How to protect endpoints of a Nestjs application - Revisited

#nestjs

Two years ago, I wrote a post about protecting API endpoints of a Nestjs application. To summarize it:

use the declarative approach of Nestjs and protect the whole application by default behind a guard.
provide your project with a decorator that you can add on controllers and controllers' methods to opt out of the default guard protection.

I realized there was a nicer syntax than @SetMetadata(AUTH_GUARD_CONFIG, { disabled: true } as AuthGuardConfig). Simply create a function that does it, just with a much better name:

export const AllowUnauthorized = () => SetMetadata(AUTH_GUARD_CONFIG, { disabled: true } as AuthGuardConfig);

That's it!

Top comments (0)

How to add E2E Tests for Nestjs graphql

tkssharma - Sep 7

Nest-Connect API using NestJs, PassportJs, and Prisma

Said MOUNAIM - Sep 6

Fix long import paths in your NestJS project #nestjs

tkssharma - Sep 7

The Developer's Guide to Mastering NodeJS with Prometheus and Grafana

Tarun Sharma - Sep 19

DEV Community