Article in Russian README_ru.md
In the previous articles, a small Angular application was created that has a main application and two additional applications. Additional applications have their own independent assets. The Angular Material library was also connected. In this article, we will continue to develop this software package.
Let's add the following:
- shared library Core;
- additional authorization application;
The prerequisites are detailed in the previous article. Let us indicate briefly:
- Node.js version 10.9.0 or later;
- Package manager npm version 6.14.8 or later;
- Angular version 10 or later;
Create a directory for the project go to it:
$ mkdir /home/alexey/ws_ts3/crm-simple3/
$ cd /home/alexey/ws_ts3/crm-simple3/Copy the project files from the previous article into it github-crm-simple2. However, you can delete the files img-*.png.
Start installation of all required packages:
$ npm installThis software package contains entities that are used in all additional applications. These can be: common decorators, the current user, checking the permissions of the current user, and so on.
Consider a user profile that stores a list of permissions. Suppose the user has chosen a route and after that the corresponding additional application is loaded. For each route in the add-on application, an access permission check is performed. In this way, the user profile object and access permission check functions can be moved into the public core library.
To continue, go to the main application directory:
$ cd /home/alexey/ws_ts3/crm-simple3/Create a shared library core:
$ npx ng generate library lib-coreAll entities that will be exported in this library will be specified in the file: ./projects/lib-core/src/public-api.ts. This will shorten the description of the source file in the import line.
A very part of it is the need to unsubscribe for the Subscription entity from the rxjs library. An example is described below.
ngOnInit(): void {
this.unsubClientList = this.route.data
.subscribe((data: { clientList: ClientDto[] }) => {
this.clientList = (data.clientList || []);
});
}
ngOnDestroy(): void {
this.unsubClientList.unsubscribe();
}Let's create a decorator that will automatically unsubscribe all subscriptions in the class. The idea is very simple: go through all the properties of an object and check if the property is an object with the unsubscribe function. And if so, then call this function.
Go to the directory of our library:
$ cd /home/alexey/ws_ts3/crm-simple3/projects/lib-core/src/lib/We create a directory decorators, which will store all the decorators for this library.
$ mkdir decorators && cd ./decoratorsCreate file auto-unsubscribe.ts
const doUnsubscribe = subscription => {
if (subscription != null && typeof subscription.unsubscribe === 'function') {
subscription.unsubscribe();
}
};
const doUnsubscribeIfArray = subscriptionsArray => {
if (Array.isArray(subscriptionsArray)) {
subscriptionsArray.forEach(doUnsubscribe);
}
};
export function AutoUnsubscribe(config: { exclude?: any[]; includeArrays?: any[]; } = { exclude: [], includeArrays: [] }): any {
return (constructor: any): any => {
const originalOnDestroy = constructor.prototype.ngOnDestroy;
const excludeProperties = (config.exclude || []);
const includePropertiesAsArrays = Array.from(new Set(config.includeArrays || []));
constructor.prototype.ngOnDestroy = function(...args): void {
for (const propertyName of Object.keys(this)) {
if (excludeProperties.includes(propertyName)) {
continue;
}
const property = this[propertyName];
if (includePropertiesAsArrays.includes(propertyName)) {
doUnsubscribeIfArray(property);
} else {
doUnsubscribe(property);
}
}
if (originalOnDestroy && typeof originalOnDestroy === 'function') {
originalOnDestroy.apply(this, args);
}
};
};
}Usage example:
@Component({
selector: 'app-client-list',
templateUrl: './client-list.component.html',
styleUrls: ['./client-list.component.scss']
})
@AutoUnsubscribe()
export class ClientListComponent implements OnInit {
public clientList: ClientDto[];
private unsubClientList: Subscription;
constructor(private route: ActivatedRoute) {}
ngOnInit(): void {
this.unsubClientList = this.route.data
.subscribe((data: { clientList: ClientDto[] }) => {
this.clientList = (data.clientList || []);
});
}
}Destruction of an object of this class will automatically unsubscribe for all variables of the Subscription type.
You can also add a list of properties that are Subscription arrays.
@Component({
selector: 'app-client-list',
templateUrl: './client-list.component.html',
styleUrls: ['./client-list.component.scss']
})
@AutoUnsubscribe({ includeArrays: ['unsubList'] })
export class ClientListComponent implements OnInit {
public clientList: ClientDto[];
private unsubList: Subscription[] = [];
constructor(private route: ActivatedRoute) {}
ngOnInit(): void {
this.unsubList.push(this.route.data
.subscribe((data: { clientList: ClientDto[] }) => {
this.clientList = (data.clientList || []);
}) );
}
}Now this decorator can be used to automatically unsubscribe all variables of the Subscription type, as well as a list of arrays with the Subscription type.
To work with user profile data, a service is required that will access the server API.
To continue, go to the main application directory:
$ cd /home/alexey/ws_ts3/crm-simple3/Let's create a service for obtaining user profile data in the lib-core library:
$ npx ng generate service services/profile-api --project=lib-coreThe services/profile-api parameter defines the name of the new service profile-api, and also indicates the services subdirectory in which this new service should be created.
We implement a service for obtaining a user profile.
This service uses an object of the HttpClient class and therefore it is required to add the HttpClientModule module to the main module of the lib-core.module.ts library. This will result in a separate instance of the HttpClient class being used within the framework of this library. And when you need to add an authorization token to the request header, you will have to create a separate interceptor for the lib-core library. It will be necessary to create a hotel interceptor for all additional applications, since the HttpClientModule module was also added to them. For simplicity, let's transfer the import of the HttpClientModule module from additional applications to the main one. This will allow you to have a common http-request interceptor.
Output:
the module
HttpClientModuleis described in the import list only for the main application, but not for additional applications - no (at the time of loading the additional application, this module will already be loaded into memory);
When user profile data is retrieved from the server, you need to share that data. For this, we will use the profile service in the public kernel library. You also want to display the user's last name and first name in the header component of the main application.
To continue, go to the main application directory:
$ cd /home/alexey/ws_ts3/crm-simple3/Let's create a service for working with user profile data in the lib-core library:
$ npx ng generate service services/profile --project=lib-coreLet's implement the method for obtaining the user profile in this service:
public loadProfile(profileId: number): Observable<ProfileDto[]> {
this.innProfileDto = null;
return this.profileApiService.getData({ ids: [profileId] })
.pipe(
take(1),
tap((profiles: ProfileDto[]) => {
if (profiles != null && profiles.length > 0) {
this.innProfileDto = profiles[0];
}
return profiles;
})
);
}This method should be called when the main application starts. And in the case when the user profile is not defined, go to the authorization page.
The profile service must be specified in the list of providers only in the lib-core.module module of the lib-core library. In all other additional applications, the profile service cannot be specified in the list of providers. Because this will lead to the creation of a new instance of this service. And we need this service to be the only one.
When the main application starts, you need to check the user profile data. For this purpose, let's create the AppInitService service, which will contain a method with this check. And this method must be called when the application starts.
To continue, go to the main application directory:
$ cd /home/alexey/ws_ts3/crm-simple3/src/app/Let's create a service in the main application to store the user profile:
$ npx ng generate service services/app-initLet's add the _initProfile () _ method, in which the request to get the user profile is executed (_profileService.loadProfile () _). If the server returns user profile data, then we continue loading the main application. If the server does not return profile data, then this user needs to go to the authorization route.
Let's use the APP_INITIALIZER token to define the function when starting the main application. Let's open the file / src/app/app.module.ts and add a call to the AppInitService.initProfile() method to the providers section.
import { BrowserModule } from '@angular/platform-browser';
import { NgModule, APP_INITIALIZER } from '@angular/core';
import { BrowserAnimationsModule } from '@angular/platform-browser/animations';
import { LibCoreModule } from '../../projects/lib-core/src/lib/lib-core.module';
import { AppRoutingModule } from './app-routing.module';
import { AppComponent } from './app.component';
import { NavComponent } from './nav/nav.component';
import { AppInitService } from './services/app-init.service';
@NgModule({
declarations: [
AppComponent,
NavComponent
],
imports: [
BrowserModule, // ** Must be loaded first **
BrowserAnimationsModule,
AppRoutingModule,
LibCoreModule
],
providers: [
AppInitService,
{
provide: APP_INITIALIZER,
useFactory: (appInitService: AppInitService) => () => appInitService.initProfile(),
deps: [AppInitService],
multi: true
}
],
bootstrap: [AppComponent]
})
export class AppModule {
constructor() {
console.log('main: AppModule();');
}
}This module uses the AppInitService service and therefore it is specified in the providers section. In this case, this service depends on another service ProfileService, which (with its dependencies) is described in the LibCoreModule module. Since this place requires the creation of the ProfileService service, add the LibCoreModule module to the import section. As a result, the LibCoreModule module, with its providers, gets into memory when the AppModule module of the main application is loaded. Therefore, after lazy loading of the additional application module app-client, there is no need to load the LibCoreModule module again. And if you still specify it in the import section of the additional application module app-client, then new instances of the providers of the LibCoreModule module will be created. All this can be verified by performing a small experiment.
Angular will create new instances for any of the InjectionToken or Injectable in use cases:
- Lazy loading of modules;
- Injections in descendant modules;
This is because Angular creates a new Injector module for any lazy loaded module, this behavior is well described in the documentation and in this article.
When the Angular router lazily loads a module, it creates a new execution context. This context has its own injector, which is a direct descendant of the application injector.
Conclusions:
the service is indicated in the list of providers only in the module where it is created, otherwise a second instance of the service will be created;
the LibCoreModule module is described in the import list only for the main application, but not for additional applications (at the time of loading the additional application, this module will already be loaded into memory);
For our application to work, we need to receive responses from the API server. But since we do not have a server, we will formulate responses to server requests using interceptors. These interceptors will be located in the interceptors directory of the main application. And will only be added in development mode.
Let's implement a simple authorization interceptor mock-authorize.interceptor.ts:
import { Injectable } from '@angular/core';
import { HttpEvent, HttpRequest, HttpHandler, HttpInterceptor, HttpResponse } from '@angular/common/http';
import { Router } from '@angular/router';
import { Observable, of } from 'rxjs';
import { delay } from 'rxjs/operators';
import { AuthorizeDto } from '../../../projects/app-authorize/src/app/services/authorize.interface';
import {
DEMO_LOGIN1, DEMO_PASSWD1, DEMO_PROFILE_ID1, DEMO_LOGIN2, DEMO_PASSWD2, DEMO_PROFILE_ID2, USER_AUTHORIZE
} from '../../../projects/lib-core/src/lib/lib-core.const';
import {
API_AUTHORIZE, API_AUTHORIZE_SIGNIN, API_AUTHORIZE_SIGNOUT
} from '../../../projects/app-authorize/src/app/services/authorize-api.service';
@Injectable({
providedIn: 'root'
})
export class MockAuthorizeInterceptor implements HttpInterceptor {
private authorizeProvider: AuthorizeProvider = new AuthorizeProvider();
constructor(private router: Router) {
console.log('MockAuthorizeInterceptor();');
}
intercept(req: HttpRequest<any>, next: HttpHandler): Observable<HttpEvent<any>> {
if (!req.url.startsWith(API_AUTHORIZE)) {
return next.handle(req);
}
let response: Partial<{}> = {};
const delayTime = 100;
let status = 500;
if (req.url === API_AUTHORIZE_SIGNIN) {
response = this.handleSignin(req);
status = 200;
} else if (req.url === API_AUTHORIZE_SIGNOUT) {
response = this.handleSignout(req);
status = 200;
}
return of(new HttpResponse({ status, body: response })).pipe(delay(delayTime));
}
private handleSignin(req: HttpRequest<any>): Partial<{}> {
let result: Partial<{}> = {};
const method = (req != null ? req.method : null);
switch (method) {
case 'POST':
sessionStorage.removeItem(USER_AUTHORIZE);
result = this.authorizeProvider.get({ login: req.body.login, password: req.body.password });
if (result != null) {
const authorizeJson = JSON.stringify(result);
sessionStorage.setItem(USER_AUTHORIZE, String(authorizeJson));
}
break;
default:
break;
}
return result;
}
private handleSignout(req: HttpRequest<any>): Partial<{}> {
let result: Partial<{}> = {};
const method = (req != null ? req.method : null);
switch (method) {
case 'GET':
sessionStorage.removeItem(USER_AUTHORIZE);
result = {};
break;
default:
break;
}
return result;
}
}
class AuthorizeProvider {
private authorizeList: AuthorizeDto[] = this.createList();
constructor() {
}
// ** Public API **
public get(data: { login: string, password: string }): AuthorizeDto {
let result: AuthorizeDto = null;
const list: AuthorizeDto[] = this.authorizeList.slice();
if (!!data.login) {
const authorizeDto: AuthorizeDto = list.find(item => data.login === item.login && data.password === item.password);
if (authorizeDto != null) {
const authorizeData = Object.assign({}, authorizeDto, { password: null });
result = authorizeData;
}
}
return result;
}
public delete(data: { ids: number[] }): string {
if (Array.isArray(data.ids)) {
for (const id of data.ids) {
const index = this.authorizeList.findIndex(item => item.id === id);
if (index > -1) {
this.authorizeList.splice(index, 1);
}
}
}
return null;
}
// ** Privat API **
private createList(): AuthorizeDto[] {
const result: AuthorizeDto[] = [];
result.push(this.createAuthorize(1, DEMO_LOGIN1, DEMO_PASSWD1, DEMO_PROFILE_ID1));
result.push(this.createAuthorize(2, DEMO_LOGIN2, DEMO_PASSWD2, DEMO_PROFILE_ID2));
return result;
}
private createAuthorize(id: number, login: string, password: string, profileId: number): AuthorizeDto {
return { id, login, password, profileId };
}
}Let's modify the main application module _ / src / app / app.module.ts_:
import { BrowserModule } from '@angular/platform-browser';
import { NgModule, APP_INITIALIZER } from '@angular/core';
import { BrowserAnimationsModule } from '@angular/platform-browser/animations';
import { HttpClientModule, HTTP_INTERCEPTORS } from '@angular/common/http';
import { environment } from '../environments/environment';
import { LibCoreModule } from '../../projects/lib-core/src/lib/lib-core.module';
import { AppRoutingModule } from './app-routing.module';
import { AppComponent } from './app.component';
import { NavComponent } from './nav/nav.component';
import { AppInitService } from './services/app-init.service';
import { MockClientInterceptor } from './interceptors/mock-client.interceptor';
import { MockTaskInterceptor } from './interceptors/mock-task.interceptor';
import { MockAuthorizeInterceptor } from './interceptors/mock-authorize.interceptor';
const provideMock = [
{ provide: HTTP_INTERCEPTORS, useClass: MockClientInterceptor, multi: true },
{ provide: HTTP_INTERCEPTORS, useClass: MockTaskInterceptor, multi: true },
{ provide: HTTP_INTERCEPTORS, useClass: MockAuthorizeInterceptor, multi: true }
];
@NgModule({
declarations: [
AppComponent,
NavComponent
],
imports: [
BrowserModule, // ** Must be loaded first **
BrowserAnimationsModule,
HttpClientModule,
AppRoutingModule,
LibCoreModule
],
providers: [
AppInitService,
{
provide: APP_INITIALIZER,
useFactory: (appInitService: AppInitService) => () => appInitService.initProfile(),
deps: [AppInitService],
multi: true
},
...(!environment.production ? provideMock : [])
],
bootstrap: [AppComponent]
})
export class AppModule {
constructor() {
console.log('AppModule();');
}
}The procedure for checking permissions for access to a specific route depends only on the data of the user profile, then it can be moved into the LibCoreModule kernel library module. To check the permissions of a route, the Route class has the corresponding properties:
- canActivate - check for route activation;
- canLoad - check for route loading (for lazy loading); We will indicate what permissions to check in the route in the data section.
To continue, go to the main application directory:
$ cd /home/alexey/ws_ts3/crm-simple3/Let's create a class in the lib-core library to check permissions according to user profile data. When creating, we will indicate the signs of creating two interfaces:
$ npx ng generate guard guards/permissions --project=lib-core --implements CanActivate --implements CanLoadLet's implement two permission checks in this class: CanActivate and CanLoad. ./projects/lib-core/src/lib/guards/permissions.guard.ts
import { Injectable } from '@angular/core';
import { CanActivate, CanLoad, Route, UrlSegment, ActivatedRouteSnapshot, RouterStateSnapshot, UrlTree } from '@angular/router';
import { Observable } from 'rxjs';
import { ProfileService } from '../services/profile.service';
@Injectable({
providedIn: 'root'
})
export class PermissionsGuard implements CanActivate, CanLoad {
constructor(private profileService: ProfileService) {
}
// ** Public API **
public canActivate(
route: ActivatedRouteSnapshot, state: RouterStateSnapshot
): Observable<boolean | UrlTree> | Promise<boolean | UrlTree> | boolean | UrlTree {
return this.checkPermissions(route.data.permissions, this.profileService.availablePermissions());
}
public canLoad(route: Route, segments: UrlSegment[]): Observable<boolean> | Promise<boolean> | boolean {
return this.checkPermissions(route.data.permissions, this.profileService.availablePermissions());
}
// ** Private API **
private checkPermissions(requiredPermissions: string[], availablePermissions: string[]): boolean {
const innRequiredPermissions = (requiredPermissions || []);
const innAvailablePermissions = (availablePermissions || []);
let result = true;
for (let i = 0, len = innRequiredPermissions.length; i < len && result; i++) {
result = (innAvailablePermissions.indexOf(innRequiredPermissions[i]) > -1);
}
return result;
}
}In the LibCoreModule file, add PermissionsGuard to the list of providers:
providers: [
ProfileApiService,
ProfileService,
PermissionsGuard
]An example of use when building routes in the main application. ./src/app/app-routing.module.ts
import { NgModule } from '@angular/core';
import { Routes, RouterModule } from '@angular/router';
import { PermissionsGuard } from '../../projects/lib-core/src/lib/guards/permissions.guard';
import { LoadPermission } from './app.consts';
const routes: Routes = [
{
path: 'app-client',
loadChildren: () => import('../../projects/app-client/src/app/app.module').then(mod => mod.AppModule),
data: {
permissions: ['appClient']
},
canLoad: [PermissionsGuard],
},
{
path: 'app-task',
loadChildren: () => import('../../projects/app-task/src/app/app.module').then(mod => mod.AppModule),
data: {
permissions: ['appTask']
},
canLoad: [PermissionsGuard],
},
{
path: '**',
redirectTo: '/app-client/list'
}
];
@NgModule({
imports: [
RouterModule.forRoot(routes)
],
exports: [RouterModule]
})
export class AppRoutingModule { }Do not forget that permissions for a route are stored in an additional application where this route is used (_permissions: ['clientList'] _). And only the main application stores the permissions to load the additional application (_permissions: ['appClient'] _). This is the principle of "decentralizing" logic. Everything that is required to implement the execution logic of the additional application is stored in the secondary application itself.
Output:
permissions to download additional applications are contained in the lib-core library, and permissions to internal routes of additional applications - in these applications (for independence of additional applications);
Before starting work, the user must authorize, specify his username and password. Let's create an additional application app-authorize, which will implement the page for authorization.
To continue, go to the main application directory:
$ cd /home/alexey/ws_ts3/crm-simple3/Create an additional authorization application.
$ npx ng generate application app-authorize --routing=true --style=scssng generate application <name>- create a new application<name>in the projects subdirectory of the workspace;--style = scss- sets the SCSS preprocessor to be used for style files (default CSS);--routing = true- tells Angular CLI to create a routing NgModule;
Next, we create a component for authorization when entering the software package.
Create a module and a signin component:
$ npx ng generate module signin --project=app-authorize
$ npx ng generate component signin --project=app-authorize --export=trueIn this component, the user should enter his username and password, which are used for authorization on the server.
The source code can be downloaded from [github-crm-simple3] (https://github.com/alx-melnichuk/crm-simple3). (Run npm install before starting the application.)
You can launch the project on the StackBlitz website by following the link https://stackblitz.com/github/alx-melnichuk/crm-simple3 .
As a result of the work done, we have the following conclusions:
- the module
HttpClientModuleis described in the import list only for the main application, but not for additional applications (at the time of loading the additional application, this module will already be loaded into memory); - сервис указывается в списке провайдеров только в модуле, где он создается, иначе будет создан второй экземпляр сервиса;
- the LibCoreModule module is described in the import list only for the main application, but not for additional applications (this module is already loaded into memory);
- permission to download applications of additional applications in the library lib-core, permission to internal routes of applications - in these applications (for the independence of additional applications);