Class: RolesGuard
Class: RolesGuard
Defined in: auth-server-nest/src/guards/roles.guard.ts:15
Enforces @Roles(...) metadata on user principals — must carry at least
one of the listed roles, or be system_admin (universal bypass).
Service principals are rejected — roles are a user concept. Endpoints that
should accept service principals must use @Permissions(...) (service
scopes map to permissions) or @ServiceOnly() instead.
Implements
CanActivate
Constructors
Constructor
new RolesGuard(
reflector):RolesGuard
Defined in: auth-server-nest/src/guards/roles.guard.ts:16
Parameters
reflector
Reflector
Returns
RolesGuard
Methods
canActivate()
canActivate(
context):boolean
Defined in: auth-server-nest/src/guards/roles.guard.ts:18
Parameters
context
ExecutionContext
Current execution context. Provides access to details about the current request pipeline.
Returns
boolean
Value indicating whether or not the current request is allowed to proceed.
Implementation of
CanActivate.canActivate