In the 2 previous posts we built a backend API with DRF and a client with AngularJs.
In this part, we will add authentication and permission to our app. We will add some restrictions on who can edit and delete posts.
* Authenticated users can create blog posts
* Posts are tied to their author (edit/delete permissions)
* Posts are read only for unauthenticated users
A REST API allows your users to interact with your website from anything that can send an HTTP request. In this post we will create a RESTful api in Django using the Django-Rest-Framework. And we will access this api using a client developed under AngularJS.
To utilize the API developed in Django, we are going to use $http & $q services in Angular. The $httpservice is a core Angular service that facilitates communication with the remote HTTP servers via browser’s XMLHttpRequest object or via JSONP. $q is promise implementation that comes with Angular.
Via Jan Hesse