Startseite Erkunden Hilfe
Anmelden
efren
/
gql-session
1
0
Fork 0
Dateien Issues 0 Pull-Requests 0 Wiki
Struktur: fe9b4600f4
Branches Tags
gql-session
/
app.js

app.js 1.9 KB
Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 
  1. "use strict";
    2. 

  2. 

  3. require("dotenv").config();
    4. 

  4. 

  5. const cors       = require("cors");
    6. 

  6. const express    = require("express");
    7. 

  7. const helmet     = require("helmet");
    8. 

  8. const http       = require("http");
    9. 

  9. const jwksClient = require("jwks-rsa");
    10. 

  10. const jwt        = require("jsonwebtoken");
    11. 

  11. 

  12. const { ApolloServer, AuthenticationError, gql } = require("apollo-server-express");
    13. 

  13. const { ApolloServerPluginDrainHttpServer }      = require("apollo-server-core");
    14. 

  14. 

  15. const corsOrigins = process.env.APP_CORS_ORIGINS.split(",");
    16. 

  16. 

  17. const app = express();
    18. 

  18. app.enable("trust proxy");
    19. 

  19. app.use(cors({ origin: corsOrigins }));
    20. 

  20. if (app.get("env") === "production") {
    21. 

  21.   app.use(helmet());
    22. 

  22.   app.use(helmet.contentSecurityPolicy());
    23. 

  23. }
    24. 

  24. 

  25. const httpServer = http.createServer(app);
    26. 

  26. 

  27. const typeDefs = gql`
    28. 

  28.   type Hello {
    29. 

  29.     message: String
    30. 

  30.   }
    31. 

  31. 

  32.   type Query {
    33. 

  33.     hello: Hello
    34. 

  34.   }
    35. 

  35. `;
    36. 

  36. 

  37. const resolvers = {
    38. 

  38.   Query: {
    39. 

  39.     hello: _ => ({ message: "Hello World!" })
    40. 

  40.   }
    41. 

  41. };
    42. 

  42. 

  43. let client = jwksClient({ jwksUri: `https://${process.env.AUTH0_DOMAIN}/.well-known/jwks.json` });
    44. 

  44. 

  45. const authentication = async context => {
    46. 

  46.   const token = context.req.headers.authorization || "";
    47. 

  47.   if (!token) throw new AuthenticationError("Authentication required");
    48. 

  48. 

  49.   const keys = await client.getSigningKeys();
    50. 

  50. 

  51.   const user = await jwt.verify(token, keys[0].getPublicKey(), { algorithms: [ "RS256" ] });
    52. 

  52.   if (!user.email) throw new AuthenticationError("Wrong token presented");
    53. 

  53. 

  54.   return { user };
    55. 

  55. }
    56. 

  56. 

  57. const apollo = new ApolloServer({
    58. 

  58.   typeDefs,
    59. 

  59.   resolvers,
    60. 

  60.   plugin: [ApolloServerPluginDrainHttpServer({ httpServer })],
    61. 

  61.   context: authentication
    62. 

  62. });
    63. 

  63. apollo.start().then(_ => {
    64. 

  64.   apollo.applyMiddleware({ app });
    65. 

  65. 

  66.   app.all("*", (request, response) => response.send(""));
    67. 

  67. 

  68.   httpServer.listen(process.env.APP_PORT);
    69. 

  69. 

  70.   let apolloData = httpServer.address();
    71. 

  71.   console.log(`GraphQL service listening on ${apolloData.address}:${apolloData.port}${apollo.graphqlPath}`);
    72. 

  72. }).catch(error => console.log(error.message));
    73.