An Angular service for browser session storage management with optional base64 encryption/decryption.
npm install ng7-storage
๐ A modern, reactive Angular service for browser storage management with AES-GCM encryption, TTL, change notifications, and Apollo-style providers.
- ๐ Reactive State Management - Built with Angular signals and RxJS observables
- ๐ AES-GCM Encryption - Military-grade encryption using Web Crypto API with fallback
- โฐ TTL Support - Automatic data expiration
- ๐ก Change Notifications - Watch for storage changes in real-time
- ๐ช Dual Storage Support - localStorage and sessionStorage
- ๐ฏ Multiple Instances - Named storage instances with NgStorageManager
- ๐ Storage Statistics - Monitor usage and performance
- ๐ง Configurable Flags - Auto-cleanup, strict mode, metrics
- ๐ Cross-Browser Compatibility - Graceful degradation for older browsers
- โ
Well Tested - Comprehensive test suite with Jest
``bash`
npm install ng7-storage
`typescript
// app.config.ts
import { ApplicationConfig } from "@angular/core";
import { provideNgStorageConfig } from "ng7-storage";
export const appConfig: ApplicationConfig = {
providers: [
// Simple configuration
...provideNgStorageConfig({
prefix: "myapp",
storageType: "localStorage",
defaultTTL: 60, // 1 hour
enableLogging: false,
}),
],
};
`
`typescript
import { Component, inject } from "@angular/core";
import { NgStorageService } from "ng7-storage";
@Component({
selector: "app-example",
template:
Current user: {{ currentUser() || "None" }}
Total items: {{ storage.stats().itemCount }}
Encryption supported: {{ storage.isEncryptionSupported() }}
,
})
export class ExampleComponent {
private storage = inject(NgStorageService); username = "";
currentUser = this.storage.createSignal("currentUser");
async saveUser() {
await this.storage.setData("currentUser", this.username);
}
async saveUserEncrypted() {
await this.storage.setData("currentUser", this.username, {
encrypt: true,
ttlMinutes: 60,
});
}
}
`๐ Enhanced Security Features
$3
NgStorageService now uses AES-GCM encryption with the Web Crypto API, providing:
- 256-bit AES encryption - Military-grade security
- Galois/Counter Mode (GCM) - Provides both confidentiality and authenticity
- Unique IVs - Each encryption uses a random initialization vector
- Authentication tags - Prevents tampering and ensures data integrity
- PBKDF2 key derivation - Secure key generation with 100,000 iterations
- Automatic fallback - Base64 encoding for unsupported browsers
$3
typescript
// Store encrypted sensitive data
await storage.setData("apiToken", "secret-api-key", {
encrypt: true,
ttlMinutes: 60, // Expires in 1 hour
});// Retrieve encrypted data
const token = await storage.getData("apiToken", {
decrypt: true,
defaultValue: null,
});
// Check encryption support
if (storage.isEncryptionSupported()) {
console.log("Using AES-GCM encryption");
} else {
console.log("Using Base64 fallback");
}
// Clear encryption key for security
storage.clearEncryptionKey();
`$3
| Feature | Previous (Base64) | New (AES-GCM) |
| ------------------------- | ----------------- | ------------------------- |
| Security Level | Obfuscation only | Military-grade encryption |
| Key Length | None | 256-bit |
| Authentication | None | 128-bit auth tag |
| Tampering Protection | โ | โ
|
| Unique Per Encryption | โ | โ
Random IV |
| Browser Support | Universal | Modern + fallback |
๐๏ธ Configuration
$3
#### Simple Static Configuration
typescript
import { provideNgStorageConfig } from "ng7-storage";export const appConfig: ApplicationConfig = {
providers: [
...provideNgStorageConfig({
prefix: "myapp",
storageType: "localStorage",
defaultTTL: 60,
enableLogging: false,
}),
],
};
`#### Dynamic Configuration with Factory
typescript
import { provideNgStorage } from "ng7-storage";
import { environment } from "../environments/environment";export const appConfig: ApplicationConfig = {
providers: [
...provideNgStorage(
() => ({
prefix: environment.production ? "myapp" : "myapp-dev",
storageType: environment.production ? "localStorage" : "sessionStorage",
defaultTTL: environment.production ? 60 : 30,
enableLogging: !environment.production,
caseSensitive: false,
}),
{
autoCleanup: true,
strictMode: environment.production,
enableMetrics: !environment.production,
}
),
],
};
`#### Multiple Named Storage Instances
typescript
import { provideNamedNgStorage, NgStorageManager } from "ng7-storage";export const appConfig: ApplicationConfig = {
providers: [
...provideNamedNgStorage(() => ({
user: {
prefix: "user-data",
storageType: "localStorage",
defaultTTL: 0, // Persistent
enableLogging: false,
},
cache: {
prefix: "app-cache",
storageType: "localStorage",
defaultTTL: 60, // 1 hour
enableLogging: false,
},
session: {
prefix: "session-data",
storageType: "sessionStorage",
defaultTTL: 30, // 30 minutes
enableLogging: true,
},
})),
NgStorageManager,
],
};
`$3
typescript
interface StorageConfig {
prefix?: string; // Storage key prefix (default: 'ng-storage')
defaultTTL?: number; // Default TTL in minutes (default: 0 = no expiry)
enableLogging?: boolean; // Enable debug logging (default: false)
caseSensitive?: boolean; // Case sensitive keys (default: false)
storageType?: "localStorage" | "sessionStorage"; // Storage type (default: 'sessionStorage')
}interface StorageFlags {
autoCleanup?: boolean; // Auto cleanup expired items (default: true)
strictMode?: boolean; // Throw errors vs warnings (default: false)
enableMetrics?: boolean; // Enable performance metrics (default: false)
}
`๐ API Documentation
$3
####
Stores data with optional encryption and TTL.
typescript
// Basic usage
await storage.setData("user", { name: "John", age: 30 });// With AES-GCM encryption
await storage.setData("token", "secret-token", { encrypt: true });
// With TTL (expires in 30 minutes)
await storage.setData("cache", data, { ttlMinutes: 30 });
// With both encryption and TTL
await storage.setData("session", userData, {
encrypt: true,
ttlMinutes: 60,
});
`####
Retrieves data with optional decryption.
typescript
// Basic retrieval
const user = await storage.getData("user");// With decryption
const token = await storage.getData("token", { decrypt: true });
// With default value
const theme = await storage.getData("theme", { defaultValue: "light" });
`####
Checks if a key exists (now async to handle encrypted data).
typescript
const exists = await storage.hasKey("user");
`####
Removes a specific key from storage.
typescript
storage.removeData("user");
`####
Clears all storage data with the current prefix.
typescript
storage.removeAll();
`$3
####
Checks if AES-GCM encryption is available.
typescript
if (storage.isEncryptionSupported()) {
// Use full encryption features
await storage.setData("secret", data, { encrypt: true });
} else {
// Browser falls back to Base64 encoding
console.warn("Using Base64 fallback");
}
`####
Clears the cached encryption key (useful for key rotation).
typescript
// Clear key for security or testing
storage.clearEncryptionKey();
`$3
####
Creates a reactive signal that automatically updates when storage changes.
typescript
// Create reactive signals (now async)
const userSignal = await storage.createSignal("currentUser");
const themeSignal = await storage.createSignal("theme", "light");// Use in component
@Component({
template:
Welcome {{ userSignal()?.name }}!
,
})
export class MyComponent {
userSignal: Signal = signal(null); async ngOnInit() {
this.userSignal = await inject(NgStorageService).createSignal("user");
}
}
`####
Watches for changes to a specific key.
typescript
storage.watch("theme").subscribe((theme) => {
console.log("Theme changed:", theme);
document.body.className = theme;
});
`####
Watches for all storage changes.
typescript
storage.watchAll().subscribe((event) => {
console.log(${event.action} on ${event.key}:, event.newValue);
});interface StorageChangeEvent {
key: string;
oldValue: T | null;
newValue: T | null;
action: "set" | "remove" | "clear" | "expire";
timestamp: number;
}
`####
Watches for changes to multiple specific keys.
typescript
storage.watchKeys(["user", "settings"]).subscribe(({ key, value }) => {
console.log(${key} changed:, value);
});
`####
Watches for changes to keys matching a pattern.
typescript
// Watch all user-related keys
storage.watchPattern("user.*").subscribe(({ key, value }) => {
console.log(User data ${key} changed:, value);
});
`$3
####
Gets storage statistics (now async to handle encrypted data).
typescript
const stats = await storage.getStorageStats();
console.log(Total items: ${stats.totalItems});
console.log(Total size: ${stats.totalSize} bytes);
console.log(Available space: ${stats.availableSpace} bytes);
`$3
####
Updates existing data with a function.
typescript
await storage.updateData(
"cart",
(current: CartItem[] = []) => {
return [...current, newItem];
},
{ encrypt: true }
);
`####
Sets data only if key doesn't exist.
typescript
const wasSet = await storage.setIfNotExists("config", defaultConfig, {
encrypt: true,
});
`####
Forces cleanup of expired items.
typescript
const removedCount = await storage.cleanup();
console.log(Removed ${removedCount} expired items);
`$3
#### Using NgStorageManager
typescript
@Component({})
export class DashboardComponent {
private storageManager = inject(NgStorageManager); private userStorage = this.storageManager.getStorage("user");
private cacheStorage = this.storageManager.getStorage("cache");
private sessionStorage = this.storageManager.getStorage("session");
async ngOnInit() {
// Load user data from persistent storage
const userData = await this.userStorage.getData("profile");
// Load cached data
const cachedData = await this.cacheStorage.getData("dashboard-data");
// Save session state with encryption
await this.sessionStorage.setData("current-view", "dashboard", {
encrypt: true,
ttlMinutes: 30,
});
}
}
`#### Creating Dynamic Storage Instances
typescript
@Injectable()
export class StorageManagerService {
private storageManager = inject(NgStorageManager); createTenantStorage(tenantId: string): NgStorageService {
return this.storageManager.createStorage(
tenant-${tenantId}, {
prefix: tenant-${tenantId},
storageType: "localStorage",
defaultTTL: 0,
});
}
}
`๐ก Usage Examples
$3
typescript
@Injectable({ providedIn: "root" })
export class AuthService {
private storageManager = inject(NgStorageManager);
private storage = this.storageManager.getStorage("user"); // Reactive authentication state
isAuthenticated = computed(() => this.storage.hasKey("auth"));
currentUser: Signal = signal(null);
async ngOnInit() {
this.currentUser = await this.storage.createSignal("currentUser");
}
async login(credentials: LoginCredentials): Promise {
const result = await this.http.post("/api/login", credentials).toPromise();
// Store encrypted auth data with 8-hour TTL
await this.storage.setData("auth", result.token, {
encrypt: true,
ttlMinutes: 8 * 60,
});
await this.storage.setData("currentUser", result.user);
return result;
}
logout(): void {
this.storage.removeMultiple(["auth", "currentUser"]);
// Clear encryption key for security
this.storage.clearEncryptionKey();
}
}
`$3
typescript
@Injectable({ providedIn: "root" })
export class PreferencesService {
private storageManager = inject(NgStorageManager);
private storage = this.storageManager.getStorage("user"); // Reactive preferences
theme: Signal = signal(null);
language: Signal = signal(null);
notifications: Signal = signal(null);
async ngOnInit() {
// Initialize reactive preferences
this.theme = await this.storage.createSignal("theme", "light");
this.language = await this.storage.createSignal("language", "en");
this.notifications = await this.storage.createSignal("notifications", true);
// Watch for theme changes and apply to document
this.theme$.subscribe((theme) => {
document.body.setAttribute("data-theme", theme || "light");
});
}
get theme$() {
return this.storage.watch("theme");
}
async updatePreferences(updates: Partial): Promise {
// Store preferences with encryption
for (const [key, value] of Object.entries(updates)) {
await this.storage.setData(key, value, { encrypt: true });
}
}
resetToDefaults(): void {
this.storage.removeMultiple(["theme", "language", "notifications"]);
}
}
`$3
typescript
@Injectable({ providedIn: "root" })
export class CartService {
private storageManager = inject(NgStorageManager);
private storage = this.storageManager.getStorage("session"); // Reactive cart state
items: Signal = signal([]);
// Computed values
itemCount = computed(() => this.items().reduce((sum, item) => sum + item.quantity, 0));
total = computed(() => this.items().reduce((sum, item) => sum + item.price * item.quantity, 0));
async ngOnInit() {
this.items = await this.storage.createSignal("cart", []);
}
async addItem(product: Product, quantity = 1): Promise {
await this.storage.updateData(
"cart",
(current: CartItem[] = []) => {
const existingIndex = current.findIndex((item) => item.id === product.id);
if (existingIndex >= 0) {
current[existingIndex].quantity += quantity;
return [...current];
} else {
return [...current, { ...product, quantity }];
}
},
{
encrypt: true, // Encrypt cart data
ttlMinutes: 60, // Cart expires in 1 hour
}
);
}
async removeItem(productId: string): Promise {
await this.storage.updateData("cart", (current: CartItem[] = []) => current.filter((item) => item.id !== productId), {
encrypt: true,
});
}
clear(): void {
this.storage.removeData("cart");
}
}
`$3
typescript
@Injectable({ providedIn: "root" })
export class FormAutoSaveService {
private storageManager = inject(NgStorageManager);
private storage = this.storageManager.getStorage("session");
private saveTimeouts = new Map(); async autoSave(formId: string, data: T, delayMs = 1000): Promise {
// Clear existing timeout
const existingTimeout = this.saveTimeouts.get(formId);
if (existingTimeout) {
clearTimeout(existingTimeout);
}
// Set new timeout
const timeoutId = setTimeout(async () => {
await this.storage.setData(
form_${formId},
{
data,
savedAt: Date.now(),
},
{
encrypt: true, // Encrypt form data
ttlMinutes: 60, // Auto-save expires in 1 hour
}
);
this.saveTimeouts.delete(formId);
}, delayMs); this.saveTimeouts.set(formId, timeoutId);
}
async getSavedData(formId: string): Promise<{ data: T; savedAt: number } | null> {
return await this.storage.getData(
form_${formId}, { decrypt: true });
} clearSavedData(formId: string): void {
const timeoutId = this.saveTimeouts.get(formId);
if (timeoutId) {
clearTimeout(timeoutId);
this.saveTimeouts.delete(formId);
}
this.storage.removeData(
form_${formId});
}
}
`๐ Security Considerations
$3
โ
Cryptographically Secure - Uses industry-standard AES-GCM encryption
โ
Tamper-Proof - Authentication tags prevent data modification
โ
Unique Per Session - Random IVs ensure unique encryption each time
โ
Key Derivation - PBKDF2 with 100,000 iterations for secure key generation
โ
Browser Native - Uses Web Crypto API for optimal performance
$3
- โ
Do use encryption for sensitive data (API tokens, user preferences)
- โ
Do implement proper session timeouts with TTL
- โ
Do validate data when retrieving from storage
- โ
Do clear encryption keys on logout for enhanced security
- โ
Do use HTTPS to protect data in transit
- โ Don't store highly sensitive data (passwords, credit cards, SSNs)
- โ Don't rely solely on client-side encryption for critical security
$3
typescript
@Injectable({ providedIn: "root" })
export class SecureStorageService {
private storageManager = inject(NgStorageManager);
private storage = this.storageManager.getStorage("user"); async storeSecurely(key: string, value: T, ttlMinutes: number): Promise {
const secureItem = {
value,
timestamp: Date.now(),
checksum: await this.generateChecksum(JSON.stringify(value)),
};
await this.storage.setData(key, secureItem, {
encrypt: true,
ttlMinutes,
});
}
async getSecurely(key: string): Promise {
const item = await this.storage.getData(key, { decrypt: true });
if (!item) return null;
// Validate checksum
const expectedChecksum = await this.generateChecksum(JSON.stringify(item.value));
if (item.checksum !== expectedChecksum) {
this.storage.removeData(key);
throw new Error("Data integrity check failed");
}
return item.value;
}
private async generateChecksum(data: string): Promise {
// Use Web Crypto API for secure checksums
const encoder = new TextEncoder();
const dataBuffer = encoder.encode(data);
const hashBuffer = await crypto.subtle.digest("SHA-256", dataBuffer);
const hashArray = Array.from(new Uint8Array(hashBuffer));
return hashArray
.map((b) => b.toString(16).padStart(2, "0"))
.join("")
.slice(0, 16);
}
}
`$3
| Browser | AES-GCM Support | Fallback |
| -------------- | ------------------ | ------------------ |
| Chrome 37+ | โ
Full encryption | N/A |
| Firefox 34+ | โ
Full encryption | N/A |
| Safari 7+ | โ
Full encryption | N/A |
| Edge 12+ | โ
Full encryption | N/A |
| IE 11 | โ | โ
Base64 encoding |
| Older browsers | โ | โ
Base64 encoding |
๐งช Testing
$3
typescript
import { provideNgStorageConfig } from "ng7-storage";// test-setup.ts
export function provideStorageForTesting() {
return provideNgStorageConfig(
{
prefix: "test",
storageType: "sessionStorage",
defaultTTL: 0,
enableLogging: true,
caseSensitive: false,
},
{
autoCleanup: false, // Manual cleanup in tests
strictMode: true,
enableMetrics: false,
}
);
}
// In test files
describe("Component with NgStorageService", () => {
beforeEach(() => {
TestBed.configureTestingModule({
providers: [...provideStorageForTesting()],
});
});
it("should store and retrieve data", async () => {
const service = TestBed.inject(NgStorageService);
await service.setData("test", "value");
const result = await service.getData("test");
expect(result).toBe("value");
});
it("should encrypt and decrypt data", async () => {
const service = TestBed.inject(NgStorageService);
await service.setData("encrypted", "secret", { encrypt: true });
const result = await service.getData("encrypted", { decrypt: true });
expect(result).toBe("secret");
});
});
`$3
bash
Install dependencies
npm installRun tests
npm testRun tests with coverage
npm test -- --coverageWatch mode
npm test -- --watch
`๐ Migration Guide
$3
#### ๐จ Method Signature Changes
Before (v2.0.x):
typescript
// v2.0.x - Synchronous methods
storage.setData("key", "value"); // โ
Synchronous
storage.getData("key"); // โ
Synchronous
storage.hasKey("key"); // โ
Synchronous
`After (v2.1.x):
typescript
// v2.1.x - Async methods for encryption support
await storage.setData("key", "value"); // ๐ Now async
await storage.getData("key"); // ๐ Now async
await storage.hasKey("key"); // ๐ Now async
`#### ๐จ Encryption System Changes
Before (v2.0.x):
typescript
// v2.0.x - Base64 encoding only
storage.setData("token", "secret", { encrypt: true }); // Base64 only
`After (v2.1.x):
typescript
// v2.1.x - AES-GCM encryption with fallback
await storage.setData("token", "secret", { encrypt: true }); // AES-GCM or Base64// Check encryption capabilities
if (storage.isEncryptionSupported()) {
console.log("Using AES-GCM encryption");
} else {
console.log("Falling back to Base64");
}
`#### ๐จ Reactive Features Changes
Before (v2.0.x):
typescript
// v2.0.x - Synchronous signal creation
const signal = storage.createSignal("key", "default");
`After (v2.1.x):
typescript
// v2.1.x - Async signal creation
const signal = await storage.createSignal("key", "default");// Or in component lifecycle
async ngOnInit() {
this.userSignal = await this.storage.createSignal("user");
}
`$3
#### Step 1: Update Method Calls to Async
typescript
// Before
const user = storage.getData("user");
storage.setData("user", newUser);
const exists = storage.hasKey("user");// After
const user = await storage.getData("user");
await storage.setData("user", newUser);
const exists = await storage.hasKey("user");
`#### Step 2: Update Component Lifecycle
typescript
// Before
export class MyComponent {
userSignal = this.storage.createSignal("user");
}// After
export class MyComponent {
userSignal: Signal = signal(null);
async ngOnInit() {
this.userSignal = await this.storage.createSignal("user");
}
}
`#### Step 3: Update Service Methods
typescript
// Before
@Injectable()
export class UserService {
saveUser(user: User): void {
this.storage.setData("user", user);
} getUser(): User | null {
return this.storage.getData("user");
}
}
// After
@Injectable()
export class UserService {
async saveUser(user: User): Promise {
await this.storage.setData("user", user, { encrypt: true });
}
async getUser(): Promise {
return await this.storage.getData("user", { decrypt: true });
}
}
`#### Step 4: Leverage New Encryption Features
typescript
// Enhanced security with new encryption
await storage.setData("sensitiveData", data, {
encrypt: true,
ttlMinutes: 60,
});// Check encryption support
if (storage.isEncryptionSupported()) {
// Use full encryption features
} else {
// Handle fallback gracefully
}
// Clear encryption key on logout
storage.clearEncryptionKey();
`$3
- โ
Angular 20+ required (updated from 19+)
- โ
TypeScript 5.0+ required
- โ
Web Crypto API for full encryption (with fallback)
- โ ๏ธ Breaking: Most core methods are now async
- โ ๏ธ Breaking: Signal creation is now async
- โ
Enhanced: Much stronger encryption than before
- โ
Backward Compatible: Existing stored data still works
๐ Browser Compatibility
| Browser | Version | localStorage | sessionStorage | AES-GCM Encryption |
| ------- | ------- | ------------ | -------------- | -------------------- |
| Chrome | 37+ | โ
| โ
| โ
|
| Firefox | 34+ | โ
| โ
| โ
|
| Safari | 7+ | โ
| โ
| โ
|
| Edge | 12+ | โ
| โ
| โ
|
| IE | 11 | โ
| โ
| โ (Base64 fallback) |
| IE | 8-10 | โ
| โ
| โ (Base64 fallback) |
๐ค Contributing
Contributions are welcome! Please feel free to submit a Pull Request.
$3
bash
Clone the repository
git clone https://github.com/edisonaugusthy/ng7-storage.gitInstall dependencies
npm installRun tests
npm testBuild the library
npm run build
`๐ Changelog
$3
- โจ BREAKING: Core methods now async for encryption support
- โจ NEW: PBKDF2 key derivation with 100,000 iterations
- โจ NEW: Automatic fallback to Base64 for older browsers
- โจ NEW:
method
- โจ NEW: clearEncryptionKey() method for security
- โจ ENHANCED: Signal creation now async
- โจ ENHANCED: Storage statistics now async
- โจ ENHANCED: Better error handling and logging
- ๐ง IMPROVED: Cross-browser compatibility
- ๐ง IMPROVED: Performance with key caching
- ๐ก๏ธ SECURITY: Data integrity protection with authentication tags
- ๐ก๏ธ SECURITY: Unique encryption per data item with random IVs$3
- โจ BREAKING: Added Angular 19+ requirement
- โจ BREAKING: New dependency injection system with providers
- โจ Added provider functions (
provideNgStorage, provideNamedNgStorage)
- โจ Added NgStorageManager for multiple storage instances
- โจ Added storage flags system (autoCleanup, strictMode, enableMetrics)
- โจ Enhanced reactive features with signals
- โจ Added watchPattern()` for pattern-based key watching- ๐ Initial release
- โจ Basic storage operations (set, get, remove)
- โจ Base64 encryption support
- โจ TTL functionality
- โจ Basic reactive features
- โจ Angular service integration
This project is licensed under the MIT License - see the LICENSE file for details.
- Angular team for the amazing framework and signals
- Apollo GraphQL team for the inspiration on provider patterns
- RxJS team for reactive programming utilities
- Web Crypto API for enabling secure client-side encryption
- All contributors and users of this library
- ๐ Bug Reports: GitHub Issues
- ๐ฌ Discussions: GitHub Discussions
- ๐ง Email: your-email@example.com
- ๐ Security Issues: Please report security vulnerabilities privately
---
Made with โค๏ธ and ๐ for the Angular community