Angular (web framework)

From David's Wiki
Jump to navigation Jump to search
\( \newcommand{\P}[]{\unicode{xB6}} \newcommand{\AA}[]{\unicode{x212B}} \newcommand{\empty}[]{\emptyset} \newcommand{\O}[]{\emptyset} \newcommand{\Alpha}[]{Α} \newcommand{\Beta}[]{Β} \newcommand{\Epsilon}[]{Ε} \newcommand{\Iota}[]{Ι} \newcommand{\Kappa}[]{Κ} \newcommand{\Rho}[]{Ρ} \newcommand{\Tau}[]{Τ} \newcommand{\Zeta}[]{Ζ} \newcommand{\Mu}[]{\unicode{x039C}} \newcommand{\Chi}[]{Χ} \newcommand{\Eta}[]{\unicode{x0397}} \newcommand{\Nu}[]{\unicode{x039D}} \newcommand{\Omicron}[]{\unicode{x039F}} \DeclareMathOperator{\sgn}{sgn} \def\oiint{\mathop{\vcenter{\mathchoice{\huge\unicode{x222F}\,}{\unicode{x222F}}{\unicode{x222F}}{\unicode{x222F}}}\,}\nolimits} \def\oiiint{\mathop{\vcenter{\mathchoice{\huge\unicode{x2230}\,}{\unicode{x2230}}{\unicode{x2230}}{\unicode{x2230}}}\,}\nolimits} \)

Angular is a web framework by Google which allows you to create progressive web apps (PWAs) which are single page applications (SPA).
It can also be used to create native mobile or desktop apps.
Note that this is a front-end framework only. You will need to pair it with a back-end framework to get stateful functionality.

This page is about Angular, also known as Angular 2. For AngularJS, the predecessor to Angular, see

Getting Started

See Angular Guide Setup Local.

  • Install NodeJS and npm
  • Install the Angular CLI: npm install -g @angular/cli

Creating a project

ng new <project-name>
ng serve --open



ng generate component <name>

Components are the building blocks of Angular.
Each component consists of a HTML block and an associated JS class.


Services are singleton classes which can be accessed from any component.

ng generate service <name>

To access a service from a component, add a reference to the service as a parameter to the constructor of your component.


ng generate module app-routing --flat --module=app
Route Module Example
import { NgModule } from '@angular/core';
import { RouterModule, Routes } from '@angular/router';
import { HeroesComponent } from './heroes/heroes.component';

const routes: Routes = [
  { path: 'heroes', component: HeroesComponent }

  imports: [RouterModule.forRoot(routes)],
  exports: [RouterModule]
export class AppRoutingModule { }


See Angular Guide Deployment

The basic idea is to do the following:

  1. Create a production build:
    ng build --prod
  2. Copy the dist folder to the server.
  3. Redirect missing files to index.html.


Place the following in the apache config for your site or in an .htaccess file:

Rewrite Rules
RewriteEngine On
# If an existing asset or directory is requested go to it as it is
RewriteRule ^ - [L]

# If the requested resource doesn't exist, use index.html
RewriteRule ^ /index.html


How to setup an Express server to host your Angular web application:


First setup CSRF Protection:

this.csrfProtection = csurf({cookie: true});;
  (req: Request, res: Response, next: NextFunction): void => {
    res.cookie('XSRF-TOKEN', req.csrfToken());

Then setup your routes to serve your frontend:

if ( {
  const myProxy = httpProxy.createProxyServer({ws: true});
  console.log(`Proxying to ${}`);
  router.all('/*', (req: Request, res: Response, next: NextFunction) => {
      {target: req.protocol + '://' +}
} else {
  router.all('/*', express.static(;
  router.all('/*', (req: Request, res: Response, next: NextFunction) => {
    res.status(200).sendFile('index.html', {root:});

If you are proxying for development, you will also need to proxy websockets:

  (request: http.IncomingMessage, socket: net.Socket, head: Buffer) => {
    const pathname = url.parse(request.url).pathname;

    if (pathname === '/backend') {
      this.wss.handleUpgrade(request, socket, head, ws => {
        this.wss.emit('connection', ws);
    } else if ( {
      console.log('proxying websocket');, socket, head, {
        target: 'ws://' +,
    } else {


Some interesting libraries for Angular

Advanced Usage


See http#security-xsrf-protection

By default, the HttpClientModule will automatically reflect the XSRF-TOKEN cookie as X-XSRF-TOKEN if the following conditions are met:

  • XSRF-TOKEN is a cookie under / with HttpOnly set to false.
  • The outgoing request is not a GET or HEAD request.
  • The outgoing request path is a relative path of form api/endpoint or //

You can also set the name of the cookie and name of the header to something else if you prefer.

Open in new tab

If you're making an SPA, and therefore using client-side routing with routerLink, your buttons and links may not have open in a new link on right click.
See SO for a way to add this.

Advanced Routing