Angular User Role
Inspired by Grails Spring Security Core plugin concept of roles and TagLib.
This library provides a simple vanilla access control for your Angular application. By definition role is named set of
abilities (permissions) by which specific group of users is identified. Role names can be like ROLE_ADMIN,
ROLE_ORGANIZATION_MANAGER or roleAccountant.
Usage
1. Install via Bower
bower install angular-user-role --save
2. Add the script to your main HTML file (like index.html)
<script src="bower_components/angular-user-role/dist/angular-user-role.min.js"></script>
3. Add dependency to your application
var myApp = angular.module("foo", ["angular.user.role", "others"]);
4. In your application, when a user logs in or logs out, do the following:
myApp.controller("LoginController", ["$scope", "$http", "securityService", function($scope, $http, securityService) {
$scope.doLogin = function() {
$http.post('/api/login', {username: "foo", password: "bar"}).then(function(resp) {
// Successfully logged in
// Notify the security service that current logged in user following roles where roles should be an array
of string like: ["ROLE_ADMIN", "ROLE_ORGANIZATION_MANAGER"]
securityService.loggedIn(resp.data.roles);
});
};
$scope.logout = function() {
$http.post('/api/logout').then(function() {
// Successfully logged out
// Notify the security service that user has logged out
securityService.loggedOut();
});
};
}]);
5. Now use it in your HTML
if-logged-in
Displays the inner body content (element type) or the whole element (attribute type) if the user is authenticated or logged in.
<if-logged-in>This content will be visible when user is logged in</if-logged-in>
<div if-logged-in>This content will also be visible when user is logged in</div>
<div if-logged-in ng-if="someOtherCondition">
This content will be visible when user is logged in and "someOtherCondition" is true
</div>
if-not-logged-in
Displays the inner body content (element type) or the whole element (attribute type) if the user is not authenticated or not logged in.
<if-not-logged-in>This content will be visible when user is not logged in</if-not-logged-in>
<div if-not-logged-in>This content will also be visible when user is not logged in</div>
<div if-not-logged-in ng-if="someOtherCondition">
This content will only be visible when the user is not logged in and "someOtherCondition" is true
</div>
if-any-granted
Displays the element if at least one of the listed roles are granted to the current logged in user.
<div class="thumbnail" if-any-granted="ROLE_ADMIN,ROLE_USER">
<-- Your content here -->
</div>
or
<if-any-granted roles="ROLE_ADMIN,ROLE_USER">
<div class="thumbnail">Hello</div>
</if-any-granted>
If the user is not logged in then the content or element will be hidden/removed.
if-all-granted
Displays the element if all the listed roles are granted to the current logged in user.
<div class="thumbnail" if-all-granted="ROLE_ADMIN,ROLE_USER">
<-- Your content here -->
</div>
or
<if-all-granted roles="ROLE_ADMIN,ROLE_USER">
<div class="thumbnail">Hello</div>
</if-all-granted>
If the user is not logged in then the content or element will be hidden/removed.
Note: In the above all directives, the behaviour of ng-if directive is used i.e. if any of the role based
authentication results in false then the respective DOM element will be removed from the DOM.
Testing
Consider there are 4 roles available in the system: ROLE_ADMIN, ROLE_USER, ROLE_ORGANIZATION_MANAGER, ROLE_ACCOUNTANT
and the currently logged in user has only ROLE_USER & ROLE_ACCOUNTANT then the following should be true (Run when
user is logged in and logged out):
<if-logged-in>I should only be visible when the user is logged in.<br></if-logged-in>
<div if-logged-in>I should only be visible when the user is logged in.<br></div>
<div if-logged-in ng-if="false">I should not be visible in any case.</div>
<div if-logged-in ng-if="true">I should only be visible when the user is logged in.</div>
<if-not-logged-in>I should only be visible when the user is not logged in.<br></if-not-logged-in>
<div if-not-logged-in>I should only be visible when the user is not logged in.<br></div>
<div if-not-logged-in ng-if="false">I should not be visible in any case<br></div>
<if-any-granted roles="ROLE_ADMIN, ROLE_USER" ng-if="true">
I should be visible when user is logged in.<br>
</if-any-granted>
<div if-any-granted="ROLE_USER,ROLE_ADMIN" ng-if="true">
I should be visible when user is logged in.<br>
</div>
<if-any-granted roles="ROLE_ADMIN, ROLE_USER">
I should be visible when user is logged in.<br>
</if-any-granted>
<if-any-granted roles="ROLE_ADMIN,ROLE_ORGANIZATION_MANAGER">
I should not be visible when user is logged in or not logged in.<br>
</if-any-granted>
<if-any-granted roles="ROLE_ADMIN, ROLE_USER, ROLE_ACCOUNTANT" ng-if="false">
I should not be visible in any case.<br>
</if-any-granted>
<div if-any-granted="ROLE_USER" ng-if="false">
I should not be visible in any case.<br>
</div>
<if-all-granted roles="ROLE_ADMIN, ROLE_USER" ng-if="true">
I should not be visible in any case.<br>
</if-all-granted>
<if-all-granted roles="ROLE_ADMIN, ROLE_USER">I should not be visible in any case.</if-all-granted>
<if-all-granted roles="ROLE_ADMIN, ROLE_USER" ng-if="false">I should not be visible.</if-all-granted>
<div if-all-granted roles="ROLE_ADMIN, ROLE_USER" ng-if="false">I should not be visible.</div>
<div if-all-granted roles="ROLE_ADMIN, ROLE_USER" ng-if="true">I should not be visible.</div>
<if-all-granted roles="ROLE_USER" ng-if="true">
I should be visible only when the user is logged in.<br>
</if-all-granted>
<div if-all-granted="ROLE_USER,ROLE_ACCOUNTANT" ng-if="true">
I should be visible only when the user is logged in.<br>
</div>
<div if-all-granted="ROLE_USER" ng-if="false">
I should not be visible in any case.<br>
</div>
Development & Contributions
Pull requests are welcome :-)
Releasing new version
grunt uglify
grunt bump:patch