Home Explore Help
Sign In
efren
/
gql-session
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
gql-session
/
app.js

app.js 2.7 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101 
  1. "use strict";
    2. 

  2. 

  3. require("dotenv").config();
    4. 

  4. 

  5. const cors       = require("cors");
    6. 

  6. const express    = require("express");
    7. 

  7. const helmet     = require("helmet");
    8. 

  8. const http       = require("http");
    9. 

  9. const jwksClient = require("jwks-rsa");
    10. 

  10. const jwt        = require("jsonwebtoken");
    11. 

  11. 

  12. const { MongoClient }                            = require("mongodb");
    13. 

  13. const { ApolloServer, AuthenticationError, gql } = require("apollo-server-express");
    14. 

  14. const { ApolloServerPluginDrainHttpServer }      = require("apollo-server-core");
    15. 

  15. 

  16. const corsOrigins = process.env.APP_CORS_ORIGINS.split(",");
    17. 

  17. 

  18. const app = express();
    19. 

  19. app.enable("trust proxy");
    20. 

  20. app.use(cors({ origin: corsOrigins }));
    21. 

  21. if (app.get("env") === "production") {
    22. 

  22.   app.use(helmet());
    23. 

  23.   app.use(helmet.contentSecurityPolicy());
    24. 

  24. }
    25. 

  25. 

  26. const httpServer = http.createServer(app);
    27. 

  27. 

  28. const typeDefs = gql`
    29. 

  29.   "Party definition."
    30. 

  30.   type Party {
    31. 

  31.     "Unique party identifier"
    32. 

  32.     _id: ID!
    33. 

  33. 

  34.     "Full name, concatenation of first, last, and middle."
    35. 

  35.     name: String!
    36. 

  36. 

  37.     """
    38. 

  38.     Auth0 user identifier.
    39. 

  39.     Application access granted when set.
    40. 

  40.     """
    41. 

  41.     user_id: String
    42. 

  42. 

  43.     "On-boarded in the application?."
    44. 

  44.     onboarded: Boolean!
    45. 

  45.   }
    46. 

  46. 

  47.   "Query definitions."
    48. 

  48.   type Query {
    49. 

  49.     "Get party by identifier."
    50. 

  50.     getParty(_id: ID!): Party!
    51. 

  51.   }
    52. 

  52. `;
    53. 

  53. 

  54. const resolvers = {
    55. 

  55.   Query: {
    56. 

  56.     getParty: async (parent, args, { user, dataSources }) => {
    57. 

  57.       const parties = dataSources.mongodb.collection("parties");
    58. 

  58. 

  59.       const party = await parties.findOne({ _id: args._id });
    60. 

  60. 

  61.       return party;
    62. 

  62.     }
    63. 

  63.   }
    64. 

  64. };
    65. 

  65. 

  66. let client = jwksClient({ jwksUri: `https://${process.env.AUTH0_DOMAIN}/.well-known/jwks.json` });
    67. 

  67. 

  68. const authentication = async context => {
    69. 

  69.   const token = context.req.headers.authorization || "";
    70. 

  70.   if (!token) throw new AuthenticationError("Authentication required");
    71. 

  71. 

  72.   const keys = await client.getSigningKeys();
    73. 

  73. 

  74.   const user = await jwt.verify(token, keys[0].getPublicKey(), { algorithms: [ "RS256" ] });
    75. 

  75.   if (!user.email) throw new AuthenticationError("Wrong token presented");
    76. 

  76. 

  77.   return { user };
    78. 

  78. }
    79. 

  79. 

  80. const mongodb = new MongoClient(process.env.MONGODB_STRING, { useNewUrlParser: true, useUnifiedTopology: true });
    81. 

  81. mongodb.connect();
    82. 

  82. 

  83. const apollo = new ApolloServer({
    84. 

  84.   typeDefs,
    85. 

  85.   resolvers,
    86. 

  86.   dataSources: _ => ({
    87. 

  87.     mongodb: mongodb.db(process.env.MONGODB_DB)
    88. 

  88.   }),
    89. 

  89.   plugin: [ApolloServerPluginDrainHttpServer({ httpServer })],
    90. 

  90.   context: authentication
    91. 

  91. });
    92. 

  92. apollo.start().then(_ => {
    93. 

  93.   apollo.applyMiddleware({ app });
    94. 

  94. 

  95.   app.all("*", (request, response) => response.send(""));
    96. 

  96. 

  97.   httpServer.listen(process.env.APP_PORT);
    98. 

  98. 

  99.   let apolloData = httpServer.address();
    100. 

  100.   console.log(`GraphQL service listening on ${apolloData.address}:${apolloData.port}${apollo.graphqlPath}`);
    101. 

  101. }).catch(error => console.log(error.message));
    102.