Class: CheckAccessTokenGuard
api-login/check-access-token.guard.CheckAccessTokenGuard
Guard for checking the presence of an access token in the request. If needed, checks for admin permissions of the user.
Used with @UseGuards(CheckAccessTokenGuard)
The access token is expected in the "Authorization" header, prefixed with "Bearer ". Not providing a token, a token without prefix or an invalid token will result in a 401 Unauthorized response.
Once access token (and admin permission) were verified sucessfully, the logged in user is written to the request state object
Implements
CanActivate
Constructors
constructor
• new CheckAccessTokenGuard(tokenService, reflector, backendUserService)
Parameters
| Name | Type |
|---|---|
tokenService | TokenService |
reflector | Reflector |
backendUserService | BackendUserService |
Defined in
login-service/src/api-login/check-access-token.guard.ts:27
Properties
backendUserService
• Private Readonly backendUserService: BackendUserService
Defined in
login-service/src/api-login/check-access-token.guard.ts:30
logger
• Private Readonly logger: Logger
Defined in
login-service/src/api-login/check-access-token.guard.ts:26
reflector
• Private Readonly reflector: Reflector
Defined in
login-service/src/api-login/check-access-token.guard.ts:29
tokenService
• Private Readonly tokenService: TokenService
Defined in
login-service/src/api-login/check-access-token.guard.ts:28
Methods
canActivate
▸ canActivate(context): Promise<boolean>
Parameters
| Name | Type |
|---|---|
context | ExecutionContext |
Returns
Promise<boolean>
Implementation of
CanActivate.canActivate