@anarchitects/auth-angular

Angular domain libraries for the Anarchitecture auth domain. The package is organized into standalone slices (config, data-access, feature, state, util, ui) that compose implementation-aligned authentication flows for Angular applications.

Features

config: DI tokens and provider helpers (API base URL, defaults)
data-access: generated OpenAPI clients plus adapters over the Nest API
state: signal-based store plus explicit provider helper for login/logout, token refresh, and ability hydration
feature: router policy guard and orchestration components that delegate rendering to auth UI components
util: CASL ability helpers (createAppAbility, AppAbility)
ui: presentational auth domain form components built on AnarchitectsUiForm

Installation

npm install @anarchitects/auth-angular
# or
yarn add @anarchitects/auth-angular

Peer dependencies: Angular v20+, @ngrx/signals, @sinclair/typebox, and the sibling packages @anarchitects/auth-ts & @anarchitects/auth-nest (for end-to-end flows).

Usage

Quick start

// app.config.ts
import { ApplicationConfig } from '@angular/core';
import { provideAuthConfig } from '@anarchitects/auth-angular/config';
import { provideAuthDataAccess } from '@anarchitects/auth-angular/data-access';
import { provideAuthState } from '@anarchitects/auth-angular/state';

export const appConfig: ApplicationConfig = {
  providers: [
    provideAuthConfig({
      apiBaseUrl: 'https://api.anarchitects.dev',
    }),
    provideAuthDataAccess(),
    provideAuthState(),
  ],
};

// app.component.ts
import { Component, inject } from '@angular/core';
import { AuthStore } from '@anarchitects/auth-angular/state';

@Component({
  selector: 'app-root',
  template: `
    <button (click)="login()">Login</button>
    <p *ngIf="store.isLoggedIn()">Welcome {{ store.loggedInUser()?.email }}</p>
  `,
})
export class AppComponent {
  readonly store = inject(AuthStore);

  login() {
    this.store.login({ credential: 'user@example.com', password: 'secret' });
  }
}

// app.routes.ts
import { Routes } from '@angular/router';
import { policyGuard } from '@anarchitects/auth-angular/feature';

export const routes: Routes = [
  {
    path: 'admin',
    canMatch: [policyGuard],
    data: { action: 'manage', subject: 'admin-section' },
    loadComponent: () => import('./admin.component').then((m) => m.AdminComponent),
  },
];

Entry points

Import path	Description
`@anarchitects/auth-angular/config`	DI tokens and providers
`@anarchitects/auth-angular/data-access`	Generated API clients and HTTP adapters
`@anarchitects/auth-angular/state`	Signal store and CASL ability sync
`@anarchitects/auth-angular/feature`	Router policy guard
`@anarchitects/auth-angular/ui`	Auth domain form UI components
`@anarchitects/auth-angular/util`	CASL ability factory and typings

Nx scripts

nx build auth-angular – build the Angular package
nx test auth-angular – execute unit tests (Jest)
nx lint auth-angular – run ESLint against the library

Development notes

DTOs live in @anarchitects/auth-ts; regenerate OpenAPI docs when route schemas change (nx run api-specs:generate).
Data-access layer should always use the generated OpenAPI clients—no manual HTTP calls.
State layer uses Angular signals via @ngrx/signals for reactive updates and caches the CASL ability returned by the API.
Ability creation is centralised in @anarchitects/auth-angular/util; import createAppAbility instead of instantiating CASL directly.
Keep UI, feature, data-access, state, and config layers decoupled per architecture guidelines.

License

Licensed under the Apache License, Version 2.0.

Anarchitecture Bricks Docs