❔ Redirect all unauthenticated requests for an SPA to OAuth

I have an Angular SPA app. I don't want them to be able to load any of the assets on this server without a validated JWT token from IdentityServer. How can I redirect before anything is served?