Class: CheckAccessTokenGuard
api-login/check-access-token.guard.CheckAccessTokenGuard
Guard for checking the presence of an access token in the request. If needed, checks for admin permissions of the user.
Used with @UseGuards(CheckAccessTokenGuard)
The access token is expected in the "Authorization" header, prefixed with "Bearer ". Not providing a token, a token without prefix or an invalid token will result in a 401 Unauthorized response.
Once access token (and admin permission) were verified sucessfully, the logged in user is written to the request state object
Implements
CanActivate
Constructors
constructor
• new CheckAccessTokenGuard(tokenService
, reflector
, backendUserService
)
Parameters
Name | Type |
---|---|
tokenService | TokenService |
reflector | Reflector |
backendUserService | BackendUserService |
Defined in
login-service/src/api-login/check-access-token.guard.ts:27
Properties
backendUserService
• Private
Readonly
backendUserService: BackendUserService
Defined in
login-service/src/api-login/check-access-token.guard.ts:30
logger
• Private
Readonly
logger: Logger
Defined in
login-service/src/api-login/check-access-token.guard.ts:26
reflector
• Private
Readonly
reflector: Reflector
Defined in
login-service/src/api-login/check-access-token.guard.ts:29
tokenService
• Private
Readonly
tokenService: TokenService
Defined in
login-service/src/api-login/check-access-token.guard.ts:28
Methods
canActivate
▸ canActivate(context
): Promise
<boolean
>
Parameters
Name | Type |
---|---|
context | ExecutionContext |
Returns
Promise
<boolean
>
Implementation of
CanActivate.canActivate