[ADF-4183] improved auth redirection (#4399)

* base auth guard implementation * remove code duplication * unit test fixes
2025-07-24 17:32:15 +00:00 · 2019-03-06 13:14:23 +00:00
parent bf331f1145
commit f6341e31a0
9 changed files with 216 additions and 173 deletions
--- a/lib/core/services/auth-guard-base.ts
+++ b/lib/core/services/auth-guard-base.ts
@@ -0,0 +1,94 @@
+/*!
+ * @license
+ * Copyright 2019 Alfresco Software, Ltd.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+import {
+    Router,
+    CanActivate,
+    ActivatedRouteSnapshot,
+    RouterStateSnapshot,
+    CanActivateChild
+} from '@angular/router';
+import { Observable } from 'rxjs';
+import { AuthenticationService } from './authentication.service';
+import {
+    AppConfigService,
+    AppConfigValues
+} from '../app-config/app-config.service';
+import { OauthConfigModel } from '../models/oauth-config.model';
+
+export abstract class AuthGuardBase implements CanActivate, CanActivateChild {
+    abstract checkLogin(
+        activeRoute: ActivatedRouteSnapshot,
+        redirectUrl: string
+    ): Observable<boolean> | Promise<boolean> | boolean;
+
+    protected get withCredentials(): boolean {
+        return this.appConfigService.get<boolean>(
+            'auth.withCredentials',
+            false
+        );
+    }
+
+    constructor(
+        protected authenticationService: AuthenticationService,
+        protected router: Router,
+        protected appConfigService: AppConfigService
+    ) {}
+
+    canActivate(
+        route: ActivatedRouteSnapshot,
+        state: RouterStateSnapshot
+    ): Observable<boolean> | Promise<boolean> | boolean {
+        return this.checkLogin(route, state.url);
+    }
+
+    canActivateChild(
+        route: ActivatedRouteSnapshot,
+        state: RouterStateSnapshot
+    ): Observable<boolean> | Promise<boolean> | boolean {
+        return this.canActivate(route, state);
+    }
+
+    protected redirectToUrl(provider: string, url: string) {
+        this.authenticationService.setRedirect({ provider, url });
+
+        const pathToLogin = this.getLoginRoute();
+        const urlToRedirect = `/${pathToLogin}?redirectUrl=${url}`;
+
+        this.router.navigateByUrl(urlToRedirect);
+    }
+
+    protected getLoginRoute(): string {
+        return (
+            this.appConfigService &&
+            this.appConfigService.get<string>(
+                AppConfigValues.LOGIN_ROUTE,
+                'login'
+            )
+        );
+    }
+
+    protected isOAuthWithoutSilentLogin() {
+        const oauth = this.appConfigService.get<OauthConfigModel>(
+            AppConfigValues.OAUTHCONFIG,
+            null
+        );
+        return (
+            this.authenticationService.isOauth() && oauth.silentLogin === false
+        );
+    }
+}