Signals and Guards | Angular Community | Page 1

jade abyss Mar 6, 2024, 2:12 PM

#

Hello,

I am currently authenticating and storing the user inside a signal. I am also storing guards associated to this user inside another signal in my auth.service.ts.

My code is working when I navigate from / to /anything-else because my app.component is calling authenticate()

But if I refresh the page with /anything-else it redirects me because user and guards are not defined yet.

This is my Auth Service:

public _userGuards = signal<Guard | null>(null);
  
public authenticate() : void {    
    this.http
      .post<UserAccount>(authenticateUrl, null, { observe: 'response' })
      .subscribe({
        next: (response) => {
          this._userAccount.set(response.body as UserAccount);
        },
        error: () => {
          this._isAuthenticating.set(false);
              // Error handling
        },
        complete: () => {
          this._userGuards.set(this.getGuards()); 
          // getGuards example: {canView: true, canEdit: false}             
        },
      });
  }```

And this is my guard:

```export class CanViewGuard implements CanActivate {

  constructor(
    private router: Router,
    private readonly authService: AuthService
  ) {}


  canActivate(): boolean {
    this.authService.authenticate();
    if (this.authService._userGuards().canView)
        return true;

    this.router.navigate(['unauthorized']);
  }
}```

If I put ```this.authService.authenticate();``` inside an if block it is also not working.

Also, I tried to call authenticate with APP_INITIALIZER but it is still not working.

I think that I am missing something with Signals...

fiery wind Mar 6, 2024, 2:29 PM

#

Not sure if Guards support signals already.

#

But there are some async issues with your code.

stuck quartz Mar 6, 2024, 2:31 PM

#

You can use functional guards instead of class.

What is more important - it is not said that subscription will be completed before you call if (this.authService...)

fiery wind Mar 6, 2024, 2:32 PM

#

What would a functional guard solve ?

#

It still has no support for returning signals: https://angular.io/api/router/CanActivateFn

#

(I know the OP isnt returning signals, but yeah they want to return something async I think).

stuck quartz Mar 6, 2024, 2:33 PM

#

About functional guards - it is not about solving, it is about new habits.

And I added what is really important.

#

So, if I were you - I would think about moving authenticate logic into guard and return boolean there.

fiery wind Mar 6, 2024, 2:36 PM

#

Personally, I would look along the lines of

public authenticate() : void {    
    return this.http
      .post<UserAccount>(authenticateUrl, null, { observe: 'response' })
      .pipe(
         tap((response) => {
          this._userAccount.set(response.body as UserAccount);
         }),
       );
  }

public guards() : void {    
    this.authenticate()
      .pipe(
         map(() => this.getGuards())
       )
  }

and in the guard

export class CanViewGuard implements CanActivate {

  constructor(
    private router: Router,
    private readonly authService: AuthService
  ) {}


  canActivate(): boolean {
    return this.authService.guards().pipe(
      map(guard => guard.canView),
      tap(canView => {
        if (!canView) {
          this.router.navigate(['unauthorized']);
        }
      })
    );
  }
}

#

Still not idea but solves the async issue.

#

I wouldnt bother moving to functional guards at this point, as that doesnt solve anything. But yes, it's worth considering going forward.

#

Also in the above snippet, authenticate() has changed. So wherever u call authenticate(), you will need to subscribe at some point.

#

Also, I would avoid the tap() in the authenticate(), but I left it for now.

stuck quartz Mar 6, 2024, 2:40 PM

#

fiery wind I wouldnt bother moving to functional guards at this point, as that doesnt solve...

Well, it is not necessary, but CanActivate is deprecated, so it would be a good practice to move it to functional guard

fiery wind Mar 6, 2024, 2:41 PM

#

stuck quartz Well, it is not necessary, but CanActivate is deprecated, so it would be a good ...

Sure, it would. And I can mention alot of good practises. But none of them would help the problem at hand. So when recommending that, I think it's important to call out it doesnt solve, nor help solving the problem, as some people may assume you mean it does.

jade abyss Mar 6, 2024, 2:43 PM

#

stuck quartz So, if I were you - I would think about moving authenticate logic into guard and...

Do I have to move the logic into multiple guard files then?

fiery wind Mar 6, 2024, 2:43 PM

#

I think the authentication logic should stay in a service, as that is what services are for. Your main issue is with asynchronous code.

jade abyss Mar 6, 2024, 2:57 PM

#

fiery wind Personally, I would look along the lines of ```ts public authenticate() : void ...

for the guards function it tells me that I can't use pipe on void functions

stuck quartz Mar 6, 2024, 2:57 PM

#

how does it look?

#

your guard now

fiery wind Mar 6, 2024, 2:58 PM

#

jade abyss for the guards function it tells me that I can't use pipe on void functions

Did u update the authenticate method?

jade abyss Mar 6, 2024, 3:01 PM

#

I have updated with the code you sent

#

both files

jade abyss Mar 6, 2024, 3:03 PM

#

fiery wind Did u update the `authenticate` method?

it is just complaining about this.authenticate().pipe(...) in public guards()

fiery wind Mar 6, 2024, 3:03 PM

#

Ah

#

public authenticate() : Observable<unknown> {    
    return this.http
      .post<UserAccount>(authenticateUrl, null, { observe: 'response' })
      .pipe(
         tap((response) => {
          this._userAccount.set(response.body as UserAccount);
         }),
       );
  }

public guards() : Observable<Guard> {    
    this.authenticate()
      .pipe(
         map(() => this.getGuards())
       )
  }

jade abyss Mar 6, 2024, 3:16 PM

#


    let authenticateUrl = `${this.authenticateApiUrl}`;

    return this.http
      .post<UserAccount>(authenticateUrl, null, { observe: 'response' })
      .pipe(
        tap((response: HttpResponse<UserAccount>) => {
          this._userAccount.set(response.body as UserAccount);
        })
      );
  }


  public guards(): Observable<Guard> {
    this.authenticate().pipe(
      map(()=>this.getGuards())
    );
    return;
  }



  constructor(
    private router: Router,
    private readonly authService: AuthService
  ) {}


  canActivate() {
    return this.authService.guards().pipe(
        map((guard: Guard) => guard.canView),
        tap(canView =>{
            if(!canView){
                this.router.navigate(['unauthorized']);
            }
        })
    );
  }
}

I did this but now I can't even get my userAccount signal now the post request seems not working

fiery wind Mar 6, 2024, 3:23 PM

#

Did u also ensure that everywhere u call authenticate(), you ensure you subscribe one way or the other?

jade abyss Mar 6, 2024, 3:26 PM

#

I did not understand, how should I do that for example?

fiery wind Mar 6, 2024, 3:40 PM

#

jade abyss I did not understand, how should I do that for example?

Do u have an example of where u call it ?

jade abyss Mar 6, 2024, 4:03 PM

#

  public userAccount: Signal<UserAccount | null>;
  public userGuards: Signal<Guard | null>;
  constructor(
    private readonly authService: AuthService,
  ) {
  }


  public ngOnInit(): void {
    this.userAccount = this.authService._userAccount;
    this.userGuards = this.authService._userGuards;
   


    this.authService.authenticate();
  }




// Change identity
  public leaveIdentity(): void {
    this.authService.authenticate(10100101);
  }
}
```  This is an example in my main.component, I also pass some signals as props to other components

#

  <app-navbar [userAccount]="userAccount()" [userGuards]="userGuards()" (profileClick)="leaveIdentity()" />
}
``` like this

#Signals and Guards