feat: feat: Protect home page with Angular Guards, version clean

matheusandre1 · matheusandre1 · commit feb098f3f023 · 2026-01-04T00:27:27.000-03:00
diff --git a/timeless-api/src/main/webui/src/app/app.routes.ts b/timeless-api/src/main/webui/src/app/app.routes.ts
@@ -6,6 +6,7 @@ import { SignInComponent } from './pages/sign/sign-in/sign-in.component';
 import { RegisteredComponent } from './pages/sign/registered/registered.component';
 import { UserConfigComponent } from './pages/user-config/user-config.component';
 import { RecordsComponent } from './components/records/records.component';
+import { AuthGuard } from './guards/auth_guard.guard';
 
 export const routes: Routes = [
   {
@@ -29,6 +30,8 @@ export const routes: Routes = [
   {
     path: 'home',
     component: HomeComponent,
+    canActivate: [AuthGuard],
+    canActivateChild: [AuthGuard],
     children: [
       {
         path: '',
diff --git a/timeless-api/src/main/webui/src/app/guards/auth_guard.guard.ts b/timeless-api/src/main/webui/src/app/guards/auth_guard.guard.ts
@@ -0,0 +1,40 @@
+import { Injectable } from '@angular/core';
+import {
+  CanActivate,
+  CanActivateChild,
+  Router,
+  ActivatedRouteSnapshot,
+  RouterStateSnapshot,
+  UrlTree,
+} from '@angular/router';
+import { timelessLocalStorageKey } from '../constants';
+import { TimelessApiService } from '../timeless-api.service';
+import { Observable, of } from 'rxjs';
+import { catchError, map } from 'rxjs/operators';
+
+@Injectable({ providedIn: 'root' })
+export class AuthGuard implements CanActivate, CanActivateChild {
+  constructor(
+    private readonly router: Router,
+    private readonly apiService: TimelessApiService,
+  ) {}
+
+  canActivate(
+    route: ActivatedRouteSnapshot,
+    state: RouterStateSnapshot,
+  ): Observable<boolean | UrlTree> {
+    return this.apiService.userInfo().pipe(
+      map(() => true),
+      catchError(() => {
+        return of(this.router.createUrlTree(['/']));
+      }),
+    );
+  }
+
+  canActivateChild(
+    childRoute: ActivatedRouteSnapshot,
+    state: RouterStateSnapshot,
+  ): Observable<boolean | UrlTree> {
+    return this.canActivate(childRoute, state);
+  }
+}
diff --git a/timeless-api/src/main/webui/src/app/timeless-api.service.ts b/timeless-api/src/main/webui/src/app/timeless-api.service.ts
@@ -51,7 +51,11 @@ export class TimelessApiService {
       throw new Error();
     }
     const user = JSON.parse(data);
-    return this.httpClient.get(`/api/users/${user.id}`);
+    return this.httpClient.get(`/api/users/${user.id}`, {
+      headers: {
+        Authorization: `Bearer ${user.token}`,
+      },
+    });
   }
 
   deleteRecord(id: number) {

Original file line number	Diff line number	Diff line change
`@@ -6,6 +6,7 @@ import { SignInComponent } from './pages/sign/sign-in/sign-in.component';`
`6`	`6`	`import { RegisteredComponent } from './pages/sign/registered/registered.component';`
`7`	`7`	`import { UserConfigComponent } from './pages/user-config/user-config.component';`
`8`	`8`	`import { RecordsComponent } from './components/records/records.component';`
	`9`	`+import { AuthGuard } from './guards/auth_guard.guard';`
`9`	`10`
`10`	`11`	`export const routes: Routes = [`
`11`	`12`	`{`
`@@ -29,6 +30,8 @@ export const routes: Routes = [`
`29`	`30`	`{`
`30`	`31`	`path: 'home',`
`31`	`32`	`component: HomeComponent,`
	`33`	`+ canActivate: [AuthGuard],`
	`34`	`+ canActivateChild: [AuthGuard],`
`32`	`35`	`children: [`
`33`	`36`	`{`
`34`	`37`	`path: '',`
Original file line number	Diff line number	Diff line change
`@@ -51,7 +51,11 @@ export class TimelessApiService {`
`51`	`51`	`throw new Error();`
`52`	`52`	`}`
`53`	`53`	`const user = JSON.parse(data);`
`54`		- return this.httpClient.get(`/api/users/${user.id}`);
	`54`	+ return this.httpClient.get(`/api/users/${user.id}`, {
	`55`	`+ headers: {`
	`56`	+ Authorization: `Bearer ${user.token}`,
	`57`	`+ },`
	`58`	`+ });`
`55`	`59`	`}`
`56`	`60`
`57`	`61`	`deleteRecord(id: number) {`