DEV Community: Victory Ndukwu. The latest articles on DEV Community by Victory Ndukwu. (@victoryndukwu). https://dev.to/victoryndukwu https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F435620%2F8db914db-8854-4081-aebb-a8b8b76af3cd.jpg DEV Community: Victory Ndukwu. https://dev.to/victoryndukwu en A Practical Guide to Role-Based Permissions in React. Victory Ndukwu. Sat, 28 Jun 2025 08:13:53 +0000 https://dev.to/victoryndukwu/a-practical-guide-to-role-based-permissions-in-react-1g4m https://dev.to/victoryndukwu/a-practical-guide-to-role-based-permissions-in-react-1g4m <p>Modern frontend applications often need to support multiple user roles, such as admins, merchants, support agents etc. with each role having different permissions. Hardcoding these checks all over your components quickly becomes messy and error-prone.</p> <p>In this guide, I’ll walk you through a real-world approach I used at work to elegantly manage role-based permissions in a React + Redux app using a Higher-Order Component (HOC) pattern.</p> <p><strong>Prerequisites</strong><br> To follow along with this guide, you should be comfortable with:</p> <ul> <li>React fundamentals (hooks, components)</li> <li>TypeScript basics (enums, generics)</li> <li>Redux Toolkit or any global state management tool</li> <li>Basic understanding of Role-Based Access Control (RBAC) principles</li> <li>Familiarity with Higher-Order Components (HOCs) in React</li> </ul> <p><strong>Problem Context</strong><br> At work, we manage internal tools where different users have varying access levels. For instance:</p> <ul> <li>Admins can manage users and view reports</li> <li>Merchants can only manage their store</li> <li>Support agents can handle tickets but not access sensitive data</li> </ul> <p>Rather than scatter <code>if (user.role === 'admin')</code> all over the app, I wanted a reusable way to:</p> <ul> <li>Centralize permission checks</li> <li>Disable or hide UI elements based on permissions</li> <li>Keep code clean and declarative</li> </ul> <p><strong>Step 1: Define Your Permissions</strong><br> First, we define all possible permissions in a single, centralized enum. This makes it easy to reuse and manage across your app.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// permissions.ts</span> <span class="k">export</span> <span class="kr">enum</span> <span class="nx">Permission</span> <span class="p">{</span> <span class="nx">ProductCreate</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">product.create</span><span class="dl">'</span><span class="p">,</span> <span class="nx">ProductDelete</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">product.delete</span><span class="dl">'</span><span class="p">,</span> <span class="nx">ProductUpdate</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">product.update</span><span class="dl">'</span><span class="p">,</span> <span class="nx">ProductView</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">product.view</span><span class="dl">'</span><span class="p">,</span> <span class="nx">OrdersView</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">orders.view</span><span class="dl">'</span><span class="p">,</span> <span class="nx">OrdersManage</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">orders.manage</span><span class="dl">'</span><span class="p">,</span> <span class="nx">UsersCreate</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">users.create</span><span class="dl">'</span><span class="p">,</span> <span class="nx">UsersDelete</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">users.delete</span><span class="dl">'</span><span class="p">,</span> <span class="nx">RolesUpdate</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">roles.update</span><span class="dl">'</span><span class="p">,</span> <span class="nx">ApiKeysRead</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">apikeys.read</span><span class="dl">'</span><span class="p">,</span> <span class="nx">ApiKeysCreate</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">apikeys.create</span><span class="dl">'</span><span class="p">,</span> <span class="p">}</span> <span class="c1">// Flatten the enum into an array if needed elsewhere in your app</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">ALL_PERMISSIONS</span><span class="p">:</span> <span class="nx">Permission</span><span class="p">[]</span> <span class="o">=</span> <span class="nb">Object</span><span class="p">.</span><span class="nf">values</span><span class="p">(</span><span class="nx">Permission</span><span class="p">);</span> </code></pre> </div> <p><strong>Step 2: Create a Central Permission Checker</strong><br> Build a utility function that checks whether the current user has a specific permission. This helps us avoid repeating logic in multiple components.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// utils/hasPermissions.ts</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">hasPermission</span> <span class="o">=</span> <span class="p">(</span> <span class="nx">user</span><span class="p">:</span> <span class="nx">User</span> <span class="o">|</span> <span class="kc">null</span><span class="p">,</span> <span class="nx">requiredPermission</span><span class="p">:</span> <span class="nx">Permission</span><span class="p">,</span> <span class="nx">allPermissions</span><span class="p">:</span> <span class="nx">Permission</span><span class="p">[]</span> <span class="p">):</span> <span class="nx">boolean</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">allPermissions</span><span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="nx">requiredPermission</span><span class="p">))</span> <span class="p">{</span> <span class="k">return</span> <span class="kc">false</span><span class="p">;</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">user</span><span class="p">?.</span><span class="nx">permissions</span><span class="p">?.</span><span class="nf">includes</span><span class="p">(</span><span class="nx">requiredPermission</span><span class="p">)</span> <span class="o">??</span> <span class="kc">false</span><span class="p">;</span> <span class="p">};</span> </code></pre> </div> <p><strong>Step 3: Create a Higher-Order Component for Permissions</strong><br> The core logic that wraps any component and disables it based on permission.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight tsx"><code><span class="c1">// hocs/withPermission.tsx</span> <span class="kd">const</span> <span class="nx">withPermission</span> <span class="o">=</span> <span class="p">&lt;</span><span class="nc">P</span> <span class="na">extends</span> <span class="na">object</span><span class="p">&gt;</span>( action: Permission, Component: React.ComponentType<span class="p">&lt;</span><span class="nc">P</span> <span class="err">&amp;</span> <span class="si">{</span> <span class="nx">disabled</span><span class="p">?:</span> <span class="nx">boolean</span> <span class="si">}</span><span class="p">&gt;</span> ) =&gt; <span class="si">{</span> <span class="k">return</span> <span class="kd">function</span> <span class="nf">WithPermissionWrapper</span><span class="p">(</span><span class="nx">props</span><span class="p">:</span> <span class="nx">P</span> <span class="o">&amp;</span> <span class="p">{</span> <span class="nx">disabled</span><span class="p">?:</span> <span class="nx">boolean</span> <span class="p">})</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">user</span> <span class="o">=</span> <span class="nf">useSelector</span><span class="p">((</span><span class="nx">state</span><span class="p">:</span> <span class="nx">RootState</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">state</span><span class="p">.</span><span class="nx">user</span><span class="p">.</span><span class="nx">data</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">isAllowed</span> <span class="o">=</span> <span class="nf">hasPermission</span><span class="p">(</span><span class="nx">user</span><span class="p">,</span> <span class="nx">action</span><span class="p">,</span> <span class="nx">ALL_PERMISSIONS</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">disabled</span> <span class="o">=</span> <span class="nx">props</span><span class="p">.</span><span class="nx">disabled</span> <span class="o">||</span> <span class="o">!</span><span class="nx">isAllowed</span><span class="p">;</span> <span class="k">return</span> <span class="p">&lt;</span><span class="nc">Component</span> <span class="si">{</span><span class="p">...</span><span class="nx">props</span><span class="si">}</span> <span class="na">disabled</span><span class="p">=</span><span class="si">{</span><span class="nx">disabled</span><span class="si">}</span> <span class="p">/&gt;;</span> <span class="p">};</span> <span class="si">}</span>; export default withPermission; </code></pre> </div> <blockquote> <p>Why disable instead of hide?<br> Removing components entirely based on permissions can cause layout breaks and unpredictable UI bugs. By disabling them instead, we preserve the layout, avoid unnecessary conditional rendering, and still communicate clearly to the user that they don’t have access.</p> </blockquote> <p><strong>Usage Example</strong><br> Let’s say only users with the DELETE_PRODUCT permission can use a delete button:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight tsx"><code><span class="k">import</span> <span class="nx">withPermission</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@/hocs/withPermission</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Permission</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@/types/permissions</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">DeleteButton</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">./DeleteButton</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">DeleteButtonWithPermission</span> <span class="o">=</span> <span class="nf">withPermission</span><span class="p">(</span><span class="nx">Permission</span><span class="p">.</span><span class="nx">ProductDelete</span><span class="p">,</span> <span class="nx">DeleteButton</span><span class="p">);</span> <span class="c1">// In JSX</span> <span class="p">&lt;</span><span class="nc">DeleteButtonWithPermission</span> <span class="na">onClick</span><span class="p">=</span><span class="si">{</span><span class="nx">handleDelete</span><span class="si">}</span> <span class="p">/&gt;</span> </code></pre> </div> <p><strong>Why This Works</strong></p> <ul> <li>Reusability: Wrap any component once, reuse everywhere</li> <li>Clean UI code: No inline permission checks in JSX</li> <li>Central logic: One source of truth for permission rules</li> </ul> <p>You can also extend this idea:</p> <ul> <li>Use <code>withPermission</code> to <strong>hide</strong> instead of <strong>disable</strong> </li> <li>Wrap entire pages or routes</li> <li>Combine it with role groups or feature flags</li> </ul> <p><strong>Conclusion</strong><br> Role-based UI logic is inevitable in real-world apps — especially internal tools or admin dashboards. By abstracting permission logic with enums, utilities, and HOCs, you can make your React codebase far more readable, scalable, and testable.</p> <p>Let’s chat,<br> How are you handling permissions in your React apps?<br> Have you tried wrapping routes or using context instead of Redux?<br> Drop a comment below or connect with me — I’d love to learn from other implementations!</p> react redux typescript hocpattern [Boost] Victory Ndukwu. Thu, 15 May 2025 10:16:56 +0000 https://dev.to/victoryndukwu/-380l https://dev.to/victoryndukwu/-380l <div class="ltag__link--embedded"> <div class="crayons-story "> <a href="https://dev.to/vicnovais/understanding-referential-equality-in-reacts-useeffect-2m7o" class="crayons-story__hidden-navigation-link">Understanding referential equality in React's useEffect</a> <div class="crayons-story__body crayons-story__body-full_post"> <div class="crayons-story__top"> <div class="crayons-story__meta"> <div class="crayons-story__author-pic"> <a href="/vicnovais" class="crayons-avatar crayons-avatar--l "> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F636505%2Fe54a423b-22b9-4dac-9aff-ef0e1cba6b5d.png" alt="vicnovais profile" class="crayons-avatar__image"> </a> </div> <div> <div> <a href="/vicnovais" class="crayons-story__secondary fw-medium m:hidden"> Victor Novais </a> <div class="profile-preview-card relative mb-4 s:mb-0 fw-medium hidden m:inline-block"> Victor Novais <div id="story-author-preview-content-1042945" class="profile-preview-card__content crayons-dropdown branded-7 p-4 pt-0"> <div class="gap-4 grid"> <div class="-mt-4"> <a href="/vicnovais" class="flex"> <span class="crayons-avatar crayons-avatar--xl mr-2 shrink-0"> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F636505%2Fe54a423b-22b9-4dac-9aff-ef0e1cba6b5d.png" class="crayons-avatar__image" alt=""> </span> <span class="crayons-link crayons-subtitle-2 mt-5">Victor Novais</span> </a> </div> <div class="print-hidden"> Follow </div> <div class="author-preview-metadata-container"></div> </div> </div> </div> </div> <a href="https://dev.to/vicnovais/understanding-referential-equality-in-reacts-useeffect-2m7o" class="crayons-story__tertiary fs-xs"><time>Apr 5 '22</time><span class="time-ago-indicator-initial-placeholder"></span></a> </div> </div> </div> <div class="crayons-story__indention"> <h2 class="crayons-story__title crayons-story__title-full_post"> <a href="https://dev.to/vicnovais/understanding-referential-equality-in-reacts-useeffect-2m7o" id="article-link-1042945"> Understanding referential equality in React's useEffect </a> </h2> <div class="crayons-story__tags"> <a class="crayons-tag crayons-tag--monochrome " href="/t/javascript"><span class="crayons-tag__prefix">#</span>javascript</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/react"><span class="crayons-tag__prefix">#</span>react</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/webdev"><span class="crayons-tag__prefix">#</span>webdev</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/typescript"><span class="crayons-tag__prefix">#</span>typescript</a> </div> <div class="crayons-story__bottom"> <div class="crayons-story__details"> <a href="https://dev.to/vicnovais/understanding-referential-equality-in-reacts-useeffect-2m7o" class="crayons-btn crayons-btn--s crayons-btn--ghost crayons-btn--icon-left"> <div class="multiple_reactions_aggregate"> <span class="multiple_reactions_icons_container"> <span class="crayons_icon_container"> <img src="https://assets.dev.to/assets/exploding-head-daceb38d627e6ae9b730f36a1e390fca556a4289d5a41abb2c35068ad3e2c4b5.svg" width="18" height="18"> </span> <span class="crayons_icon_container"> <img src="https://assets.dev.to/assets/multi-unicorn-b44d6f8c23cdd00964192bedc38af3e82463978aa611b4365bd33a0f1f4f3e97.svg" width="18" height="18"> </span> <span class="crayons_icon_container"> <img src="https://assets.dev.to/assets/sparkle-heart-5f9bee3767e18deb1bb725290cb151c25234768a0e9a2bd39370c382d02920cf.svg" width="18" height="18"> </span> </span> <span class="aggregate_reactions_counter">46<span class="hidden s:inline"> reactions</span></span> </div> </a> <a href="https://dev.to/vicnovais/understanding-referential-equality-in-reacts-useeffect-2m7o#comments" class="crayons-btn crayons-btn--s crayons-btn--ghost crayons-btn--icon-left flex items-center"> Comments 2<span class="hidden s:inline"> comments</span> </a> </div> <div class="crayons-story__save"> <small class="crayons-story__tertiary fs-xs mr-2"> 6 min read </small> <span class="bm-initial"> </span> <span class="bm-success"> </span> </div> </div> </div> </div> </div> </div> javascript react webdev typescript