ibrain-core 0.1.8 → 0.1.9

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 48487077f193996a5756c2c1e000b4ff5df6bd8e8364b557edcdfc0958a625aa
-  data.tar.gz: ab5e00f8d7c86202c0b13b53d808b26bb9cc60bbd7480e1ee0c012a3e4795df5
+  metadata.gz: 197d83360e5b4281c1580976c1e5fc56617cfbc62cb19771935c4e1d11eded46
+  data.tar.gz: 824c0ca8095c991c4ce31dac6e6fbad27ac48f8ab6855bb4165de78bf9cb7b29
 SHA512:
-  metadata.gz: 869c5f04e5b7dd23aa84c4159909c63c9913e10dc4c3a1c2832d2a566fd8a2f5dfe52f1a10628695f64b6fdbe8a1d7fec955c38511868c592e6b48c99bb3b682
-  data.tar.gz: ccb1c397c1493b1d788af86f3dca9a368150165825e8ed82af04b06b481a96ed66e376ce3c3f53a6ce2a183f2bf80af83446a7b719d7a66b4e5d0a151251a2d5
+  metadata.gz: f17faebbf900b04bbd9deb8ac26ba3a92efe935294a97bdf045f39fbd168d5a5db00638d24b01663124dc710329454453c37631d7983a86b629f48b105daf475
+  data.tar.gz: d91616aa9dc3eba73f3a9a21dba11a5eea20cfec45abc17e0e47e0254678ecf1b7ab5df53e109b49e1502a57eaf889f32a88e4136e2582e997d14b08506d988d

data/app/controllers/concerns/ibrain_handler.rb

@@ -12,6 +12,7 @@ module IbrainHandler
     rescue_from IbrainErrors::UnknownError, with: :bad_request_handler
     rescue_from ActionController::InvalidAuthenticityToken, with: :unauthorized_handler
     rescue_from ActiveSupport::MessageVerifier::InvalidSignature, with: :unauthorized_handler
+    rescue_from GraphQL::ExecutionError, with: :bad_request_handler
   end
 
   private

data/app/controllers/ibrain/core/graphql_controller.rb

@@ -0,0 +1,74 @@
+# frozen_string_literal: true
+
+module Ibrain
+  module Core
+    class GraphqlController < ::Ibrain::BaseController
+      include Devise::Controllers::ScopedViews
+
+      before_action :authenticate_user!, unless: :skip_operations
+      before_action :map_user_class_to_request
+
+      helpers = %w(resource scope_name resource_name signed_in_resource
+                   resource_class resource_params devise_mapping)
+      helper_method(*helpers)
+
+      def execute
+        query, variables, operation_name = normalize_entity
+
+        result = schema.execute(
+          query,
+          variables: variables,
+          context: {
+            session: session,
+            current_user: try_ibrain_current_user,
+            controller: self,
+            request: request
+          },
+          operation_name: operation_name
+        )
+
+        render_json_ok(result['data'], nil, result['errors'])
+      end
+
+      protected
+
+      def normalize_entity
+        query = params[:query]
+        operation_name = params[:operationName]
+        variables = prepare_variables(params[:variables])
+
+        [query, variables, operation_name]
+      end
+
+      # Handle variables in form data, JSON body, or a blank value
+      def prepare_variables(variables_param)
+        case variables_param
+        when String
+          if variables_param.present?
+            JSON.parse(variables_param) || {}
+          else
+            {}
+          end
+        when Hash
+          variables_param
+        when ActionController::Parameters
+          variables_param.to_unsafe_hash # GraphQLRuby will validate name and type of incoming variables.
+        when nil
+          {}
+        else
+          raise ArgumentError, "Unexpected parameter: #{variables_param}"
+        end
+      end
+
+      def schema
+        Ibrain::Config.graphql_schema.safe_constantize
+      end
+
+      def map_user_class_to_request
+        return if request.env['devise.mapping'].present?
+
+        request.env['devise.mapping'] = Ibrain.user_class
+      end
+    end
+  end
+end

data/app/graphql/ibrain/base_schema.rb

@@ -6,7 +6,7 @@ module Ibrain
 
     use GraphQL::Guard.new(
       policy_object: ::Ibrain::Config.graphql_policy.safe_constantize,
-      not_authorized: ->(type, field) { GraphQL::ExecutionError.new("Not authorized to access #{type}.#{field}") }
+      not_authorized: ->(type, field) { raise IbrainErrors::UnknownError.new("Not authorized to access #{type}.#{field}") }
     )
 
     # Union and Interface Resolution

data/app/graphql/ibrain/policies/base_policy.rb

@@ -3,26 +3,32 @@
 module Ibrain
   module Policies
     class BasePolicy
-      IBRAIN_QUERY_RULES = {
-        '*': {
-          guard: ->(_obj, _args, _ctx) { true }
-        }
-      }
-
-      IBRAIN_MUTATION_RULES = {
-        '*': {
-          guard: ->(_obj, _args, ctx) { roles.include?(ctx[:current_user].try(:role)) }
-        }
-      }
-
-      RULES = {
-        'Query' => IBRAIN_QUERY_RULES,
-        'Mutation' => IBRAIN_MUTATION_RULES
-      }.freeze
-
       class << self
+        def query_rules
+          {
+            '*': {
+              guard: ->(_obj, _args, _ctx) { false }
+            }
+          }
+        end
+
+        def mutation_rules
+          {
+            '*': {
+              guard: ->(_obj, _args, _ctx) { false }
+            }
+          }
+        end
+
+        def rules
+          {
+            'Types::QueryType' => query_rules,
+            'Types::MutationType' => mutation_rules
+          }.freeze
+        end
+
         def roles
-          Ibrain::Config.ibrain_roles
+          Ibrain.user_class.roles.keys
         end
 
         def has_permission?(current_user, resource)
@@ -33,11 +39,11 @@ module Ibrain
         end
 
         def guard(type, field)
-          RULES.dig(type.name, field, :guard)
+          rules.dig(type.name, field, :guard)
         end
 
         def not_authorized_handler(type, field)
-          RULES.dig(type, field, :not_authorized) || RULES.dig(type, :*, :not_authorized)
+          rules.dig(type, field, :not_authorized) || rules.dig(type, :*, :not_authorized)
         end
       end
     end

data/config/routes.rb

@@ -1,9 +1,5 @@
 # frozen_string_literal: true
 
 Ibrain::Core::Engine.routes.draw do
-  if ::Ibrain::Config.api_version.blank?
-    post '/api/graphql', to: 'graphql#execute'
-  else
-    post "/api/#{::Ibrain::Config.api_version.downcase}/graphql", controller: 'graphql', action: 'execute'
-  end
+  post "/", controller: 'graphql', action: 'execute'
 end

data/lib/ibrain/core/controller_helpers/response.rb

@@ -16,6 +16,7 @@ module Ibrain
         def render_json_error(error, status)
           e_message = error.try(:record).try(:errors).try(:full_messages).try(:first)
           e_message = error.try(:message) if e_message.blank?
+          e_message = error.try(:details) if e_message.blank?
 
           backtrace = error.try(:backtrace).try(:join, "\n")
 

data/lib/ibrain/core/engine.rb

@@ -5,7 +5,7 @@ require 'ibrain/config'
 module Ibrain
   module Core
     class Engine < ::Rails::Engine
-      isolate_namespace Ibrain
+      isolate_namespace Ibrain::Core
       config.generators.api_only = true
 
       initializer "ibrain.environment", before: :load_config_initializers do |app|

data/lib/ibrain/core/version.rb

@@ -1,14 +1,14 @@
 # frozen_string_literal: true
 
 module Ibrain
-  VERSION = "0.1.8"
+  VERSION = "0.1.9"
 
   def self.ibrain_version
     VERSION
   end
 
   def self.previous_ibrain_minor_version
-    '0.1.7'
+    '0.1.8'
   end
 
   def self.ibrain_gem_version

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: ibrain-core
 version: !ruby/object:Gem::Version
-  version: 0.1.8
+  version: 0.1.9
 platform: ruby
 authors:
 - Tai Nguyen Van
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-01-04 00:00:00.000000000 Z
+date: 2022-01-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activerecord-session_store
@@ -183,7 +183,7 @@ files:
 - app/controllers/concerns/ibrain_errors.rb
 - app/controllers/concerns/ibrain_handler.rb
 - app/controllers/ibrain/base_controller.rb
-- app/controllers/ibrain/graphql_controller.rb
+- app/controllers/ibrain/core/graphql_controller.rb
 - app/graphql/ibrain/base_schema.rb
 - app/graphql/ibrain/extentions/default_value.rb
 - app/graphql/ibrain/interfaces/base_interface.rb

data/app/controllers/ibrain/graphql_controller.rb

@@ -1,72 +0,0 @@
-# frozen_string_literal: true
-
-module Ibrain
-  class GraphqlController < Ibrain::BaseController
-    include Devise::Controllers::ScopedViews
-
-    before_action :authenticate_user!, unless: :skip_operations
-    before_action :map_user_class_to_request
-
-    helpers = %w(resource scope_name resource_name signed_in_resource
-                 resource_class resource_params devise_mapping)
-    helper_method(*helpers)
-
-    def execute
-      query, variables, operation_name = normalize_entity
-
-      result = schema.execute(
-        query,
-        variables: variables,
-        context: {
-          session: session,
-          current_user: try_ibrain_current_user,
-          controller: self,
-          request: request
-        },
-        operation_name: operation_name
-      )
-
-      render_json_ok(result['data'], nil, result['errors'])
-    end
-
-    protected
-
-    def normalize_entity
-      query = params[:query]
-      operation_name = params[:operationName]
-      variables = prepare_variables(params[:variables])
-
-      [query, variables, operation_name]
-    end
-
-    # Handle variables in form data, JSON body, or a blank value
-    def prepare_variables(variables_param)
-      case variables_param
-      when String
-        if variables_param.present?
-          JSON.parse(variables_param) || {}
-        else
-          {}
-        end
-      when Hash
-        variables_param
-      when ActionController::Parameters
-        variables_param.to_unsafe_hash # GraphQLRuby will validate name and type of incoming variables.
-      when nil
-        {}
-      else
-        raise ArgumentError, "Unexpected parameter: #{variables_param}"
-      end
-    end
-
-    def schema
-      Ibrain::Config.graphql_schema.safe_constantize
-    end
-
-    def map_user_class_to_request
-      return if request.env['devise.mapping'].present?
-
-      request.env['devise.mapping'] = Ibrain.user_class
-    end
-  end
-end