog provides a comprehensive review of two prominent techniques for explainable AI: Local Interpretable Model-agnostic Explanations (LIME) and Shapley Additive Explanations (SHAP). These techniques enhance transparency and accountability by […]

  • Building and Deploying a Custom Machine Learning Model: A Comprehensive Guide

    Machine Learning models are algorithms or computational models that act as powerful tools. Simply put, a Machine Learning model is used to automate repetitive tasks, identify patterns, and derive actionable insights from large datasets. Due to these hyper-advanced capabilities of Machine Learning models, it has been widely adopted by industries such as finance and healthcare.  […]

Click to Copy