As far as I know, the main approach is either to avoid authentication control for server-side rendered pages or, if you use it, ensure that it returns false for SSR. Alternatively, using the cookie trick with ngx-cookie-service + ngx-cookie-service-ssr should logically be sufficient, even if you say otherwise. I haven’t tried it myself, so I can’t guarantee that it works, but it should work as the general flow(not cookie one) is well-explained here:
By the way, this is a late response. You’ve probably already figured out the solution, but I’d appreciate hearing how you approached it.