feat: implement authentication with JWT and user management

2025-05-07 13:42:04 +02:00 · 2025-05-07 13:42:04 +02:00 · 35d8fbaea0
commit 35d8fbaea0
parent c4c762cafe
42 changed files with 989 additions and 397 deletions
--- a/frontend/src/app/shared/interceptor/http.interceptor.ts
+++ b/frontend/src/app/shared/interceptor/http.interceptor.ts
@ -1,21 +1,33 @@
 import { HttpInterceptorFn } from '@angular/common/http';
 import { inject } from '@angular/core';
-import { OAuthStorage } from 'angular-oauth2-oidc';
+import { AuthService } from '../../service/auth.service';

 export const httpInterceptor: HttpInterceptorFn = (req, next) => {
-  const oauthStorage = inject(OAuthStorage);
+  const authService = inject(AuthService);
+  const token = authService.getToken();

-  if (oauthStorage.getItem('access_token')) {
+  // Always add CORS headers
+  if (token) {
    return next(
      req.clone({
        setHeaders: {
-          Authorization: 'Bearer ' + oauthStorage.getItem('access_token'),
-          'Access-Control-Allow-Origin': '*',
+          Authorization: `Bearer ${token}`,
          'Referrer-Policy': 'no-referrer',
+          'Access-Control-Allow-Origin': '*',
+          'Access-Control-Allow-Methods': 'GET, POST, PUT, DELETE, OPTIONS',
+          'Access-Control-Allow-Headers': '*'
        },
      })
    );
  } else {
-    return next(req);
+    return next(
+      req.clone({
+        setHeaders: {
+          'Access-Control-Allow-Origin': '*',
+          'Access-Control-Allow-Methods': 'GET, POST, PUT, DELETE, OPTIONS',
+          'Access-Control-Allow-Headers': '*'
+        },
+      })
+    );
  }
 };