Check if Logged in - React Router App ES6

Question

I am writing a React.js application (v15.3) using react-router (v2.8.1) and ES6 syntax. I cannot get the router code to intercept all transitions between pages to check if the user needs to login first.

My top level render method is very simple (the app is trivial as well):

 render()
   {
      return (
         <Router history={hashHistory}>
            <Route path="/" component={AppMain}>
               <Route path="login" component={Login}/>
               <Route path="logout" component={Logout}/>
               <Route path="subject" component={SubjectPanel}/>
               <Route path="all" component={NotesPanel}/>
            </Route>
         </Router>
      );
   }

All the samples on the web use ES5 code or older versions of react-router (older than version 2), and my various attempts with mixins (deprecated) and willTransitionTo (never gets called) have failed.

How can I set up a global 'interceptor function' to force users to authenticate before landing on the page they request?

I have provided an answer to a similar question here, it may be useful. http://stackoverflow.com/a/39098876/6060774 — alex, Oct 15 '16 at 09:27

vijayst · Answer 1 · 2016-10-16T02:04:52.503

34

Every route has an onEnter hook which is called before the route transition happens. Handle the onEnter hook with a custom requireAuth function.

<Route path="/search" component={Search} onEnter={requireAuth} />

A sample requireAuth is shown below. If the user is authenticated, transition via next(). Else replace the pathname with /login and transition via next(). The login is also passed the current pathname so that after login completes, the user is redirected to the path originally requested for.

function requireAuth(nextState, replace, next) {
  if (!authenticated) {
    replace({
      pathname: "/login",
      state: {nextPathname: nextState.location.pathname}
    });
  }
  next();
}

edited Oct 16 '16 at 02:04

answered Oct 15 '16 at 06:24

vijayst

20,359
18
69
113

This almost works. requireAuth is called correctly but the call to replace({pathname:...); hangs – NullPumpkinException Oct 15 '16 at 11:10
I forgot to put a next() after replace(). – vijayst Oct 15 '16 at 11:18
The next() function was not defined, but your answer put me on the right track – NullPumpkinException Oct 15 '16 at 21:57

score 6 · Answer 2 · answered Sep 23 '17 at 06:41

In v4 you just create a route component that checks if uses is authenticated and return the next components and of course next component can be other routes.

import React, { Component } from 'react';
import PropTypes from 'prop-types';

import { connect } from 'react-redux';
import { bindActionCreators } from 'redux';
import { Route, Redirect } from 'react-router-dom';

import AuthMiddleware from 'modules/middlewares/AuthMiddleware';

class PrivateRoute extends Component {
  static propTypes = {
    component: PropTypes.func.isRequired,
    isAuthenticated: PropTypes.bool,
    isLoggedIn: PropTypes.func.isRequired,
    isError: PropTypes.bool.isRequired
  };

  static defaultProps = {
    isAuthenticated: false
  };

  constructor(props) {
    super(props);
    if (!props.isAuthenticated) {
      setTimeout(() => {
        props.isLoggedIn();
      }, 5);
    }
  }

  componentWillMount() {
    if (this.props.isAuthenticated) {
      console.log('authenticated');
    } else {
      console.log('not authenticated');
    }
  }
  componentWillUnmount() {}

  render() {
    const { isAuthenticated, component, isError, ...rest } = this.props;
    if (isAuthenticated !== null) {
      return (
        <Route
          {...rest}
          render={props => (
            isAuthenticated ? (
              React.createElement(component, props)
            ) : (
              <Redirect
                to={{
                  pathname: isError ? '/login' : '/welcome',
                  state: { from: props.location }
                }}
              />
            )
          )}
        />
      );
    } return null;
  }

}

const mapStateToProps = (state) => {
  return {
    isAuthenticated: state.auth.isAuthenticated,
    isError: state.auth.isError
  };
};

const mapDispatchToProps = (dispatch) => {
  return bindActionCreators({
    isLoggedIn: () => AuthMiddleware.isLoggedIn()
  }, dispatch);
};

export default connect(mapStateToProps, mapDispatchToProps)(PrivateRoute);

what's module name provide AuthMiddleware? – Ismael Vacco Jan 29 '19 at 21:17 — Ismael Vacco, Jan 29 '19 at 21:17

NullPumpkinException · Accepted Answer · 2016-10-28T00:57:14.963

This version of the onEnter callback finally worked for react-router (v2.8):

 requireAuth(nextState,
               replace)
   {
      if(!this.authenticated()) // pseudocode - SYNCHRONOUS function (cannot be async without extra callback parameter to this function)
         replace('/login')
   }

The link which explains react-router redirection differences between V1 vs v2 is here. Relevant section quoted below:

Likewise, redirecting from an onEnter hook now also uses a location descriptor.

// v1.0.x
(nextState, replaceState) => replaceState(null, '/foo')
(nextState, replaceState) => replaceState(null, '/foo', { the: 'query' })

// v2.0.0
(nextState, replace) => replace('/foo')
(nextState, replace) => replace({ pathname: '/foo', query: { the: 'query' } })

Full Code Listing Below (react-router version 2.8.1):

requireAuth(nextState,
               replace)
{
   if(!this.authenticated()) // pseudocode - SYNCHRONOUS function (cannot be async without extra callback parameter to this function)
     replace('/login');
}

render() {
  return (
     <Router history={hashHistory}>
        <Route path="/" component={AppMain}>
           <Route path="login" component={Login}/>
           <Route path="logout" component={Logout}/>
           <Route path="subject" component={SubjectPanel} onEnter={this.requireAuth}/>
           <Route path="all" component={NotesPanel} onEnter={this.requireAuth}/>
        </Route>
     </Router>
  );
}

score 2 · Answer 4 · answered Apr 18 '20 at 13:30

2

If you're using react-router 4 and above, use Render props and redirect to solve this. Refer: onEnter not called in React-Router

answered Apr 18 '20 at 13:30

Abejith

21
2

score 2 · Answer 5 · answered May 05 '21 at 11:16

2

This is not a safe solution
You can try n use useEffect hook on every page requiring login as:

useEffect(() => {
  const token = localStorage.getItem('token');
  if(!token) {
    history.push('/login');
  }
}

This uses useHistory hook from 'react-router-dom'
you just need to initialize it before calling it as:

const history = useHistory();

As already stated above it is not a safe sloution, but a simple one

answered May 05 '21 at 11:16

hez

21
5

1

what do you mean by 'not safe'? no authentication or authorization on the front-end is considered safe – Normal May 04 '22 at 08:02
I assume 'not safe' is referencing how the token is stored in local storage, which is [thought to be bad practice](https://dev.to/rdegges/please-stop-using-local-storage-1i04) – Tyler Dane Sep 23 '22 at 18:46

score 0 · Answer 6 · answered Mar 23 '22 at 06:13

You can do it by simply creating a RestrictedRoute or Private component and pass your redux user authenticated state to this and in RestrictedRoute component redirect if state is false, in case of true redirect to component.

code:

const RestrictedRoute = ({ component: Component, authUser, auth, ...rest }) => (
  <Route
    {...rest}
    render={props =>
      auth.is_authenticated && auth.is_authorized && authUser ? (
        <Component {...props} />
      ) : (
        <Redirect
          to={{
            pathname: '/signin',
            state: { from: props.location },
          }}
        />
      )
    }
  />
);
<Switch>
     <RestrictedRoute path={`${match.url}app`}
       authUser={authUser}
       auth={{ is_authenticated, is_authorized }}
       component={MainApp}
     />
     <Route path='/signin' component={SignIn} />
<Switch>

Check if Logged in - React Router App ES6

6 Answers6

Linked