* remove required for firstname and lastname

* remove devise-jwt replace with graphql-auth
* use rails6 branch of graphql-auth
* add rubocop as gem
* remove unused mutations because we use graphql-auth
* remove everything devise-jwt related
* remove framework defaults
* remove unused specs in graphqlcontroller

Author: simonfranzen

Gemfile

@@ -13,10 +13,11 @@ gem 'pg'
 
 gem 'bcrypt', '~> 3.1.7'                    # Use ActiveModel has_secure_password
 gem 'devise'                                # Use devise as authentication module
-gem 'devise-jwt', '~> 0.5.8'                # Use JWT token authentication with devise
 gem 'graphql'
+gem 'graphql-auth', git: '[email protected]:simonfranzen/graphql-auth.git', branch: 'rails6'
 gem 'graphql-errors'
 gem 'rack-cors'
+
 # gem 'graphiql-rails', group: :development
 
 # Use Puma as the app server
@@ -65,6 +66,7 @@ group :development do
   gem 'rubocop-performance'                 # speed up rubocop
   gem 'rubocop-rails'                       # rubocop for rails
   gem 'rubocop-rspec'                       # rubocop for rspec
+  gem 'rubocop'                             # rubocop for linting ruby code
   gem 'spring'
   gem 'spring-watcher-listen', '~> 2.0.0'
 end

Gemfile.lock

@@ -1,3 +1,14 @@
+GIT
+  remote: [email protected]:simonfranzen/graphql-auth.git
+  revision: 087b1d8f30052a0b62654e6975e9f8e2b8d8cee7
+  branch: rails6
+  specs:
+    graphql-auth (0.7.1)
+      devise (~> 4.6, >= 4.6.2)
+      graphql (~> 1.9, >= 1.9.6)
+      jwt (~> 2.1)
+      rails (~> 6.0)
+
 GEM
   remote: https://rubygems.org/
   specs:
@@ -72,25 +83,12 @@ GEM
       railties (>= 4.1.0)
       responders
       warden (~> 1.2.3)
-    devise-jwt (0.5.9)
-      devise (~> 4.0)
-      warden-jwt_auth (~> 0.3.6)
     diff-lcs (1.3)
     docile (1.3.2)
     dotenv (2.7.2)
     dotenv-rails (2.7.2)
       dotenv (= 2.7.2)
       railties (>= 3.2, < 6.1)
-    dry-auto_inject (0.6.1)
-      dry-container (>= 0.3.4)
-    dry-configurable (0.8.3)
-      concurrent-ruby (~> 1.0)
-      dry-core (~> 0.4, >= 0.4.7)
-    dry-container (0.7.1)
-      concurrent-ruby (~> 1.0)
-      dry-configurable (~> 0.1, >= 0.1.3)
-    dry-core (0.4.7)
-      concurrent-ruby (~> 1.0)
     equatable (0.6.0)
     erubi (1.9.0)
     factory_bot (5.0.2)
@@ -266,11 +264,6 @@ GEM
     unicode_utils (1.4.0)
     warden (1.2.8)
       rack (>= 2.0.6)
-    warden-jwt_auth (0.3.6)
-      dry-auto_inject (~> 0.6)
-      dry-configurable (~> 0.8)
-      jwt (~> 2.1)
-      warden (~> 1.2)
     websocket-driver (0.7.3)
       websocket-extensions (>= 0.1.0)
     websocket-extensions (0.1.5)
@@ -286,11 +279,11 @@ DEPENDENCIES
   byebug
   database_cleaner (~> 1.6)
   devise
-  devise-jwt (~> 0.5.8)
   dotenv-rails
   factory_bot_rails
   faker (~> 1.8)
   graphql
+  graphql-auth!
   graphql-errors
   listen (>= 3.0.5, < 3.2)
   pg
@@ -299,6 +292,7 @@ DEPENDENCIES
   rails (~> 6.0.3)
   rails-controller-testing
   rspec-rails (~> 3.8)
+  rubocop
   rubocop-performance
   rubocop-rails
   rubocop-rspec

README.md

@@ -63,7 +63,7 @@ The app uses a postgresql database. It implements the connector with the gem `pg
 The app uses [devise](https://github.com/plataformatec/devise)'s logic for authentication. Emails are currently disabled in the environment settings.
 
 ### 3. JSON Web Token
-[devise-jwt](https://github.com/waiting-for-dev/devise-jwt) is a devise extension which uses JWT tokens for user authentication. It follows [secure by default](https://en.wikipedia.org/wiki/Secure_by_default) principle.
+[graphql-auth](https://github.com/o2web/graphql-auth) is a graphql/devise extension which uses JWT tokens for user authentication. It follows [secure by default](https://en.wikipedia.org/wiki/Secure_by_default) principle.
 
 ### 4. GraphQL
 [graphql-ruby](https://github.com/rmosolgo/graphql-ruby) is a Ruby implementation of GraphQL. Sadly it's not 100% open source, but with the free version allows you amazing things to do. See the [Getting Started Guide](https://graphql-ruby.org/) and the current implementations in this project under `app/graphql/`.

app/controllers/graphql_controller.rb

@@ -2,10 +2,11 @@
 
 # GraphQL API entry point
 class GraphqlController < ApplicationController
+  include Graphql::AuthHelper
+
   # Executes the graphql request
   def execute
     query, variables, operation_name = read_query_params()
-    context = set_context()
     result = GraphqlSchema.execute(
       query,
       variables: variables,
@@ -29,13 +30,6 @@ def read_query_params
     ]
   end
 
-  def set_context
-    {
-      current_user: current_user
-      # login: method(:sign_in)
-    }
-  end
-
   # Handle form data, JSON body, or a blank value
   def ensure_hash(ambiguous_param)
     case ambiguous_param