User authentication using AngularJS, PHP, MySQL

I received a number of tutorial requests to publish a tutorial on user authentication. They say “Mixing PHP, MySQL, and AngularJS with Sessions and User Login, Logout, Account Creation” would be awesome”.

We will create a simple AngularJS web app that will have the following 3 functionality.

* Login, Signup and Logout.*

We will create a ReSTful web service using PHPSlim framework as data provider. The data from the ReSTful service will be used to enable user authentication in our AngularJS application.


Live Demo Download

To run the user authentication web application in your local machine, follow the following 3 simple steps.

  • *Download *the project files
  • Import angularcode_auth.sql
  • Enable rewrite_modulein apache server for friendly urls


We will first create the Login page. After the user enters the correct combination of email and password, it will be authenticated from the credentials stored at our MySQL database. On successful login it will store the credentials in the user session and redirect to the welcome page. All subsequent pages browsed after login will have access to the user information.

Upon unsuccessful login or logout, the app will redirected the user to the login page.

We will use the elegant AngularJS-Toaster plugin to communicate to the user easily.

For this application we will also create some simple AngularJS directives for our SignUp form.


Representational state transfer (ReST) is a software architecture for www. Distributing the data to different kind of applications becomes convenient using this architecture. It produce status code response in JSON or XML format.

We will create following 5 folders to manage our code effectively.

api [ This directory will serve as our restful data provider ]

–          config.php [ Database configuration information ]
–          libs [ The PHPSlim library files ]
–          v1 [ This folder controls our API version ]
—   .htaccess [ used to convert urls to user friendly url]
—   passwordHash.php [ Generate password hash ]
—   dbConnect.php [ The function to connect to MySQL Database ]
—   dbHandler.php [ This file contains some database helper functions ]

—   index.php [ The starting point of the API ]
—  authentication.php [ Contains functions for user authentication, login, signup, session ]

app –          app.js [ The main angularJS file that controls routing and authentication ]
–          authCtrl.js
–          data.js
–          directives.js

css –          bootstrap.min.css
–          custom.css
–          toaster.css

js [ This directory contains required javascript libraries ] –          angular.min.js
–          angular-route.min.js
–          angular-animate.min.js
–          toaster.js

partials [ Contains our partial pages that will be served based on user request ] –          login.html
–          signup.html
–          dashboard.html

index.php [ Starting point of our application contains css files, javascript files and ng-view placeholder to serve all requested partial pages ]


All the API files required to create the ReSTful webservice is stored inside the “api” directory.

The only file you need to change is the “config.php” [ This file contains the database login information. Put your database credentials here ]

Also we need to import the “angularcode_auth.sql” file into our MySQL database

Now our data provider is ready. Let’s create the starting point of our application (index.php)

This file contains the required stylesheet and javascript files with the placeholder to serve partial pages

We will create and store all our custom AngularJS code files inside the app/ directory

app/ app.js

This is the starting point of our AngularJS application. Here we will load the modules and configure the route provider.

app / data.js

We will communicate with our ReSTful API using this file. This file contains some helper functions and acts as our service provider.

AngularJS Service

Sometimes while building our AngularJS application, we need some variables or functions to be accessed throughout our application from any controller. Here comes the role of AngularJS Service. As AngularJS Service services are single-tone, the defined properties and functions can be accessed from anywhere.

app /authCtrl.js

This is the controller which communicates with our front end.

app / directives.js

This file contains 2 custom AngularJS directives we used for our application.

focus – This directive focus on the desired form element on page load

password-match – Used to check if both the password and confirm password are same in our user signup page.

AngularJS Directives

Directives are one of the most powerful part of the AngularJS framework. Using these we can create or extend the html elements.

We can extensively use these AngularJS directives to create templates, to validate forms, etc.

In AngularJS, it is always recommended to manipulate the DOM using directives only.