`,
})
export class ExampleComponent {
private storage = inject(NgStorageService);
username = "";
currentUser = this.storage.createSignal("currentUser");
async saveUser() {
await this.storage.setData("currentUser", this.username);
}
async saveUserEncrypted() {
await this.storage.setData("currentUser", this.username, {
encrypt: true,
ttlMinutes: 60,
});
}
}
```
## ๐ Enhanced Security Features
### AES-GCM Encryption
NgStorageService now uses **AES-GCM encryption** with the Web Crypto API, providing:
- **256-bit AES encryption** - Military-grade security
- **Galois/Counter Mode (GCM)** - Provides both confidentiality and authenticity
- **Unique IVs** - Each encryption uses a random initialization vector
- **Authentication tags** - Prevents tampering and ensures data integrity
- **PBKDF2 key derivation** - Secure key generation with 100,000 iterations
- **Automatic fallback** - Base64 encoding for unsupported browsers
### Encryption Usage Examples
```typescript
// Store encrypted sensitive data
await storage.setData("apiToken", "secret-api-key", {
encrypt: true,
ttlMinutes: 60, // Expires in 1 hour
});
// Retrieve encrypted data
const token = await storage.getData("apiToken", {
decrypt: true,
defaultValue: null,
});
// Check encryption support
if (storage.isEncryptionSupported()) {
console.log("Using AES-GCM encryption");
} else {
console.log("Using Base64 fallback");
}
// Clear encryption key for security
storage.clearEncryptionKey();
```
### Security Features Comparison
| Feature | Previous (Base64) | New (AES-GCM) |
| ------------------------- | ----------------- | ------------------------- |
| **Security Level** | Obfuscation only | Military-grade encryption |
| **Key Length** | None | 256-bit |
| **Authentication** | None | 128-bit auth tag |
| **Tampering Protection** | โ | โ |
| **Unique Per Encryption** | โ | โ Random IV |
| **Browser Support** | Universal | Modern + fallback |
## ๐๏ธ Configuration
### Global Providers
#### Simple Static Configuration
```typescript
import { provideNgStorageConfig } from "ng7-storage";
export const appConfig: ApplicationConfig = {
providers: [
...provideNgStorageConfig({
prefix: "myapp",
storageType: "localStorage",
defaultTTL: 60,
enableLogging: false,
}),
],
};
```
#### Dynamic Configuration with Factory
```typescript
import { provideNgStorage } from "ng7-storage";
import { environment } from "../environments/environment";
export const appConfig: ApplicationConfig = {
providers: [
...provideNgStorage(
() => ({
prefix: environment.production ? "myapp" : "myapp-dev",
storageType: environment.production ? "localStorage" : "sessionStorage",
defaultTTL: environment.production ? 60 : 30,
enableLogging: !environment.production,
caseSensitive: false,
}),
{
autoCleanup: true,
strictMode: environment.production,
enableMetrics: !environment.production,
}
),
],
};
```
#### Multiple Named Storage Instances
```typescript
import { provideNamedNgStorage, NgStorageManager } from "ng7-storage";
export const appConfig: ApplicationConfig = {
providers: [
...provideNamedNgStorage(() => ({
user: {
prefix: "user-data",
storageType: "localStorage",
defaultTTL: 0, // Persistent
enableLogging: false,
},
cache: {
prefix: "app-cache",
storageType: "localStorage",
defaultTTL: 60, // 1 hour
enableLogging: false,
},
session: {
prefix: "session-data",
storageType: "sessionStorage",
defaultTTL: 30, // 30 minutes
enableLogging: true,
},
})),
NgStorageManager,
],
};
```
### Configuration Options
```typescript
interface StorageConfig {
prefix?: string; // Storage key prefix (default: 'ng-storage')
defaultTTL?: number; // Default TTL in minutes (default: 0 = no expiry)
enableLogging?: boolean; // Enable debug logging (default: false)
caseSensitive?: boolean; // Case sensitive keys (default: false)
storageType?: "localStorage" | "sessionStorage"; // Storage type (default: 'sessionStorage')
}
interface StorageFlags {
autoCleanup?: boolean; // Auto cleanup expired items (default: true)
strictMode?: boolean; // Throw errors vs warnings (default: false)
enableMetrics?: boolean; // Enable performance metrics (default: false)
}
```
## ๐ API Documentation
### Core Methods (Now Async for Encryption Support)
#### `setData(key: string, value: T, options?): Promise`
Stores data with optional encryption and TTL.
```typescript
// Basic usage
await storage.setData("user", { name: "John", age: 30 });
// With AES-GCM encryption
await storage.setData("token", "secret-token", { encrypt: true });
// With TTL (expires in 30 minutes)
await storage.setData("cache", data, { ttlMinutes: 30 });
// With both encryption and TTL
await storage.setData("session", userData, {
encrypt: true,
ttlMinutes: 60,
});
```
#### `getData(key: string, options?): Promise`
Retrieves data with optional decryption.
```typescript
// Basic retrieval
const user = await storage.getData("user");
// With decryption
const token = await storage.getData("token", { decrypt: true });
// With default value
const theme = await storage.getData("theme", { defaultValue: "light" });
```
#### `hasKey(key: string): Promise`
Checks if a key exists (now async to handle encrypted data).
```typescript
const exists = await storage.hasKey("user");
```
#### `removeData(key: string): boolean`
Removes a specific key from storage.
```typescript
storage.removeData("user");
```
#### `removeAll(): boolean`
Clears all storage data with the current prefix.
```typescript
storage.removeAll();
```
### Encryption Methods
#### `isEncryptionSupported(): boolean`
Checks if AES-GCM encryption is available.
```typescript
if (storage.isEncryptionSupported()) {
// Use full encryption features
await storage.setData("secret", data, { encrypt: true });
} else {
// Browser falls back to Base64 encoding
console.warn("Using Base64 fallback");
}
```
#### `clearEncryptionKey(): void`
Clears the cached encryption key (useful for key rotation).
```typescript
// Clear key for security or testing
storage.clearEncryptionKey();
```
### Reactive Features
#### `createSignal(key: string, defaultValue?): Promise>`
Creates a reactive signal that automatically updates when storage changes.
```typescript
// Create reactive signals (now async)
const userSignal = await storage.createSignal("currentUser");
const themeSignal = await storage.createSignal("theme", "light");
// Use in component
@Component({
template: `
Welcome {{ userSignal()?.name }}!
`,
})
export class MyComponent {
userSignal: Signal = signal(null);
async ngOnInit() {
this.userSignal = await inject(NgStorageService).createSignal("user");
}
}
```
#### `watch(key: string): Observable`
Watches for changes to a specific key.
```typescript
storage.watch("theme").subscribe((theme) => {
console.log("Theme changed:", theme);
document.body.className = theme;
});
```
#### `watchAll(): Observable`
Watches for all storage changes.
```typescript
storage.watchAll().subscribe((event) => {
console.log(`${event.action} on ${event.key}:`, event.newValue);
});
interface StorageChangeEvent {
key: string;
oldValue: T | null;
newValue: T | null;
action: "set" | "remove" | "clear" | "expire";
timestamp: number;
}
```
#### `watchKeys(keys: string[]): Observable<{key: string, value: T}>`
Watches for changes to multiple specific keys.
```typescript
storage.watchKeys(["user", "settings"]).subscribe(({ key, value }) => {
console.log(`${key} changed:`, value);
});
```
#### `watchPattern(pattern: string): Observable<{key: string, value: T}>`
Watches for changes to keys matching a pattern.
```typescript
// Watch all user-related keys
storage.watchPattern("user.*").subscribe(({ key, value }) => {
console.log(`User data ${key} changed:`, value);
});
```
### Storage Statistics (Now Async)
#### `getStorageStats(): Promise`
Gets storage statistics (now async to handle encrypted data).
```typescript
const stats = await storage.getStorageStats();
console.log(`Total items: ${stats.totalItems}`);
console.log(`Total size: ${stats.totalSize} bytes`);
console.log(`Available space: ${stats.availableSpace} bytes`);
```
### Enhanced Methods (Now Async)
#### `updateData(key, updateFn, options?): Promise`
Updates existing data with a function.
```typescript
await storage.updateData(
"cart",
(current: CartItem[] = []) => {
return [...current, newItem];
},
{ encrypt: true }
);
```
#### `setIfNotExists(key, value, options?): Promise`
Sets data only if key doesn't exist.
```typescript
const wasSet = await storage.setIfNotExists("config", defaultConfig, {
encrypt: true,
});
```
#### `cleanup(): Promise`
Forces cleanup of expired items.
```typescript
const removedCount = await storage.cleanup();
console.log(`Removed ${removedCount} expired items`);
```
### Multiple Storage Instances
#### Using NgStorageManager
```typescript
@Component({})
export class DashboardComponent {
private storageManager = inject(NgStorageManager);
private userStorage = this.storageManager.getStorage("user");
private cacheStorage = this.storageManager.getStorage("cache");
private sessionStorage = this.storageManager.getStorage("session");
async ngOnInit() {
// Load user data from persistent storage
const userData = await this.userStorage.getData("profile");
// Load cached data
const cachedData = await this.cacheStorage.getData("dashboard-data");
// Save session state with encryption
await this.sessionStorage.setData("current-view", "dashboard", {
encrypt: true,
ttlMinutes: 30,
});
}
}
```
#### Creating Dynamic Storage Instances
```typescript
@Injectable()
export class StorageManagerService {
private storageManager = inject(NgStorageManager);
createTenantStorage(tenantId: string): NgStorageService {
return this.storageManager.createStorage(`tenant-${tenantId}`, {
prefix: `tenant-${tenantId}`,
storageType: "localStorage",
defaultTTL: 0,
});
}
}
```
## ๐ก Usage Examples
### User Authentication Service
```typescript
@Injectable({ providedIn: "root" })
export class AuthService {
private storageManager = inject(NgStorageManager);
private storage = this.storageManager.getStorage("user");
// Reactive authentication state
isAuthenticated = computed(() => this.storage.hasKey("auth"));
currentUser: Signal = signal(null);
async ngOnInit() {
this.currentUser = await this.storage.createSignal("currentUser");
}
async login(credentials: LoginCredentials): Promise {
const result = await this.http.post("/api/login", credentials).toPromise();
// Store encrypted auth data with 8-hour TTL
await this.storage.setData("auth", result.token, {
encrypt: true,
ttlMinutes: 8 * 60,
});
await this.storage.setData("currentUser", result.user);
return result;
}
logout(): void {
this.storage.removeMultiple(["auth", "currentUser"]);
// Clear encryption key for security
this.storage.clearEncryptionKey();
}
}
```
### Secure User Preferences Service
```typescript
@Injectable({ providedIn: "root" })
export class PreferencesService {
private storageManager = inject(NgStorageManager);
private storage = this.storageManager.getStorage("user");
// Reactive preferences
theme: Signal = signal(null);
language: Signal = signal(null);
notifications: Signal = signal(null);
async ngOnInit() {
// Initialize reactive preferences
this.theme = await this.storage.createSignal("theme", "light");
this.language = await this.storage.createSignal("language", "en");
this.notifications = await this.storage.createSignal("notifications", true);
// Watch for theme changes and apply to document
this.theme$.subscribe((theme) => {
document.body.setAttribute("data-theme", theme || "light");
});
}
get theme$() {
return this.storage.watch("theme");
}
async updatePreferences(updates: Partial): Promise {
// Store preferences with encryption
for (const [key, value] of Object.entries(updates)) {
await this.storage.setData(key, value, { encrypt: true });
}
}
resetToDefaults(): void {
this.storage.removeMultiple(["theme", "language", "notifications"]);
}
}
```
### Secure Shopping Cart Service
```typescript
@Injectable({ providedIn: "root" })
export class CartService {
private storageManager = inject(NgStorageManager);
private storage = this.storageManager.getStorage("session");
// Reactive cart state
items: Signal = signal([]);
// Computed values
itemCount = computed(() => this.items().reduce((sum, item) => sum + item.quantity, 0));
total = computed(() => this.items().reduce((sum, item) => sum + item.price * item.quantity, 0));
async ngOnInit() {
this.items = await this.storage.createSignal("cart", []);
}
async addItem(product: Product, quantity = 1): Promise {
await this.storage.updateData(
"cart",
(current: CartItem[] = []) => {
const existingIndex = current.findIndex((item) => item.id === product.id);
if (existingIndex >= 0) {
current[existingIndex].quantity += quantity;
return [...current];
} else {
return [...current, { ...product, quantity }];
}
},
{
encrypt: true, // Encrypt cart data
ttlMinutes: 60, // Cart expires in 1 hour
}
);
}
async removeItem(productId: string): Promise {
await this.storage.updateData("cart", (current: CartItem[] = []) => current.filter((item) => item.id !== productId), {
encrypt: true,
});
}
clear(): void {
this.storage.removeData("cart");
}
}
```
### Enhanced Form Auto-Save Service
```typescript
@Injectable({ providedIn: "root" })
export class FormAutoSaveService {
private storageManager = inject(NgStorageManager);
private storage = this.storageManager.getStorage("session");
private saveTimeouts = new Map();
async autoSave(formId: string, data: T, delayMs = 1000): Promise {
// Clear existing timeout
const existingTimeout = this.saveTimeouts.get(formId);
if (existingTimeout) {
clearTimeout(existingTimeout);
}
// Set new timeout
const timeoutId = setTimeout(async () => {
await this.storage.setData(
`form_${formId}`,
{
data,
savedAt: Date.now(),
},
{
encrypt: true, // Encrypt form data
ttlMinutes: 60, // Auto-save expires in 1 hour
}
);
this.saveTimeouts.delete(formId);
}, delayMs);
this.saveTimeouts.set(formId, timeoutId);
}
async getSavedData(formId: string): Promise<{ data: T; savedAt: number } | null> {
return await this.storage.getData(`form_${formId}`, { decrypt: true });
}
clearSavedData(formId: string): void {
const timeoutId = this.saveTimeouts.get(formId);
if (timeoutId) {
clearTimeout(timeoutId);
this.saveTimeouts.delete(formId);
}
this.storage.removeData(`form_${formId}`);
}
}
```
## ๐ Security Considerations
### AES-GCM Encryption Benefits
โ **Cryptographically Secure** - Uses industry-standard AES-GCM encryption
โ **Tamper-Proof** - Authentication tags prevent data modification
โ **Unique Per Session** - Random IVs ensure unique encryption each time
โ **Key Derivation** - PBKDF2 with 100,000 iterations for secure key generation
โ **Browser Native** - Uses Web Crypto API for optimal performance
### Security Best Practices
- โ **Do use encryption** for sensitive data (API tokens, user preferences)
- โ **Do implement** proper session timeouts with TTL
- โ **Do validate** data when retrieving from storage
- โ **Do clear encryption keys** on logout for enhanced security
- โ **Do use HTTPS** to protect data in transit
- โ **Don't store** highly sensitive data (passwords, credit cards, SSNs)
- โ **Don't rely solely** on client-side encryption for critical security
### Enhanced Security Example
```typescript
@Injectable({ providedIn: "root" })
export class SecureStorageService {
private storageManager = inject(NgStorageManager);
private storage = this.storageManager.getStorage("user");
async storeSecurely(key: string, value: T, ttlMinutes: number): Promise {
const secureItem = {
value,
timestamp: Date.now(),
checksum: await this.generateChecksum(JSON.stringify(value)),
};
await this.storage.setData(key, secureItem, {
encrypt: true,
ttlMinutes,
});
}
async getSecurely(key: string): Promise {
const item = await this.storage.getData(key, { decrypt: true });
if (!item) return null;
// Validate checksum
const expectedChecksum = await this.generateChecksum(JSON.stringify(item.value));
if (item.checksum !== expectedChecksum) {
this.storage.removeData(key);
throw new Error("Data integrity check failed");
}
return item.value;
}
private async generateChecksum(data: string): Promise {
// Use Web Crypto API for secure checksums
const encoder = new TextEncoder();
const dataBuffer = encoder.encode(data);
const hashBuffer = await crypto.subtle.digest("SHA-256", dataBuffer);
const hashArray = Array.from(new Uint8Array(hashBuffer));
return hashArray
.map((b) => b.toString(16).padStart(2, "0"))
.join("")
.slice(0, 16);
}
}
```
### Browser Compatibility for Encryption
| Browser | AES-GCM Support | Fallback |
| -------------- | ------------------ | ------------------ |
| Chrome 37+ | โ Full encryption | N/A |
| Firefox 34+ | โ Full encryption | N/A |
| Safari 7+ | โ Full encryption | N/A |
| Edge 12+ | โ Full encryption | N/A |
| IE 11 | โ | โ Base64 encoding |
| Older browsers | โ | โ Base64 encoding |
## ๐งช Testing
### Test Configuration
```typescript
import { provideNgStorageConfig } from "ng7-storage";
// test-setup.ts
export function provideStorageForTesting() {
return provideNgStorageConfig(
{
prefix: "test",
storageType: "sessionStorage",
defaultTTL: 0,
enableLogging: true,
caseSensitive: false,
},
{
autoCleanup: false, // Manual cleanup in tests
strictMode: true,
enableMetrics: false,
}
);
}
// In test files
describe("Component with NgStorageService", () => {
beforeEach(() => {
TestBed.configureTestingModule({
providers: [...provideStorageForTesting()],
});
});
it("should store and retrieve data", async () => {
const service = TestBed.inject(NgStorageService);
await service.setData("test", "value");
const result = await service.getData("test");
expect(result).toBe("value");
});
it("should encrypt and decrypt data", async () => {
const service = TestBed.inject(NgStorageService);
await service.setData("encrypted", "secret", { encrypt: true });
const result = await service.getData("encrypted", { decrypt: true });
expect(result).toBe("secret");
});
});
```
### Running Tests
```bash
# Install dependencies
npm install
# Run tests
npm test
# Run tests with coverage
npm test -- --coverage
# Watch mode
npm test -- --watch
```
## ๐ Migration Guide
### Breaking Changes in v2.1.0 - Encryption Update
#### ๐จ **Method Signature Changes**
**Before (v2.0.x):**
```typescript
// v2.0.x - Synchronous methods
storage.setData("key", "value"); // โ Synchronous
storage.getData("key"); // โ Synchronous
storage.hasKey("key"); // โ Synchronous
```
**After (v2.1.x):**
```typescript
// v2.1.x - Async methods for encryption support
await storage.setData("key", "value"); // ๐ Now async
await storage.getData("key"); // ๐ Now async
await storage.hasKey("key"); // ๐ Now async
```
#### ๐จ **Encryption System Changes**
**Before (v2.0.x):**
```typescript
// v2.0.x - Base64 encoding only
storage.setData("token", "secret", { encrypt: true }); // Base64 only
```
**After (v2.1.x):**
```typescript
// v2.1.x - AES-GCM encryption with fallback
await storage.setData("token", "secret", { encrypt: true }); // AES-GCM or Base64
// Check encryption capabilities
if (storage.isEncryptionSupported()) {
console.log("Using AES-GCM encryption");
} else {
console.log("Falling back to Base64");
}
```
#### ๐จ **Reactive Features Changes**
**Before (v2.0.x):**
```typescript
// v2.0.x - Synchronous signal creation
const signal = storage.createSignal("key", "default");
```
**After (v2.1.x):**
```typescript
// v2.1.x - Async signal creation
const signal = await storage.createSignal("key", "default");
// Or in component lifecycle
async ngOnInit() {
this.userSignal = await this.storage.createSignal("user");
}
```
### Migration Steps
#### Step 1: Update Method Calls to Async
```typescript
// Before
const user = storage.getData("user");
storage.setData("user", newUser);
const exists = storage.hasKey("user");
// After
const user = await storage.getData("user");
await storage.setData("user", newUser);
const exists = await storage.hasKey("user");
```
#### Step 2: Update Component Lifecycle
```typescript
// Before
export class MyComponent {
userSignal = this.storage.createSignal("user");
}
// After
export class MyComponent {
userSignal: Signal = signal(null);
async ngOnInit() {
this.userSignal = await this.storage.createSignal("user");
}
}
```
#### Step 3: Update Service Methods
```typescript
// Before
@Injectable()
export class UserService {
saveUser(user: User): void {
this.storage.setData("user", user);
}
getUser(): User | null {
return this.storage.getData("user");
}
}
// After
@Injectable()
export class UserService {
async saveUser(user: User): Promise {
await this.storage.setData("user", user, { encrypt: true });
}
async getUser(): Promise {
return await this.storage.getData("user", { decrypt: true });
}
}
```
#### Step 4: Leverage New Encryption Features
```typescript
// Enhanced security with new encryption
await storage.setData("sensitiveData", data, {
encrypt: true,
ttlMinutes: 60,
});
// Check encryption support
if (storage.isEncryptionSupported()) {
// Use full encryption features
} else {
// Handle fallback gracefully
}
// Clear encryption key on logout
storage.clearEncryptionKey();
```
### Compatibility
- โ **Angular 20+** required (updated from 19+)
- โ **TypeScript 5.0+** required
- โ **Web Crypto API** for full encryption (with fallback)
- โ ๏ธ **Breaking**: Most core methods are now async
- โ ๏ธ **Breaking**: Signal creation is now async
- โ **Enhanced**: Much stronger encryption than before
- โ **Backward Compatible**: Existing stored data still works
## ๐ Browser Compatibility
| Browser | Version | localStorage | sessionStorage | AES-GCM Encryption |
| ------- | ------- | ------------ | -------------- | -------------------- |
| Chrome | 37+ | โ | โ | โ |
| Firefox | 34+ | โ | โ | โ |
| Safari | 7+ | โ | โ | โ |
| Edge | 12+ | โ | โ | โ |
| IE | 11 | โ | โ | โ (Base64 fallback) |
| IE | 8-10 | โ | โ | โ (Base64 fallback) |
## ๐ค Contributing
Contributions are welcome! Please feel free to submit a Pull Request.
### Development Setup
```bash
# Clone the repository
git clone https://github.com/edisonaugusthy/ng7-storage.git
# Install dependencies
npm install
# Run tests
npm test
# Build the library
npm run build
```
## ๐ Changelog
### v2.1.0 - Major Encryption Update
- โจ **BREAKING:** Core methods now async for encryption support
- โจ **NEW:** PBKDF2 key derivation with 100,000 iterations
- โจ **NEW:** Automatic fallback to Base64 for older browsers
- โจ **NEW:** `isEncryptionSupported()` method
- โจ **NEW:** `clearEncryptionKey()` method for security
- โจ **ENHANCED:** Signal creation now async
- โจ **ENHANCED:** Storage statistics now async
- โจ **ENHANCED:** Better error handling and logging
- ๐ง **IMPROVED:** Cross-browser compatibility
- ๐ง **IMPROVED:** Performance with key caching
- ๐ก๏ธ **SECURITY:** Data integrity protection with authentication tags
- ๐ก๏ธ **SECURITY:** Unique encryption per data item with random IVs
### v2.0.0 - Major Release
- โจ **BREAKING:** Added Angular 19+ requirement
- โจ **BREAKING:** New dependency injection system with providers
- โจ Added provider functions (`provideNgStorage`, `provideNamedNgStorage`)
- โจ Added `NgStorageManager` for multiple storage instances
- โจ Added storage flags system (autoCleanup, strictMode, enableMetrics)
- โจ Enhanced reactive features with signals
- โจ Added `watchPattern()` for pattern-based key watching
- ๐ Fixed all critical decryption and error handling bugs
- ๐ง Improved TypeScript support with better generics
- ๐ Comprehensive documentation update
### v1.0.0 - Initial Release
- ๐ Initial release
- โจ Basic storage operations (set, get, remove)
- โจ Base64 encryption support
- โจ TTL functionality
- โจ Basic reactive features
- โจ Angular service integration
## ๐ License
This project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details.
## ๐ Acknowledgments
- Angular team for the amazing framework and signals
- Apollo GraphQL team for the inspiration on provider patterns
- RxJS team for reactive programming utilities
- Web Crypto API for enabling secure client-side encryption
- All contributors and users of this library
## ๐ Support
- ๐ **Bug Reports**: [GitHub Issues](https://github.com/edisonaugusthy/ng-storage/issues)
- ๐ฌ **Discussions**: [GitHub Discussions](https://github.com/edisonaugusthy/ng-storage/discussions)
- ๐ง **Email**: your-email@example.com
- ๐ **Security Issues**: Please report security vulnerabilities privately
---
**Made with โค๏ธ and ๐ for the Angular community**
[โญ Star this repo](https://github.com/edisonaugusthy/ng-storage) | [๐ด Fork it](https://github.com/edisonaugusthy/ng-storage/fork) | [๐ Report Issues](https://github.com/edisonaugusthy/ng-storage/issues)
AES-GCM encryption using Web Crypto API
- โจ **NEW:** 256-bit encryption with authentication
- โจ **NEW:**