Enhanced User Authentication and Session Management in React Application

[Virussandy]

application

Purpose

This update addresses the need to improve user authentication and session management within the application. By integrating cookies for session storage and handling login/logout flows more effectively, we aim to enhance the user experience and ensure secure access control.

Goals

1. Implement session storage using cookies to persist user information across sessions.
   2. Ensure that user authentication status is accurately reflected and managed within the application.
   3. Redirect users to appropriate login/logout pages based on their authentication status.
   4. Improve the user interface for authentication-related actions.

Approach

The solution involves several key changes:

Adding Cookies library for managing cookies.
Implementing functions to map user information and set authentication states based on cookies or session storage.
Modifying the login/logout redirection logic to ensure users are directed to the correct pages based on their authentication status.
Updating UI components to reflect these changes.

User stories

As a user, I want my login state to be remembered across sessions.
As a user, I want to be redirected to the login page if I am not authenticated.
As a user, I want a seamless logout experience that clears my session and redirects me appropriately.

Release note

Enhanced user authentication and session management using cookies. Improved login/logout redirection and session persistence.

Documentation

N/A - These changes are internal and do not require updates to user-facing documentation.

Training

N/A - No changes required for training content.

Certification

N/A - No impact on certification exams.

Marketing

N/A - No marketing content required for this internal update.

Automation tests

• Unit tests

  Code coverage information
  Unit tests have been updated to cover the new session management and authentication logic, ensuring robust test coverage.

• Integration tests

  Details about the test cases and coverage
  Integration tests have been added to verify the end-to-end flow of user authentication, session persistence, and redirection.

Security checks

• Followed secure coding standards in http://wso2.com/technical-reports/wso2-secure-engineering-guidelines? yes/no
  Yes
• Ran FindSecurityBugs plugin and verified report? yes/no
  Yes
• Confirmed that this PR doesn't commit any keys, passwords, tokens, usernames, or other secrets? yes/no
  Yes

Samples

No samples are necessary for this feature as it pertains to internal session management improvements.

Related PRs

N/A

Migrations (if applicable)

N/A - No migrations required for this update.

Test environment

JDK versions: 11, 17
Operating systems: Windows 10, macOS Monterey
Databases: N/A (no database changes)
Browsers: Chrome 103, Firefox 101, Edge 102

Learning

The implementation involved researching best practices for managing user sessions and authentication in React applications. Resources included articles on using cookies for session storage and leveraging the js-cookie library for cookie management.

[CLAassistant]

All committers have signed the CLA.