-
Notifications
You must be signed in to change notification settings - Fork 17
Expand file tree
/
Copy pathserver.js
More file actions
80 lines (71 loc) · 2.54 KB
/
server.js
File metadata and controls
80 lines (71 loc) · 2.54 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
/**
* The Apollo Server which powers the backend
* @namespace Apollo
*/
const { ApolloServer, ApolloError} = require('apollo-server');
const UserAPI = require('./users/user.datasources.js');
const ClubAPI = require('./clubs/club.datasources.js');
const EventAPI = require('./events/event.datasources.js');
const VenueAPI = require('./venues/venue.datasources.js');
const AccessLevelAPI = require('./accessLevels/accessLevel.datasources.js');
const StoryAPI = require('./stories/story.datasources.js');
const typeDefs = require('./schema.js');
const resolvers = require('./resolvers.js');
const {firebaseApp}=require("../helpers/firebase");
const { populatePermissions } = require("../helpers/permissions");
const NodeCache = require( "node-cache" );
const tokenCache = new NodeCache();
//Datasources
const dataSources = () => ({
UserAPI: new UserAPI(),
ClubAPI: new ClubAPI(),
EventAPI: new EventAPI(),
VenueAPI: new VenueAPI(),
AccessLevelAPI: new AccessLevelAPI(),
StoryAPI:new StoryAPI()
});
const server = new ApolloServer({
typeDefs,
resolvers,
dataSources,
introspection: true,
resolverValidationOptions: { requireResolversForResolveType: false },
playground: true,
debug: false,
/**
* GraphQL Context: A top level function which decodes and verifies the JWT sent through the request header
* @param {string} decodedToken - JWT token from request
* If the user is just signin up, they would be given permissions only to access the Auth Mutation
*/
context: async ({ req }) => {
if (req.headers && req.headers.authorization) {
const idToken=req.headers.authorization;
try {
console.time("firebase");
let userToken = tokenCache.get(idToken);
if (userToken === undefined) {
const decodedToken = await firebaseApp.auth().verifyIdToken(idToken)
// eslint-disable-next-line prefer-destructuring
userToken={ uid: decodedToken.uid, mongoID: decodedToken.mongoID }
tokenCache.set(idToken, userToken,36000);
}
console.timeEnd("firebase");
if(userToken.mongoID){
return {uid: userToken.uid, permissions: await populatePermissions(userToken.mongoID)};
}
return {uid: userToken.uid, permissions: ["users.Auth"]};
} catch (error) {
const errorMessage= error.errorInfo? error.errorInfo.message : error;
return {
error:{message: errorMessage,code: "UNAUTHORIZED"}
}
}
}else{
return {
error:{message: "JWT not set",code: "UNAUTHENTICATED"}
};
}
},
formatError: err => new ApolloError(err.message,err.extensions.code)
});
module.exports = server;