Resolved: how to check userroles in each controller in nestjs

Question:

There was no answer to the question I left before, so I’m writing again.
Please understand.
I am making a project using nestjs.
I want to prevent users with a specific role in all controllers except for one controller.
I know, add @UseGuard(RoleGuard) @Role(UserRole.Guest) to each controller.
But I have a lot of controllers, and more will be added over and over again.
Is there a way to do it all at once like middleware?
thank you!

Answer:

NestJS authentication provides different mechanisms like:

For your specific use case, with the first mechanism, you can extend your auth guard to check if the user has a specific role.

import {<br />
  ExecutionContext,<br />
  Injectable,<br />
  UnauthorizedException,<br />
} from '@nestjs/common';<br />
import { AuthGuard } from '@nestjs/passport';</p>
<p>@Injectable()<br />
export class JwtAuthGuard extends AuthGuard('jwt') {<br />
  canActivate(context: ExecutionContext) {<br />
    return super.canActivate(context);<br />
  }</p>
<p>  handleRequest(err, user, info) {<br />
    if (err || !user) { <------------ You can check not only the user's existence but also the role here.
      throw err || new UnauthorizedException();
    }
    return user;
  }
}
[/code]

</p>



And with the second mechanism, you can define the auth guard globally in any one of your modules so that you don't have to add it over and over again in controllers.<br> 


<p>[code]providers: [<br />
  {<br />
    provide: APP_GUARD,<br />
    useClass: JwtAuthGuard,<br />
  },<br />
],

Note that if you expect the different controllers to be accessed with different user roles then you have to define the specific roles guard in the controllers themselves.

If you have better answer, please add a comment about this, thank you!

Resolved: how to check userroles in each controller in nestjs

Resolved: How can I copy files using the ansible.builtin.copy module and avoid conflicting file names?

Resolved: Reshape tensors of unknown shape with tf.function

Resolved: Use Svelte Component as Slot

Leave A Reply