txomin txomin - 2 months ago 16
Java Question

Angularjs authentication issue

i'm trying to implement a JWT based authentication in my angularjs app. But i'm struggleing with the request header issues. The thing is that i have a Controller that calls a service, and this one returns a token. This step works fine.

'use strict';

angular.module("home.controllers", ['home.services', 'ngStorage'])

.controller('HomeController', ['$scope', '$location', '$http', '$localStorage', 'HomeService',
function($scope, $location, $http, $localStorage, HomeService) {

function login(user, password) {

HomeService.login(user, password).then(

function(loginResult) {
var token = loginResult.token;

if (loged()) {
$localStorage.token = token;
$http.defaults.headers.common.Authorization = 'Bearer ' + token;

function(err) {

function loged() {
return $scope.token !== null;

return {

loged: function() {
return loged();

login: function(user, password)) {
return login(user, password)


But the thing is that I would like to redirect the user after login to "secure/index" with the "Authentication" header in the request because I have a Spring filter checking all the "*/secure" paths have that header.

The main app.js is the following

'use strict';

angular.module("home", ['ui.router', 'home.controllers', 'urlLanguageStorage', 'pascalprecht.translate', 'ui.bootstrap', 'ngStorage'])

.config(['$stateProvider', '$translateProvider', '$urlRouterProvider',
function($stateProvider, $translateProvider, $urlRouterProvider) {


.state("home", {
url: "/",
templateUrl: "resources/js/home/views/home/home.html",
controller: "HomeController"

.state("contacto", {
url: "/contacto",
templateUrl: "resources/js/home/views/contact/contac.html",
controller: "HomeController"

.run(['$localStorage', '$http', function($localStorage, $http) {

if ($localStorage.token) {
$http.defaults.headers.common.Authorization = 'Bearer ' + $localStorage.token;

The thing is that it doesnt redirect the page. Instead of $location i tried with $window.href and it redirect the page succesfully but with no auth header in the request.

Any ideas/suggestions for that? note that I'm a begginer in Angularjs so probably there are more things wrong.

Thanks in advance


It looks like once you have your token, you are redirecting to secure/index with $location.path('secure/index');. However, the example code you have doesn't show a state that maps to secure/index.