Overview
The AuthStore manages authentication state using Angular signals. It tracks access and refresh tokens, user profile data, token expiration times, and provides computed signals for token validation and authentication status.
State Interface
AuthState
JWT access token for API authentication
Refresh token stored in memory (mobile platforms may persist to secure storage via facade)
Complete user profile object
Whether an auth operation is in progress
Error object from failed auth operations
Type of session (e.g., ‘driver’, ‘passenger’, ‘admin’)
Unix timestamp (milliseconds) when access token expires
Unix timestamp (milliseconds) when refresh token expires
Session ID (JWT jti claim)
Utility flag indicating token refresh is currently happening
Computed Signals
accessToken
readonly accessToken = computed(() => this._state().accessToken)
refreshTokenInMemory
readonly refreshTokenInMemory = computed(() => this._state().refreshTokenInMemory)
user
readonly user = computed(() => this._state().user)
const userId = authStore.user()?.id;
const userName = authStore.user()?.name;
loading
readonly loading = computed(() => this._state().loading)
error
readonly error = computed(() => this._state().error)
accessTokenExpiresAt
readonly accessTokenExpiresAt = computed(() => this._state().accessTokenExpiresAt)
refreshTokenExpiresAt
readonly refreshTokenExpiresAt = computed(() => this._state().refreshTokenExpiresAt)
sid
readonly sid = computed(() => this._state().sid)
sessionType
readonly sessionType = computed(() => this._state().sessionType)
refreshInProgress
readonly refreshInProgress = computed(() => !!this._state().refreshInProgress)
accessTokenExpiresIn
readonly accessTokenExpiresIn = computed(() => {
const at = this._state().accessTokenExpiresAt;
if (!at) return null;
return Math.max(0, at - Date.now());
})
null if no expiration set.
Usage:
const msRemaining = authStore.accessTokenExpiresIn();
if (msRemaining && msRemaining < 5 * 60 * 1000) {
// Less than 5 minutes remaining, refresh token
await authFacade.refreshToken();
}
isAccessTokenValid
readonly isAccessTokenValid = computed(() => {
const token = this._state().accessToken;
const exp = this._state().accessTokenExpiresAt ?? 0;
return !!token && exp > Date.now();
})
true if access token exists and is not expired.
isAuthenticated
readonly isAuthenticated = computed(() => {
const token = this._state().accessToken;
const user = this._state().user;
const exp = this._state().accessTokenExpiresAt ?? 0;
return !!token && !!user && exp > Date.now();
})
true if user has valid token AND user profile is loaded.
Usage in route guards:
import { inject } from '@angular/core';
import { Router } from '@angular/router';
import { AuthStore } from '@/app/store/auth/auth.store';
export const authGuard = () => {
const authStore = inject(AuthStore);
const router = inject(Router);
if (authStore.isAuthenticated()) {
return true;
}
return router.parseUrl('/login');
};
State Mutation Methods
setAccessToken(token)
JWT access token or null to clear
setAccessToken(token: string | null): void
setRefreshTokenInMemory(token, persist)
Refresh token or null to clear
Hint to facade that token should be persisted (not handled by store)
setRefreshTokenInMemory(token: string | null, persist?: boolean): void
setUser(user)
user
UserProfile | null
required
User profile object or null to clear
setUser(user: UserProfile | null): void
setLoading(loading)
setLoading(loading: boolean): void
setError(error)
Error object or null to clear
setError(error: any | null): void
setSessionType(type)
type
SessionType | null
required
Session type or null
setSessionType(type: SessionType | null): void
setSid(sid)
setSid(sid: string | null): void
setRefreshInProgress(flag)
Whether refresh is in progress
setRefreshInProgress(flag: boolean): void
setAuth(payload)
payload.accessTokenExpiresAt
Access token expiration timestamp
payload.refreshTokenInMemory
Refresh token to set
payload.refreshTokenExpiresAt
Refresh token expiration timestamp
setAuth(payload: {
accessToken?: string | null;
accessTokenExpiresAt?: number | null;
refreshTokenInMemory?: string | null;
refreshTokenExpiresAt?: number | null;
user?: UserProfile | null;
sessionType?: SessionType | null;
sid?: string | null;
}): void
// After successful login
const response = await authApi.login(credentials);
authStore.setAuth({
accessToken: response.accessToken,
accessTokenExpiresAt: Date.now() + response.expiresIn * 1000,
refreshTokenInMemory: response.refreshToken,
user: response.user,
sessionType: 'driver',
sid: response.sessionId
});
getSnapshot()
Returns a snapshot of the current state object.
Usage:
const snapshot = authStore.getSnapshot();
console.log('Current user:', snapshot.user);
console.log('Token expires at:', new Date(snapshot.accessTokenExpiresAt));
clear()
Resets all state to initial values (logs out user).
Example:
// Logout flow
await authApi.logout();
authStore.clear();
await router.navigate(['/login']);
Usage Examples
Login Flow
import { Component, inject } from '@angular/core';
import { AuthStore } from '@/app/store/auth/auth.store';
import { AuthApiService } from '@/app/core/services/http/auth-api.service';
import { Router } from '@angular/router';
@Component({
selector: 'app-login',
template: `
<form (submit)="onLogin()">
<input [(ngModel)]="phone" name="phone" placeholder="Teléfono" />
<input [(ngModel)]="password" name="password" type="password" />
<button type="submit" [disabled]="authStore.loading()">
{{ authStore.loading() ? 'Iniciando sesión...' : 'Iniciar sesión' }}
</button>
@if (authStore.error(); as error) {
<p class="error">{{ error.message }}</p>
}
</form>
`
})
export class LoginComponent {
authStore = inject(AuthStore);
authApi = inject(AuthApiService);
router = inject(Router);
phone = '';
password = '';
async onLogin() {
this.authStore.setLoading(true);
this.authStore.setError(null);
try {
const response = await this.authApi.login({
phone: this.phone,
password: this.password,
role: 'driver'
}).toPromise();
// Decode JWT to get expiration (or use response.expiresIn)
const expiresAt = Date.now() + (response.expiresIn * 1000);
this.authStore.setAuth({
accessToken: response.accessToken,
accessTokenExpiresAt: expiresAt,
refreshTokenInMemory: response.refreshToken,
user: response.user,
sessionType: 'driver',
sid: response.sessionId
});
this.authStore.setLoading(false);
await this.router.navigate(['/dashboard']);
} catch (error) {
this.authStore.setError(error);
this.authStore.setLoading(false);
}
}
}
Token Refresh with Auto-Retry
import { Injectable, inject } from '@angular/core';
import { AuthStore } from '@/app/store/auth/auth.store';
import { AuthApiService } from '@/app/core/services/http/auth-api.service';
import { interval } from 'rxjs';
@Injectable({ providedIn: 'root' })
export class AuthFacade {
private authStore = inject(AuthStore);
private authApi = inject(AuthApiService);
constructor() {
// Check token expiration every 30 seconds
interval(30_000).subscribe(() => {
this.autoRefreshIfNeeded();
});
}
private async autoRefreshIfNeeded() {
const expiresIn = this.authStore.accessTokenExpiresIn();
// Refresh if less than 5 minutes remaining
if (expiresIn && expiresIn < 5 * 60 * 1000) {
console.log('[AuthFacade] Token expiring soon, refreshing...');
await this.refreshToken();
}
}
async refreshToken(): Promise<void> {
const refreshToken = this.authStore.refreshTokenInMemory();
if (!refreshToken) {
console.warn('[AuthFacade] No refresh token available');
return;
}
if (this.authStore.refreshInProgress()) {
console.log('[AuthFacade] Refresh already in progress');
return;
}
this.authStore.setRefreshInProgress(true);
try {
const response = await this.authApi.refreshToken(refreshToken).toPromise();
const expiresAt = Date.now() + (response.expiresIn * 1000);
this.authStore.setAuth({
accessToken: response.accessToken,
accessTokenExpiresAt: expiresAt,
refreshTokenInMemory: response.refreshToken,
});
console.log('[AuthFacade] Token refreshed successfully');
} catch (error) {
console.error('[AuthFacade] Token refresh failed', error);
// If refresh fails, clear auth and redirect to login
this.authStore.clear();
} finally {
this.authStore.setRefreshInProgress(false);
}
}
}
Protected Component
import { Component, inject, OnInit } from '@angular/core';
import { AuthStore } from '@/app/store/auth/auth.store';
import { Router } from '@angular/router';
@Component({
selector: 'app-dashboard',
template: `
<div class="dashboard">
<h1>Bienvenido, {{ authStore.user()?.name }}</h1>
<div class="user-info">
<p>ID: {{ authStore.user()?.id }}</p>
<p>Tipo de sesión: {{ authStore.sessionType() }}</p>
<p>Token expira en: {{ formatExpiresIn() }}</p>
</div>
@if (authStore.isAccessTokenValid()) {
<p class="status valid">Token válido</p>
} @else {
<p class="status invalid">Token inválido</p>
}
<button (click)="logout()">Cerrar sesión</button>
</div>
`
})
export class DashboardComponent implements OnInit {
authStore = inject(AuthStore);
router = inject(Router);
ngOnInit() {
if (!this.authStore.isAuthenticated()) {
this.router.navigate(['/login']);
}
}
formatExpiresIn(): string {
const ms = this.authStore.accessTokenExpiresIn();
if (!ms) return 'Desconocido';
const minutes = Math.floor(ms / 60000);
const seconds = Math.floor((ms % 60000) / 1000);
return `${minutes}m ${seconds}s`;
}
async logout() {
this.authStore.clear();
await this.router.navigate(['/login']);
}
}
HTTP Interceptor Integration
import { inject } from '@angular/core';
import { HttpInterceptorFn } from '@angular/common/http';
import { AuthStore } from '@/app/store/auth/auth.store';
export const authInterceptor: HttpInterceptorFn = (req, next) => {
const authStore = inject(AuthStore);
const token = authStore.accessToken();
if (token && authStore.isAccessTokenValid()) {
const cloned = req.clone({
setHeaders: {
Authorization: `Bearer ${token}`
}
});
return next(cloned);
}
return next(req);
};
