marmelab · fzaninotto · Oct 3, 2024 · Oct 2, 2024 · Oct 2, 2024 · Oct 3, 2024
diff --git a/docs/Admin.md b/docs/Admin.md
@@ -488,6 +488,38 @@ const authProvider = {
 }
 ```
 
+**Tip**: If your authProvider implements [the `canAccess` method](./AuthProviderWriting.md#canaccess) and you don't provide a dashboard, React-Admin will use the first resource for which users have access to the list page as the home page for your admin. Make sure you order them to suit your needs.
+
+**Tip**: The detection of the first resource implies checking users are authenticated. Should your first resource be accessible without authentication or access right checks, you must provide a dashboard that redirects to it:
+
+```tsx
+// in src/Dashboard.js
+import * as React from "react";
+import { Navigate } from 'react-router';
+import { Title } from 'react-admin';
+
+export const Dashboard = () => (
+    <Navigate to="/unprotected" />
+);
+```
+
+```tsx
+// in src/App.js
+import * as React from "react";
+import { Admin, Resource } from 'react-admin';
+import simpleRestProvider from 'ra-data-simple-rest';
+import { authProvider } from './authProvider';
+
+import { Dashboard } from './Dashboard';
+
+const App = () => (
+    <Admin dashboard={Dashboard} authProvider={authProvider} dataProvider={simpleRestProvider('http://path.to.my.api')}>
+        <Resource name="unprotected" list={<UnprotectedList disableAuthentication />} />
+        <Resource name="protected" {/* ... */ } />
+    </Admin>
+);
+```
+
 ## `darkTheme`
 
 React-admin provides a [built-in dark theme](./AppTheme.md#default). The app will use the `darkTheme` by default for users who prefer the dark mode at the OS level, and users will be able to switch from light to dark mode using [the `<ToggleThemeButton>` component](./ToggleThemeButton.md).

diff --git a/packages/ra-core/src/controller/list/useInfiniteListController.spec.tsx b/packages/ra-core/src/controller/list/useInfiniteListController.spec.tsx
@@ -638,7 +638,8 @@ describe('useInfiniteListController', () => {
             );
             await screen.findByText('A post - 0 votes');
             expect(dataProvider.getList).toHaveBeenCalled();
-            expect(authProvider.checkAuth).not.toHaveBeenCalled();
+            // Only called once by NavigationToFirstResource
+            expect(authProvider.checkAuth).toHaveBeenCalledTimes(1);
         });
     });
 });
diff --git a/packages/ra-core/src/core/CoreAdminRoutes.tsx b/packages/ra-core/src/core/CoreAdminRoutes.tsx
@@ -1,8 +1,8 @@
 import * as React from 'react';
 import { useState, useEffect, Children, ComponentType } from 'react';
-import { Navigate, Route, Routes } from 'react-router-dom';
+import { Route, Routes } from 'react-router-dom';
 import { WithPermissions, useCheckAuth, LogoutOnMount } from '../auth';
-import { useScrollToTop, useCreatePath } from '../routing';
+import { useScrollToTop } from '../routing';
 import {
     AdminChildren,
     CatchAllComponent,
@@ -12,11 +12,10 @@ import {
 } from '../types';
 import { useConfigureAdminRouterFromChildren } from './useConfigureAdminRouterFromChildren';
 import { HasDashboardContextProvider } from './HasDashboardContext';
-import { useFirstResourceWithListAccess } from './useFirstResourceWithListAccess';
+import { NavigateToFirstResource } from './NavigateToFirstResource';
 
 export const CoreAdminRoutes = (props: CoreAdminRoutesProps) => {
     useScrollToTop();
-    const createPath = useCreatePath();
 
     const {
         customRoutesWithLayout,
@@ -55,11 +54,6 @@ export const CoreAdminRoutes = (props: CoreAdminRoutesProps) => {
         }
     }, [checkAuth, requireAuth]);
 
-    const {
-        isPending: isPendingFirstResourceWithListAccess,
-        resource: firstResourceWithListAccess,
-    } = useFirstResourceWithListAccess(resources);
-
     if (status === 'empty') {
         if (!Ready) {
             throw new Error(
@@ -124,17 +118,11 @@ export const CoreAdminRoutes = (props: CoreAdminRoutesProps) => {
                                                 authParams={defaultAuthParams}
                                                 component={dashboard}
                                             />
-                                        ) : firstResourceWithListAccess ? (
-                                            <Navigate
-                                                to={createPath({
-                                                    resource:
-                                                        firstResourceWithListAccess,
-                                                    type: 'list',
-                                                })}
+                                        ) : (
+                                            <NavigateToFirstResource
+                                                loading={LoadingPage}
                                             />
-                                        ) : isPendingFirstResourceWithListAccess ? (
-                                            <LoadingPage />
-                                        ) : null
+                                        )
                                     }
                                 />
                                 <Route

diff --git a/packages/ra-core/src/core/NavigateToFirstResource.spec.tsx b/packages/ra-core/src/core/NavigateToFirstResource.spec.tsx
@@ -0,0 +1,21 @@
+import * as React from 'react';
+import { fireEvent, render, screen } from '@testing-library/react';
+import {
+    AccessControl,
+    NoAuthProvider,
+} from './NavigateToFirstResource.stories';
+
+describe('<NavigateToFirstResource>', () => {
+    it('should render the first resource with a list when there is no AuthProvider', async () => {
+        render(<NoAuthProvider />);
+        await screen.findByText('Posts');
+    });
+
+    it('should render the first resource with a list users have access to', async () => {
+        render(<AccessControl />);
+        await screen.findByText('Posts');
+        fireEvent.click(screen.getByLabelText('posts.list access'));
+        fireEvent.click(screen.getByText('Go home'));
+        await screen.findByText('Users');
+    });
+});
diff --git a/packages/ra-core/src/core/NavigateToFirstResource.stories.tsx b/packages/ra-core/src/core/NavigateToFirstResource.stories.tsx
@@ -0,0 +1,138 @@
+import * as React from 'react';
+import { TestMemoryRouter } from '../routing';
+import { CoreAdmin } from './CoreAdmin';
+import { Resource } from './Resource';
+import { Browser } from '../storybook/FakeBrowser';
+import { QueryClient } from '@tanstack/react-query';
+import { AuthProvider } from '../types';
+import { Link } from 'react-router-dom';
+
+export default {
+    title: 'ra-core/core/NavigateToFirstResource',
+};
+
+export const NoAuthProvider = () => (
+    <TestMemoryRouter>
+        <CoreAdmin>
+            <Resource name="settings" edit={() => <div>Settings</div>} />
+            <Resource name="posts" list={() => <div>Posts</div>} />
+            <Resource name="users" list={() => <div>Users</div>} />
+        </CoreAdmin>
+    </TestMemoryRouter>
+);
+
+export const AccessControl = () => (
+    <TestMemoryRouter>
+        <AccessControlAdmin queryClient={new QueryClient()} />
+    </TestMemoryRouter>
+);
+
+const AccessControlAdmin = ({ queryClient }: { queryClient: QueryClient }) => {
+    const [authorizedResources, setAuthorizedResources] = React.useState({
+        'posts.list': true,
+        'users.list': true,
+    });
+
+    const authProvider: AuthProvider = {
+        login: () => Promise.reject(new Error('Not implemented')),
+        logout: () => Promise.reject(new Error('Not implemented')),
+        checkAuth: () => Promise.resolve(),
+        checkError: () => Promise.reject(new Error('Not implemented')),
+        getPermissions: () => Promise.resolve(undefined),
+        canAccess: ({ action, resource }) =>
+            new Promise(resolve => {
+                setTimeout(() => {
+                    resolve(authorizedResources[`${resource}.${action}`]);
+                }, 300);
+            }),
+    };
+    return (
+        <CoreAdmin
+            queryClient={queryClient}
+            authProvider={authProvider}
+            layout={({ children }) => (
+                <AccessControlUI
+                    authorizedResources={authorizedResources}
+                    setAuthorizedResources={setAuthorizedResources}
+                    queryClient={queryClient}
+                >
+                    {children}
+                </AccessControlUI>
+            )}
+        >
+            <Resource name="settings" edit={() => <div>Settings</div>} />
+            <Resource
+                name="posts"
+                list={() => (
+                    <div>
+                        <div>Posts</div>
+                        <Link to="/">Go home</Link>
+                    </div>
+                )}
+            />
+            <Resource
+                name="users"
+                list={() => (
+                    <div>
+                        <div>Users</div>
+                        <Link to="/">Go home</Link>
+                    </div>
+                )}
+            />
+        </CoreAdmin>
+    );
+};
+const AccessControlUI = ({
+    children,
+    setAuthorizedResources,
+    authorizedResources,
+    queryClient,
+}: {
+    children: React.ReactNode;
+    setAuthorizedResources: Function;
+    authorizedResources: {
+        'posts.list': boolean;
+        'users.list': boolean;
+    };
+    queryClient: QueryClient;
+}) => {
+    return (
+        <div>
+            <div>
+                <label>
+                    <input
+                        type="checkbox"
+                        checked={authorizedResources['posts.list']}
+                        onChange={() => {
+                            setAuthorizedResources(state => ({
+                                ...state,
+                                'posts.list':
+                                    !authorizedResources['posts.list'],
+                            }));
+
+                            queryClient.clear();
+                        }}
+                    />
+                    posts.list access
+                </label>
+                <label>
+                    <input
+                        type="checkbox"
+                        checked={authorizedResources['users.list']}
+                        onChange={() => {
+                            setAuthorizedResources(state => ({
+                                ...state,
+                                'users.list':
+                                    !authorizedResources['users.list'],
+                            }));
+
+                            queryClient.clear();
+                        }}
+                    />
+                    users.list access
+                </label>
+            </div>
+            <Browser>{children}</Browser>
+        </div>
+    );
+};
diff --git a/packages/ra-core/src/core/NavigateToFirstResource.tsx b/packages/ra-core/src/core/NavigateToFirstResource.tsx
@@ -0,0 +1,35 @@
+import * as React from 'react';
+import { Navigate } from 'react-router';
+import { useFirstResourceWithListAccess } from './useFirstResourceWithListAccess';
+import { useCreatePath } from '../routing';
+
+/**
+ * This component will inspect the registered resources and navigate to the first one for which users have access to the list page.
+ * @param props
+ * @param props.loading The component to display while the component is loading.
+ */
+export const NavigateToFirstResource = ({
+    loading: LoadingPage,
+}: NavigateToFirstResourceProps) => {
+    const { resource, isPending } = useFirstResourceWithListAccess();
+    const createPath = useCreatePath();
+
+    if (isPending) {
+        return <LoadingPage />;
+    }
+
+    if (resource) {
+        return (
+            <Navigate
+                to={createPath({
+                    resource,
+                    type: 'list',
+                })}
+            />
+        );
+    }
+};
+
+export type NavigateToFirstResourceProps = {
+    loading: React.ComponentType;
+};
diff --git a/packages/ra-core/src/core/useFirstResourceWithListAccess.tsx b/packages/ra-core/src/core/useFirstResourceWithListAccess.tsx
@@ -1,15 +1,22 @@
-import { ReactElement } from 'react';
 import { useCanAccessResources } from '../auth/useCanAccessResources';
+import { useAuthenticated } from '../auth';
+import { useResourceDefinitions } from './useResourceDefinitions';
 
 /**
- * A hook that returns the first resource users have list access to.
+ * A hook that returns the first resource for which users have access to the list page.
  * It calls the `authProvider.canAccess` if available to check the permissions.
  */
-export const useFirstResourceWithListAccess = (resources: ReactElement[]) => {
-    const resourcesNames = resources.map(resource => resource.props.name);
+export const useFirstResourceWithListAccess = () => {
+    const { isPending: isPendingAuthenticated } = useAuthenticated();
+    const resources = useResourceDefinitions();
+    const resourcesNames = Object.keys(resources).filter(
+        resource => resources[resource].hasList
+    );
+
     const { canAccess, isPending } = useCanAccessResources({
         action: 'list',
         resources: resourcesNames,
+        enabled: !isPendingAuthenticated,
     });
 
     const firstResourceWithListAccess = resourcesNames.find(