diff options
| author | 杨宇千 <crupest@outlook.com> | 2019-03-14 16:51:46 +0800 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2019-03-14 16:51:46 +0800 |
| commit | 19a12661e981718aebc418624c602b852e68d54d (patch) | |
| tree | bc467184f38d9ea2962f860af889e002320e22e8 /Timeline/ClientApp/src/app/user/auth.guard.ts | |
| parent | 988e07fce184b72c35020e4bde4079bdd305fb7c (diff) | |
| parent | 780afcc14029d966f74fc8688aa040183ac23476 (diff) | |
| download | timeline-19a12661e981718aebc418624c602b852e68d54d.tar.gz timeline-19a12661e981718aebc418624c602b852e68d54d.tar.bz2 timeline-19a12661e981718aebc418624c602b852e68d54d.zip | |
Merge pull request #13 from crupest/auth-guard
Add auth guard.
Diffstat (limited to 'Timeline/ClientApp/src/app/user/auth.guard.ts')
| -rw-r--r-- | Timeline/ClientApp/src/app/user/auth.guard.ts | 79 |
1 files changed, 79 insertions, 0 deletions
diff --git a/Timeline/ClientApp/src/app/user/auth.guard.ts b/Timeline/ClientApp/src/app/user/auth.guard.ts new file mode 100644 index 00000000..561a0c53 --- /dev/null +++ b/Timeline/ClientApp/src/app/user/auth.guard.ts @@ -0,0 +1,79 @@ +import { Injectable } from '@angular/core'; +import { CanActivate, ActivatedRouteSnapshot, RouterStateSnapshot, UrlTree } from '@angular/router'; +import { Observable } from 'rxjs'; + +import { InternalUserService } from './internal-user-service/internal-user.service'; + +export type AuthStrategy = 'all' | 'requirelogin' | 'requirenologin' | string[]; + +export abstract class AuthGuard implements CanActivate { + + constructor(protected internalUserService: InternalUserService) { } + + onAuthFailed() { } + + abstract get authStrategy(): AuthStrategy; + + canActivate(next: ActivatedRouteSnapshot, state: RouterStateSnapshot): + Observable<boolean | UrlTree> | Promise<boolean | UrlTree> | boolean | UrlTree { + + const { authStrategy } = this; + + if (authStrategy === 'all') { + return true; + } + + const { currentUserInfo } = this.internalUserService; + + if (currentUserInfo === null) { + if (authStrategy === 'requirenologin') { + return true; + } + } else { + if (authStrategy === 'requirelogin') { + return true; + } else if (authStrategy instanceof Array) { + const { roles } = currentUserInfo; + if (authStrategy.every(value => roles.includes(value))) { + return true; + } + } + } + + // reach here means auth fails + this.onAuthFailed(); + return false; + } +} + +@Injectable({ + providedIn: 'root' +}) +export class RequireLoginGuard extends AuthGuard { + readonly authStrategy: AuthStrategy = 'requirelogin'; + + // never remove this constructor or you will get an injection error. + constructor(internalUserService: InternalUserService) { + super(internalUserService); + } + + onAuthFailed() { + this.internalUserService.userRouteNavigate(['login']); + } +} + +@Injectable({ + providedIn: 'root' +}) +export class RequireNoLoginGuard extends AuthGuard { + readonly authStrategy: AuthStrategy = 'requirenologin'; + + // never remove this constructor or you will get an injection error. + constructor(internalUserService: InternalUserService) { + super(internalUserService); + } + + onAuthFailed() { + this.internalUserService.userRouteNavigate(['success']); + } +} |