React.js authentication with Okta

25 Sep 2023

React
Okta

In today’s blog post, we will explore how to implement authentication in a React.js application using Okta as the identity management provider. Okta is a popular cloud-based service that helps developers add authentication and authorization to their applications easily.

Prerequisites

Before we dive into the implementation, make sure you have the following prerequisites set up:

A React.js project created using create-react-app. If you don’t have one yet, you can create a new project by running the following command in your terminal:

npx create-react-app my-react-app

An Okta Developer account. If you don’t have one, you can sign up here.

Setting up Okta

Once you have the prerequisites, follow these steps to set up Okta:

Log in to your Okta Developer account and create a new application. This will give you a Client ID and Issuer URI, which you will need later.
Enable the necessary features for your application, such as password-based authentication or social login. You can configure these options in the Okta developer dashboard.

Installing Dependencies

To get started with Okta in your React.js application, you need to install a few dependencies. Open a terminal inside your project directory and run the following command:

npm install @okta/okta-react dotenv

Implementing Okta Authentication

Now that you have Okta set up and the dependencies installed, let’s move on to implementing authentication in your React.js application:

Import the necessary modules in your src/App.js file:

import { Security, SecureRoute, ImplicitCallback } from '@okta/okta-react';
import dotenv from 'dotenv';

Create a .env file in your project root directory and add the following variables:

REACT_APP_OKTA_CLIENT_ID=<your Okta client ID>
REACT_APP_OKTA_ISSUER=<your Okta issuer URI>

Update your src/App.js component with the necessary configuration:

import React from 'react';

dotenv.config();

const App = () => {
  return (
    <Security
      issuer={process.env.REACT_APP_OKTA_ISSUER}
      clientId={process.env.REACT_APP_OKTA_CLIENT_ID}
      redirectUri={window.location.origin + '/implicit/callback'}
    >
      {/* Your routes and components go here */}
    </Security>
  );
};

export default App;

Define your protected routes using the SecureRoute component:

import React from 'react';
import { SecureRoute, ImplicitCallback } from '@okta/okta-react';

const Home = () => {
  return <h1>Welcome to the protected home page!</h1>;
};

const Dashboard = () => {
  return <h1>Welcome to the protected dashboard!</h1>;
};

const App = () => {
  return (
    <Security
      issuer={process.env.REACT_APP_OKTA_ISSUER}
      clientId={process.env.REACT_APP_OKTA_CLIENT_ID}
      redirectUri={window.location.origin + '/implicit/callback'}
    >
      <SecureRoute exact path="/" component={Home} />
      <SecureRoute exact path="/dashboard" component={Dashboard} />
      <Route path="/implicit/callback" component={ImplicitCallback} />
    </Security>
  );
};

export default App;

Start your React.js development server and navigate to the protected routes. You will be redirected to Okta’s login page and, upon successful authentication, redirected back to your protected route.

Conclusion

In this blog post, we explored how to implement authentication in a React.js application using Okta as the identity management provider. We covered setting up Okta, installing the necessary dependencies, and implementing authentication in your React.js application. Adding authentication to your application enhances security and allows you to protect certain routes or components from unauthorized access.

#React #Okta #Authentication