Merge pull request #2035 from timdeschryver/docs/guards

docs: update guard documentation
damienbod · Oct 24, 2024 · 2ea4fb3 · 2ea4fb3
2 parents da77a40 + a889997
commit 2ea4fb3
Showing 1 changed file with 45 additions and 53 deletions.
diff --git a/docs/site/angular-auth-oidc-client/docs/documentation/guards.md b/docs/site/angular-auth-oidc-client/docs/documentation/guards.md
@@ -5,21 +5,54 @@ sidebar_position: 8
 
 # Using Route Guards
 
-## Class based
+Guards should only be applied to protected URLs. There should be no guard active on the default route where the authorization request is processed.
+Please refer to the auto-login guard in this repository as a reference.
+It is important that the callback logic can be run on a route without the guard running or run before the guard logic.
+
+## Functional API
+
+```ts
+import { inject } from '@angular/core';
+import { Router } from '@angular/router';
+import { OidcSecurityService } from 'angular-auth-oidc-client';
+import { map, take } from 'rxjs';
+
+export const isAuthenticated = () => {
+  const oidcSecurityService = inject(OidcSecurityService);
+  const router = inject(Router);
+
+  return oidcSecurityService.isAuthenticated$.pipe(
+    take(1),
+    map(({ isAuthenticated }) => {
+      // allow navigation if authenticated
+      if (isAuthenticated) {
+        return true;
+      }
+
+      // redirect if not authenticated
+      return router.parseUrl('/unauthorized');
+    })
+  );
+};
+```
+
+```ts
+const appRoutes: Routes = [
+  {
+    path: 'protected',
+    component: <yourComponent>,
+    canActivate: [isAuthenticated]
+  },
+];
+```
 
-> Guards should only be applied to protected URLs. There should be no guard active on the default route where the authorization request is processed.
+All other guard types like `canMatch` or `canActivateChild` work in a similar way.
 
-Please refer to the auto-login guard in this repo as a reference. It is important that the callback logic can be run on a route without the guard running or run before the guard logic.
+## Class based
 
 ```ts
 import { Injectable } from '@angular/core';
-import {
-  ActivatedRouteSnapshot,
-  CanActivate,
-  Router,
-  RouterStateSnapshot,
-  UrlTree,
-} from '@angular/router';
+import { ActivatedRouteSnapshot, CanActivate, Router, RouterStateSnapshot, UrlTree } from '@angular/router';
 import { OidcSecurityService } from 'angular-auth-oidc-client';
 import { Observable } from 'rxjs';
 import { map } from 'rxjs/operators';
@@ -29,10 +62,7 @@ export class AuthorizationGuard implements CanActivate {
   private readonly oidcSecurityService = inject(OidcSecurityService);
   private readonly router = inject(Router);
 
-  canActivate(
-    route: ActivatedRouteSnapshot,
-    state: RouterStateSnapshot
-  ): Observable<boolean | UrlTree> {
+  canActivate(route: ActivatedRouteSnapshot, state: RouterStateSnapshot): Observable<boolean | UrlTree> {
     return this.oidcSecurityService.isAuthenticated$.pipe(
       take(1),
       map(({ isAuthenticated }) => {
@@ -58,45 +88,7 @@ const appRoutes: Routes = [
     component: <yourComponent>,
     canActivate: [AuthorizationGuard]
   },
-  // ...
 ];
 ```
 
-All other guard types like `canLoad` or `canActivateChild` work in a similar way. However, the guard class has to implement the respective interfaces and methods accordingly.
-
-## Functional API
-
-```ts
-import { inject } from '@angular/core';
-import { Router } from '@angular/router';
-import { OidcSecurityService } from 'angular-auth-oidc-client';
-import { map, take } from 'rxjs/operators';
-
-export const isAuthenticated = () => {
-  const oidcSecurityService = inject(OidcSecurityService);
-  const router = inject(Router);
-
-  return oidcSecurityService.isAuthenticated$.pipe(
-    take(1),
-    map(({ isAuthenticated }) => {
-      if (!isAuthenticated) {
-        router.navigate(['']);
-
-        return false;
-      }
-      return true;
-    })
-  );
-};
-```
-
-```ts
-const appRoutes: Routes = [
-  {
-    path: 'protected',
-    component: <yourComponent>,
-    canActivate: [isAuthenticated]
-  },
-  // ...
-];
-```
+All other guard types like `canMatch` or `canActivateChild` work in a similar way. However, the guard class has to implement the respective interfaces and methods accordingly.