Not really a 100% angular question, but: I'm using a bearer-token strategy for authenticating users (the node server handles the oauth dance and then passes a token back to the frontend), and then I attach that token to all my $http calls using $http's headers config methods. Then my system can authorize access to different RESTful resources based on the token.
My question is: how does one replicate this with non-$http server hits? For example, if I have an image to load, the browser hits the image resource from the server without going through $http, and it doesn't attach the authentication header to the request. For the time being, it's possible to just hoke up "security" by making all my auth-required BLOBs have long hexhash filenames (and making it impossible to list filenames from the server), but it seems like what I really want to do is attach a bearer: token authentication header to all HTTP requests on this particular server. Eric -- You received this message because you are subscribed to the Google Groups "AngularJS" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/angular. For more options, visit https://groups.google.com/d/optout.
