cm-graphql 0.0.11 → 0.0.12

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 804c41716d68195171fa39944aec667186842a7bd72f0fd0e194914a4591a1a8
-  data.tar.gz: 78de5caf228b55e1ac7200d6c50070f2de9973571812e4e97675591a551717a3
+  metadata.gz: 3adaf1303f53f1360bcb8497b025b1960958b8fc285c7abe2a6547a6be56a620
+  data.tar.gz: 857f7282ed8dc874f1f886cba9d93b384cd2be4ee4d4ec84513bf989265f99d1
 SHA512:
-  metadata.gz: f38693d738dd0c880bcd6c526ed04d83976833f66e57a9a30299fb869c4fd702bdad78e5a8d445b9ba64580c64226c57525b6f34afa834435d8f4970dc0703da
-  data.tar.gz: fc3df7c9122c14b27acef4222ba552b846dc8c5d87d9e9360fd317b3f07addb3531f055b52860e51a8524ea5ad0980ba7028f910d4e7a46339df4411aa6a011b
+  metadata.gz: 9f5d3aa1a49d5fc8922a72366a7ba05b2a821cea8c094994aad1bbd205d8a1cdb11dce7ceb7ad0755547629c140753da12b728a5d84f1c5db0b239fb1222d26e
+  data.tar.gz: 70b4a6394d65a12ffd916c1e44f6d1654e40104c7c1ab348a7680c12a3726583bfb49da56d7a9bbe7a062e9542bd32f1a2e0ab200a9dfd442b92af6fe976d89d

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    cm-graphql (0.0.10)
+    cm-graphql (0.0.12)
       graphiql-rails (>= 1.9)
       graphql (>= 2.2.5)
       graphql-rails_logger (>= 1.2.4)

data/app/exceptions/recaptcha_verification_failed.rb

@@ -0,0 +1,17 @@
+class RecaptchaVerificationFailed < BaseException
+  def initialize(message = nil)
+    super(message)
+  end
+
+  def message
+    @message || 'Recaptcha verification failed'
+  end
+
+  def code
+    :unprocessable_entity
+  end
+
+  def sub_code
+    :recaptcha_verification_failed
+  end
+end

data/app/graphql/cm_graphql/extensions/recaptcha_extension.rb

@@ -0,0 +1,35 @@
+module CmGraphql
+  module Extensions
+    class RecaptchaExtension < GraphQL::Schema::FieldExtension
+      def apply
+        if field.resolver
+          field.resolver.argument(:recaptcha_token, String, required: true)
+        else
+          field.argument(:recaptcha_token, String, required: true)
+        end
+      end
+ 
+      def resolve(object:, arguments:, context:)
+        args_hash = arguments.to_h
+        input_hash = args_hash[:input].respond_to?(:to_h) ? args_hash[:input].to_h : nil
+
+        recaptcha_token = input_hash ? input_hash[:recaptcha_token] : args_hash[:recaptcha_token]
+
+        RecaptchaVerifier.verify_v3!(
+          token: recaptcha_token,
+          action: options[:action] || field.name.to_s,
+          remote_ip: context[:request]&.remote_ip,
+          minimum_score: options[:minimum_score] || RECAPTCHA_MINIMUM_SCORE
+        )
+
+        if input_hash
+          next_input = input_hash.dup
+          next_input.delete(:recaptcha_token)
+          yield(object, args_hash.merge(input: next_input))
+        else
+          yield(object, arguments.except(:recaptcha_token))
+        end
+      end
+    end
+  end
+end

data/app/graphql/mutations/base_mutation.rb

@@ -4,5 +4,10 @@ module Mutations
     field_class Types::BaseField
     input_object_class Types::BaseInputObject
     object_class Types::BaseObject
+
+    def resolve(**args)
+      perform(**args)
+    end
+
   end
 end

data/app/services/recaptcha_verifier.rb

@@ -0,0 +1,44 @@
+require 'net/http'
+require 'json'
+
+class RecaptchaVerifier
+  VERIFY_URL = URI.parse('https://www.google.com/recaptcha/api/siteverify').freeze
+
+  def self.verify_v3(token:, action:, remote_ip: nil, minimum_score: 0.5)
+    secret = Rails.application.credentials.dig(:gcp, :recaptcha_secret_key)
+    raise RecaptchaVerificationFailed, "Please cofigure recaptcha credentials, so it reads Rails.application.credentials.dig(:gcp, :recaptcha_secret_key)." if secret.blank? || token.blank?
+
+    response = post_verify(secret:, token:, remote_ip:)
+    raise RecaptchaVerificationFailed, "Invalid response from recaptcha" unless response.is_a?(Hash)
+
+    raise RecaptchaVerificationFailed, "Recaptcha verification failed" unless response['success'] == true
+    raise RecaptchaVerificationFailed, "Recaptcha action mismatch" if response['action'].present? && response['action'] != action
+
+    score = response['score']
+    return true if score.nil?
+
+    score.to_f >= minimum_score.to_f
+  end
+
+  def self.verify_v3!(token:, action:, remote_ip: nil, minimum_score: 0.5)
+    success = verify_v3(token:, action:, remote_ip:, minimum_score:)
+    raise RecaptchaVerificationFailed unless success
+
+    true
+  end
+
+  def self.post_verify(secret:, token:, remote_ip: nil)
+    request = Net::HTTP::Post.new(VERIFY_URL)
+    request.set_form_data({ secret:, response: token }.tap { |h| h[:remoteip] = remote_ip if remote_ip.present? })
+
+    http = Net::HTTP.new(VERIFY_URL.host, VERIFY_URL.port)
+    http.use_ssl = true
+
+    raw_response = http.request(request)
+    JSON.parse(raw_response.body)
+  rescue JSON::ParserError, SocketError, Timeout::Error, Errno::ECONNRESET, Errno::ECONNREFUSED
+    false
+  end
+
+  private_class_method :post_verify
+end

data/cm-graphql.gemspec

@@ -2,13 +2,13 @@
 
 Gem::Specification.new do |spec|
   spec.name          = 'cm-graphql'
-  spec.version       = '0.0.11'
+  spec.version       = '0.0.12'
   spec.date          = '2022-09-14'
   spec.summary       = 'A gem to setup grapqhl basics like pagination, file upload'
   spec.description   = 'A gem to setup grapqhl basics like pagination, file upload'
   spec.authors       = ['Anbazhagan Palani']
   spec.email         = ['anbu@commutatus.com']
-  spec.homepage      = 'https://github.com/commutatus/template-paging-api'
+  spec.homepage      = 'https://github.com/commutatus/cm-graphql'
   spec.license       = 'MIT'
   spec.files         = Dir.chdir(File.expand_path(__dir__)) do
     `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }

data/config/initializers/constants.rb

@@ -1,3 +1,4 @@
 DEFAULT_PER_PAGE = 20
 DEFAULT_SORT_COLUMN = 'created_at'
-DEFAULT_SORT_DIRECTION = 'desc' 
+DEFAULT_SORT_DIRECTION = 'desc'
+RECAPTCHA_MINIMUM_SCORE = 0.5

metadata

@@ -1,10 +1,11 @@
 --- !ruby/object:Gem::Specification
 name: cm-graphql
 version: !ruby/object:Gem::Version
-  version: 0.0.11
+  version: 0.0.12
 platform: ruby
 authors:
 - Anbazhagan Palani
+autorequire:
 bindir: exe
 cert_chain: []
 date: 2022-09-14 00:00:00.000000000 Z
@@ -84,6 +85,8 @@ files:
 - Gemfile.lock
 - README.md
 - app/exceptions/base_exception.rb
+- app/exceptions/recaptcha_verification_failed.rb
+- app/graphql/cm_graphql/extensions/recaptcha_extension.rb
 - app/graphql/mutations/authenticated_mutation.rb
 - app/graphql/mutations/base_mutation.rb
 - app/graphql/queries/base_query.rb
@@ -103,6 +106,7 @@ files:
 - app/models/concerns/attachable.rb
 - app/models/concerns/paginator.rb
 - app/models/filtered_list.rb
+- app/services/recaptcha_verifier.rb
 - cm-graphql.gemspec
 - config/initializers/active_record_extension.rb
 - config/initializers/constants.rb
@@ -115,10 +119,11 @@ files:
 - lib/generators/cm_graphql/templates/list_type.rb
 - lib/generators/cm_graphql/templates/query_type.rb
 - lib/generators/cm_graphql/templates/record_type.rb
-homepage: https://github.com/commutatus/template-paging-api
+homepage: https://github.com/commutatus/cm-graphql
 licenses:
 - MIT
 metadata: {}
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -133,7 +138,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.6.9
+rubygems_version: 3.5.9
+signing_key:
 specification_version: 4
 summary: A gem to setup grapqhl basics like pagination, file upload
 test_files: []