TerryMooreII
commented
10 years ago Yes this service would work for you if you are planning on using Azure for your backend. All this service does is call the Azure client login method passing it the oAuth provider parameter, this will then pop up that oAuth providers login screen. As long as you configure your routing to check if the user is isLoggedIn() then your app will be secure. Also, at no time are your user's userid or password typed into your input boxes, so your user's don't have to worry about you stealing their credentials.
See more info about the Azure oAuth:
http://azure.microsoft.com/en-us/documentation/articles/mobile-services-html-get-started-users/
You can kinda ignore the code section at the bottom of the link since you would be calling the Azureservice.login(provider) method and it will take care passing the request to Azure and then it will store the auth token for the users login session. You can then use the .isLoggedIn() method to see if a user is currently logged in or not.
I hope that all makes sense, if not please let me know.
A question that popped in my mind about using this service is: How secure is using oAuth (with this service) to protect my backend in Angular?
I'm trying to decide if i should go with Angular for my next project and need to add some user management in the mix. I also need to have my app run as a website (so without cordova/phonegap). So i would like to know if your service is secure enough to provide this functionality.