Angular 7: Test Guard

I will show you how you can test a guard. I'd like to test the code below:

import { Injectable } from '@angular/core';
import { Router, CanActivate, ActivatedRouteSnapshot, RouterStateSnapshot } from '@angular/router';
import { AuthenticationService } from './../services/authentication.service';
import { User } from './../models/user.model';
/**
* Authentication and authorization guard
*/
@Injectable({ providedIn: 'root' })
export class AuthGuard implements CanActivate {
constructor(
private router: Router,
private authenticationService: AuthenticationService
) { }
/**
* Check if user is authenticated and authorized
* @param route
* @param state
*/
canActivate(route: ActivatedRouteSnapshot, state: RouterStateSnapshot) {
const currentUser = this.authenticationService.currentUserValue;
if (currentUser) {
return this.hasPermission(route, currentUser);
}
// not logged in so redirect to login page with the return url
this.router.navigate(['/login'], { queryParams: { returnUrl: state.url } });
return false;
}
/**
* Check if logged in user has permission
* @param route
* @param user
*/
private hasPermission(route: ActivatedRouteSnapshot, user: User): boolean {
if (route.data.roles && route.data.roles.indexOf(user.role) === -1) {
// if unauthorized, redirect to home page
this.router.navigate(['/']);
return false;
}
// authorized
return true;
}
}
view raw angular_auth_guard hosted with ❤ by GitHub


We have in this code mainly 3 cases to test:
  1. The logged in user has the required role. He should be able to access the restricted area.
  2. The logged in user has NOT the required role. He should not be able to access the restricted area. The user is redirected to the home page.
  3. The user is NOT logged in. He should not be able to access the restricted area. The user is redirected to the login page.

import { TestBed } from '@angular/core/testing';
import { Router, ActivatedRouteSnapshot, RouterStateSnapshot } from '@angular/router';
import { AuthGuard } from './auth.guard';
import { User } from '../models/user.model';
import { Role } from '../models/role.enum';
import { AuthenticationService } from '../services/authentication.service';
class MockRouter {
navigate(path) { }
}
class MockActivatedRouteSnapshot {
private _data: any;
get data() {
return this._data;
}
}
class MockRouterStateSnapshot {
url: string = '/';
}
const adminUser: User = {
id: 1,
username: 'username',
password: 'password',
firstName: 'Remy',
lastName: 'Penchenat',
role: Role.Admin,
token: 'token'
};
class MockAuthService {
private user: User;
get currentUserValue(): User {
return this.user;
};
setAuthentication(user: User) {
this.user = user;
}
}
describe('AuthGuard', () => {
describe('canActivate', () => {
let authGuard: AuthGuard;
let authService: AuthenticationService;
let router: Router;
let route: ActivatedRouteSnapshot;
let state: RouterStateSnapshot;
beforeEach(() => {
TestBed.configureTestingModule({
providers: [AuthGuard,
{ provide: Router, useClass: MockRouter },
{ provide: ActivatedRouteSnapshot, useClass: MockActivatedRouteSnapshot },
{ provide: AuthenticationService, useClass: MockAuthService },
{ provide: RouterStateSnapshot, useClass: MockRouterStateSnapshot }
]
});
router = TestBed.get(Router);
spyOn(router, 'navigate');
authService = TestBed.get(AuthenticationService);
//set logged in administrator by default
authService.setAuthentication(adminUser);
authGuard = TestBed.get(AuthGuard);
state = TestBed.get(RouterStateSnapshot);
});
it('Administrator can access admin route when logged in', () => {
forAdminRoute();
expect(authGuard.canActivate(route, state)).toEqual(true);
});
it('Simple user cannot access admin route when logged in', () => {
forAdminRoute();
//change role to simple user
authService.currentUserValue.role = Role.User;
expect(authGuard.canActivate(route, state)).toEqual(false);
//redirect to home page
expect(router.navigate).toHaveBeenCalledWith(['/']);
});
it('Redirect to login when user is not logged in', () => {
//no user currently logged in
authService.setAuthentication(null);
expect(authGuard.canActivate(route, state)).toEqual(false);
//redirect to login page with redirect URL
expect(router.navigate).toHaveBeenCalledWith(['/login'], Object({ queryParams: Object({ returnUrl: '/' }) }));
});
function forAdminRoute() {
route = TestBed.get(ActivatedRouteSnapshot);
spyOnProperty(route, 'data', 'get').and.returnValue({ roles: ['Admin'] });
}
});
});
view raw angular_auth_guard_test hosted with ❤ by GitHub


You can run your test with ng test. You should see something like that:


Thanks for sharing...

Comments

Post a Comment

Popular posts from this blog

Spring JPA : Using Specification with Projection

You may probably know that using Specification with Projection is not possible at this moment. I'll show you how you can easily bypass this problem using the JPA Criteria. 1. Create an extended repository We begin by creating an extending global repository as follow : You can find more information here . 2. Add our custom method In order to limit the fields returned for each item, the consumer of my API must provide the required fields this way: /orders?fields=productId,name,quantity . ( Best Practices ) Basically, I'm defining the SELECT clause with the returned fields (cf. getSelections() ): 😎Happy coding...
Read more

Chip input using Reactive Form

The Chips component documentation from the angular material website, describes how to use the MatChipInput directive with a chip-list for adding or removing chips. I'll show you how you can implement the same component using Reactive Form. The HTML template: The TS component file:   As you can see, we use the FormBuilder class to simplify the form creation. We define our requirements as a  FormArray within our FormGroup. The requirements will be accessed in our template with this expression inside the *ngFor of <mat-chip></mat-chip> : *ngFor="let requirement of form.get('requirements').controls; let i = index;" In the ChipComponent class, the requirements array is accessed by using this expression: this.form.get('requirements') as FormArray; Thanks
Read more