Update private routes and Set to use roles vs role (#4681)

* Change set role to roles and deprecate

* Adds role private router checks

* Remove singular role and clarify rolesTioCheck

Co-authored-by: David Price <[email protected]>

packages/auth/src/AuthProvider.tsx

@@ -35,7 +35,7 @@ export interface AuthContextInterface {
    * If the user is assigned any of the provided list of roles,
    * the hasRole is considered to be true.
    **/
-  hasRole(role: string | string[]): boolean
+  hasRole(rolesToCheck: string | string[]): boolean
   /**
    * Redetermine authentication state and update the state.
    */

packages/auth/src/__tests__/AuthProvider.test.tsx

@@ -12,7 +12,7 @@ import { AuthProvider } from '../AuthProvider'
 import { useAuth } from '../useAuth'
 
 type HasRoleAuthClient = AuthClient & {
-  hasRole: (role?: string | string[]) => Promise<boolean | null>
+  hasRole: (rolesToCheck?: string | string[]) => Promise<boolean | null>
 }
 
 let CURRENT_USER_DATA: {

packages/router/src/Set.tsx

@@ -24,7 +24,8 @@ type SetProps<P> = P & {
   private?: boolean
   /** The page name where a user will be redirected when not authenticated */
   unauthenticated?: string
-  role?: string | string[]
+  /** Route is permitted when authenticated and use has any of the provided roles such as "admin" or ["admin", "editor"] */
+  roles?: string | string[]
   /** Prerender all pages in the set */
   prerender?: boolean
   children: ReactNode
@@ -42,7 +43,7 @@ export function Set<WrapperProps>(props: SetProps<WrapperProps>) {
     children,
     private: privateSet,
     unauthenticated,
-    role,
+    roles,
     whileLoadingAuth,
     ...rest
   } = props
@@ -56,8 +57,8 @@ export function Set<WrapperProps>(props: SetProps<WrapperProps>) {
   }
 
   const unauthorized = useCallback(() => {
-    return !(isAuthenticated && (!role || hasRole(role)))
-  }, [isAuthenticated, role, hasRole])
+    return !(isAuthenticated && (!roles || hasRole(roles)))
+  }, [isAuthenticated, roles, hasRole])
 
   // Make sure `wrappers` is always an array with at least one wrapper component
   const wrappers = Array.isArray(wrap) ? wrap : [wrap ? wrap : IdentityWrapper]
@@ -103,7 +104,7 @@ type PrivateProps<P> = Omit<
 }
 
 export function Private<WrapperProps>(props: PrivateProps<WrapperProps>) {
-  const { children, unauthenticated, role, wrap, ...rest } = props
+  const { children, unauthenticated, roles, wrap, ...rest } = props
 
   return (
     // @MARK Doesn't matter that we pass `any` here
@@ -114,7 +115,7 @@ export function Private<WrapperProps>(props: PrivateProps<WrapperProps>) {
     <Set<any>
       private
       unauthenticated={unauthenticated}
-      role={role}
+      roles={roles}
       wrap={wrap}
       {...rest}
     >

packages/router/src/__tests__/router.test.tsx

@@ -65,13 +65,19 @@ const mockUseAuth =
     {
       isAuthenticated = false,
       loading = false,
-    }: { isAuthenticated?: boolean; loading?: boolean } = {
+      hasRole = false,
+    }: { isAuthenticated?: boolean; loading?: boolean; hasRole?: boolean } = {
       isAuthenticated: false,
       loading: false,
+      hasRole: false,
     }
   ) =>
   () =>
-    createDummyAuthContextValues({ loading, isAuthenticated })
+    createDummyAuthContextValues({
+      loading,
+      isAuthenticated,
+      hasRole: () => hasRole,
+    })
 
 // SETUP
 const HomePage = () => <h1>Home Page</h1>
@@ -115,9 +121,15 @@ describe('slow imports', () => {
     )
   }
 
-  const TestRouter = ({ authenticated }: { authenticated?: boolean }) => (
+  const TestRouter = ({
+    authenticated,
+    hasRole,
+  }: {
+    authenticated?: boolean
+    hasRole?: boolean
+  }) => (
     <Router
-      useAuth={mockUseAuth({ isAuthenticated: authenticated })}
+      useAuth={mockUseAuth({ isAuthenticated: authenticated, hasRole })}
       pageLoadingDelay={100}
     >
       <Route
@@ -153,6 +165,22 @@ describe('slow imports', () => {
           whileLoadingPage={PrivatePagePlaceholder}
         />
       </Private>
+      <Private unauthenticated="login" roles="admin">
+        <Route
+          path="/private_with_role"
+          page={PrivatePage}
+          name="private_with_role"
+          whileLoadingPage={PrivatePagePlaceholder}
+        />
+      </Private>
+      <Private unauthenticated="login" roles={['admin', 'moderator']}>
+        <Route
+          path="/private_with_several_roles"
+          page={PrivatePage}
+          name="private_with_several_roles"
+          whileLoadingPage={PrivatePagePlaceholder}
+        />
+      </Private>
       <Route
         path="/param-test/{value}"
         page={ParamPage}
@@ -246,6 +274,32 @@ describe('slow imports', () => {
     })
   })
 
+  test('Private page when authenticated but does not have the role', async () => {
+    act(() => navigate('/private_with_role'))
+    const screen = render(<TestRouter authenticated={true} hasRole={false} />)
+
+    await waitFor(() => {
+      expect(
+        screen.queryByText('PrivatePagePlaceholder')
+      ).not.toBeInTheDocument()
+      expect(screen.queryByText('Private Page')).not.toBeInTheDocument()
+      expect(screen.queryByText('LoginPagePlaceholder')).toBeInTheDocument()
+    })
+    await waitFor(() => screen.getByText('Login Page'))
+  })
+
+  test('Private page when authenticated but does have the role', async () => {
+    act(() => navigate('/private_with_role'))
+    const screen = render(<TestRouter authenticated={true} hasRole={true} />)
+
+    await waitFor(() => {
+      expect(
+        screen.queryByText('PrivatePagePlaceholder')
+      ).not.toBeInTheDocument()
+      expect(screen.queryByText('Private Page')).toBeInTheDocument()
+    })
+  })
+
   test('useLocation', async () => {
     act(() => navigate('/location'))
     const screen = render(<TestRouter />)