Skip to main content Link Menu Expand (external link) Left Arrow Right Arrow Document Search Copy Copied

Goal of this Learning module

The goal of this learning module is to learn how to improve the security of a Next.js single-page application by using SSL certificates, enabling single sign-on using Microsoft Azure, using HTTP security headers and secure local storage.

Learning Objectives

At the end of this learning module, attendees will be able to:

  • Request SSL certificates from UTS.
  • Use the SSL certificates a dockerized Next.js application with Nginx
  • Register your application in the Azure Active Directory.
  • Add the Microsoft Authentication Library for React (msal-react) to your application.
  • Create custom sign-in and sign-out MUI buttons for your webpage.
  • Configure SSO in your SPA using the authentication flow.
  • Use the redirect and pop-up workflows for SSO.
  • Read and display the account information of the user who is currently logged in.
  • Use six different HTTP security headers to protect against common security attacks.
  • Encrypt data and store it securely in the browser’s local storage.

Table of Content

  1. SSL Certificates
  2. Authentication
    1. SPA Registration
    2. Single Sign-On
    3. Testing
  3. Security Headers
  4. Secure Local Storage
  5. Conclusion