feat(authorization): Implemented guards to avoid unauthorized access. (TV-515)

Squashed commit of the following: commit 86aa3af3f54be4ef5bfb99baece6654a7fba204f Merge: f3258e8 1e45fb5 Author: Erik Tiekstra <erik.tiekstra@arbetsformedlingen.se> Date: Thu Sep 9 05:42:46 2021 +0200 Merge branch 'develop' into feature/TV-515-authorization-flow commit f3258e8c6e3d51f21ec619e09c82b2d0f581bde9 Author: Erik Tiekstra <erik.tiekstra@arbetsformedlingen.se> Date: Wed Sep 8 16:43:44 2021 +0200 Fixed tests commit 91bfea1baa297f34769a33972fd61481dfa31197 Author: Erik Tiekstra <erik.tiekstra@arbetsformedlingen.se> Date: Wed Sep 8 15:55:13 2021 +0200 Removed unused pages commit d4a92fbde9d6255d8406abc23fe1479658035787 Author: Erik Tiekstra <erik.tiekstra@arbetsformedlingen.se> Date: Wed Sep 8 15:51:25 2021 +0200 Updated some styling commit dc75656ff96ff0358a2dd0a8b090b4b4938b8323 Author: Erik Tiekstra <erik.tiekstra@arbetsformedlingen.se> Date: Wed Sep 8 15:35:04 2021 +0200 Refactured guards by separating organizations into its own guard commit 24f3a0a2d821930bd682b854f98e1c9816ece08c Author: Erik Tiekstra <erik.tiekstra@arbetsformedlingen.se> Date: Wed Sep 8 15:33:53 2021 +0200 Readded search on employees commit f1890b104c48d6dd6e263b730dbdafbc2a6fbf0f Author: Erik Tiekstra <erik.tiekstra@arbetsformedlingen.se> Date: Wed Sep 8 14:59:24 2021 +0200 Added RoleGuard to pages needing a guard commit ef4b37e3dcc8fe26eef1bb813cfb35727ba691be Merge: 07bca2a b06436a Author: Erik Tiekstra <erik.tiekstra@arbetsformedlingen.se> Date: Wed Sep 8 14:06:34 2021 +0200 Merge branch 'develop' into feature/TV-515-authorization-flow commit 07bca2a84d0ec970188c284ba4b950312cec57cb Author: Erik Tiekstra <erik.tiekstra@arbetsformedlingen.se> Date: Wed Sep 8 13:26:50 2021 +0200 Added check for navigation
2021-09-09 06:13:17 +02:00
parent 1e45fb5da5
commit c984912a87
49 changed files with 266 additions and 263 deletions
@@ -1,50 +1,35 @@
 import { NgModule } from '@angular/core';
 import { ExtraOptions, RouterModule, Routes } from '@angular/router';
+import { RoleEnum } from '@msfa-enums/role.enum';
 import { environment } from '@msfa-environment';
 import { AuthGuard } from '@msfa-guards/auth.guard';
+import { OrganizationGuard } from '@msfa-guards/organization.guard';
+import { RoleGuard } from '@msfa-guards/role.guard';

 const routes: Routes = [
  {
    path: '',
    data: { title: '' },
    loadChildren: () => import('./pages/start/start.module').then(m => m.StartModule),
-    canActivate: [AuthGuard],
+    canActivate: [AuthGuard, OrganizationGuard],
  },
  {
    path: 'administration',
-    data: { title: 'Administration' },
+    data: { title: 'Administration', expectedRole: RoleEnum.MSFA_AuthAdmin },
    loadChildren: () => import('./pages/administration/administration.module').then(m => m.AdministrationModule),
-    canActivate: [AuthGuard],
+    canActivate: [AuthGuard, OrganizationGuard, RoleGuard],
  },
  {
    path: 'deltagare',
-    data: { title: 'Deltagare' },
+    data: { title: 'Deltagare', expectedRole: RoleEnum.MSFA_ReportAndPlanning },
    loadChildren: () => import('./pages/deltagare/deltagare.module').then(m => m.DeltagareModule),
-    canActivate: [AuthGuard],
+    canActivate: [AuthGuard, OrganizationGuard, RoleGuard],
  },
  {
    path: 'nya-deltagare',
-    data: { title: 'Nya deltagare' },
+    data: { title: 'Nya deltagare', expectedRole: RoleEnum.MSFA_ReceiveDeltagare },
    loadChildren: () => import('./pages/avrop/avrop.module').then(m => m.AvropModule),
-    canActivate: [AuthGuard],
-  },
-  {
-    path: 'meddelanden',
-    data: { title: 'Meddelanden' },
-    loadChildren: () => import('./pages/messages/messages.module').then(m => m.MessagesModule),
-    canActivate: [AuthGuard],
-  },
-  {
-    path: 'statistik',
-    data: { title: 'Statistik' },
-    loadChildren: () => import('./pages/statistics/statistics.module').then(m => m.StatisticsModule),
-    canActivate: [AuthGuard],
-  },
-  {
-    path: 'installningar',
-    data: { title: 'Inställningar' },
-    loadChildren: () => import('./pages/settings/settings.module').then(m => m.SettingsModule),
-    canActivate: [AuthGuard],
+    canActivate: [AuthGuard, OrganizationGuard, RoleGuard],
  },
  {
    path: 'logga-ut',
@@ -57,18 +42,19 @@ const routes: Routes = [
    data: { title: 'Välj organisation' },
    loadChildren: () =>
      import('./pages/organization-picker/organization-picker.module').then(m => m.OrganizationPickerModule),
+    canActivate: [AuthGuard],
  },
  {
    path: 'mitt-konto',
    data: { title: 'Mitt konto' },
    loadChildren: () => import('./pages/my-account/my-account.module').then(m => m.MyAccountModule),
-    canActivate: [AuthGuard],
+    canActivate: [AuthGuard, OrganizationGuard],
  },
  {
    path: 'obehorig',
    data: { title: 'Saknar behörighet' },
    loadChildren: () => import('./pages/unauthorized/unauthorized.module').then(m => m.UnauthorizedModule),
-    canActivate: [],
+    canActivate: [AuthGuard],
  },
 ];