@ttoss/graphql-api-server 0.5.0 → 0.5.2

package/README.md

@@ -5,10 +5,10 @@ This package provides a Koa server to run your [`@ttoss/graphql-api` API](https:
 ## Installation
 
 ```bash
-yarn add @ttoss/graphql-api-server @ttoss/graphql-api graphql
+pnpm add @ttoss/graphql-api-server @ttoss/graphql-api graphql
 ```
 
-## Quickstart
+## Getting Started
 
 You can use the `createServer` method to create your server.
 
@@ -60,7 +60,7 @@ server.listen(3000, () => {
 });
 ```
 
-### Middlewares
+## Middlewares
 
 You can add middlewares compatible with [`graphql-middleware`](https://github.com/dimatill/graphql-middleware) to the server using the `middlewares` option.
 
@@ -97,3 +97,61 @@ const server = createServer({
   middlewares: [permissions],
 });
 ```
+
+## Handling Other Routes
+
+If you want to handle other routes than `/graphql`, you can use the `Router` class from `koa` and add it to the server.
+
+### Serving a SPA
+
+```ts
+import { createServer } from '@ttoss/graphql-api-server';
+import { schemaComposer } from './schemaComposer';
+import mount from 'koa-mount';
+import * as path from 'path';
+
+const server = createServer({
+  schemaComposer,
+  graphiql: true,
+});
+
+const APP_DIR = path.resolve(__dirname, '../../app/dist');
+
+server.use(mount('/', serve(APP_DIR)));
+
+/**
+ * Serve a SPA—redirect all requests to index.html
+ * https://dejanvasic.wordpress.com/2020/08/22/serving-react-spa-in-koa/
+ */
+server.use(async (ctx, next) => {
+  return await serve(APP_DIR)(Object.assign(ctx, { path: 'index.html' }), next);
+});
+
+server.listen(3000, () => {
+  console.log('Server listening on port 3000');
+});
+```
+
+### Serving Another Endpoint
+
+```ts
+import { Router, createServer } from '@ttoss/graphql-api-server';
+import { schemaComposer } from './schemaComposer';
+
+const server = createServer({
+  schemaComposer,
+  graphiql: true,
+});
+
+const router = new Router();
+
+router.get('/health', (ctx: any) => {
+  ctx.body = 'OK';
+});
+
+server.use(router.routes()).use(router.allowedMethods());
+
+server.listen(3000, () => {
+  console.log('Server listening on port 3000');
+});
+```

package/dist/esm/index.js

@@ -2,15 +2,23 @@
 
 // src/index.ts
 import { buildSchema } from "@ttoss/graphql-api";
-import { CognitoJwtVerifier } from "aws-jwt-verify";
+import { CognitoJwtVerifier } from "@ttoss/auth-core/amazon-cognito";
 import { createYoga } from "graphql-yoga";
 import Koa from "koa";
+import Router from "@koa/router";
 var createServer = ({
   authenticationType,
   userPoolConfig,
+  graphiql,
   ...buildSchemaInput
 }) => {
   const app = new Koa();
+  const yoga = createYoga({
+    schema: buildSchema(buildSchemaInput),
+    graphiql,
+    landingPage: false,
+    logging: false
+  });
   const jwtVerifier = (() => {
     if (authenticationType === "AMAZON_COGNITO_USER_POOLS") {
       if (!userPoolConfig) {
@@ -23,17 +31,15 @@ var createServer = ({
     }
     return null;
   })();
-  app.use(async ctx => {
-    const request = {
-      body: ctx.request.body,
-      headers: ctx.headers,
-      method: ctx.method,
-      query: ctx.request.query
-    };
-    if (request.method !== "GET" && request.headers.referer !== "http://localhost:4000/graphql") {
+  app.use(async (ctx, next) => {
+    if (ctx.path !== "/graphql") {
+      return next();
+    }
+    const isGraphiqlRequest = ctx.headers.accept?.includes("text/html") && graphiql;
+    if (!isGraphiqlRequest) {
       try {
         if (authenticationType === "AMAZON_COGNITO_USER_POOLS" && jwtVerifier) {
-          const token = request.headers.authorization?.replace("Bearer ", "");
+          const token = ctx.headers.authorization?.replace("Bearer ", "");
           const identity = await jwtVerifier.verify(token || "");
           ctx.identity = identity;
         }
@@ -43,13 +49,6 @@ var createServer = ({
         return;
       }
     }
-    const operationName = request.body;
-    const query = request.headers;
-    const variables = request.method;
-    const yoga = createYoga({
-      schema: buildSchema(buildSchemaInput),
-      logging: false
-    });
     const response = await yoga.handleNodeRequest(ctx.req, ctx);
     ctx.status = response.status;
     for (const [key, value] of response.headers.entries()) {
@@ -61,4 +60,4 @@ var createServer = ({
   });
   return app;
 };
-export { createServer };
+export { Router, createServer };

package/dist/index.d.mts

@@ -1,5 +1,6 @@
 import { BuildSchemaInput } from '@ttoss/graphql-api';
 import Koa from 'koa';
+export { default as Router } from '@koa/router';
 
 type AuthenticationType = 'AMAZON_COGNITO_USER_POOLS';
 type CreateServerInput = {
@@ -11,6 +12,6 @@ type CreateServerInput = {
         clientId: string;
     };
 } & BuildSchemaInput;
-declare const createServer: ({ authenticationType, userPoolConfig, ...buildSchemaInput }: CreateServerInput) => Koa;
+declare const createServer: ({ authenticationType, userPoolConfig, graphiql, ...buildSchemaInput }: CreateServerInput) => Koa;
 
 export { type AuthenticationType, type CreateServerInput, createServer };

package/dist/index.d.ts

@@ -1,5 +1,6 @@
 import { BuildSchemaInput } from '@ttoss/graphql-api';
 import Koa from 'koa';
+export { default as Router } from '@koa/router';
 
 type AuthenticationType = 'AMAZON_COGNITO_USER_POOLS';
 type CreateServerInput = {
@@ -11,6 +12,6 @@ type CreateServerInput = {
         clientId: string;
     };
 } & BuildSchemaInput;
-declare const createServer: ({ authenticationType, userPoolConfig, ...buildSchemaInput }: CreateServerInput) => Koa;
+declare const createServer: ({ authenticationType, userPoolConfig, graphiql, ...buildSchemaInput }: CreateServerInput) => Koa;
 
 export { type AuthenticationType, type CreateServerInput, createServer };

package/dist/index.js

@@ -38,42 +38,49 @@ var __toCommonJS = mod => __copyProps(__defProp({}, "__esModule", {
 // src/index.ts
 var src_exports = {};
 __export(src_exports, {
+  Router: () => import_router.default,
   createServer: () => createServer
 });
 module.exports = __toCommonJS(src_exports);
 var import_graphql_api = require("@ttoss/graphql-api");
-var import_aws_jwt_verify = require("aws-jwt-verify");
+var import_amazon_cognito = require("@ttoss/auth-core/amazon-cognito");
 var import_graphql_yoga = require("graphql-yoga");
 var import_koa = __toESM(require("koa"));
+var import_router = __toESM(require("@koa/router"));
 var createServer = ({
   authenticationType,
   userPoolConfig,
+  graphiql,
   ...buildSchemaInput
 }) => {
   const app = new import_koa.default();
+  const yoga = (0, import_graphql_yoga.createYoga)({
+    schema: (0, import_graphql_api.buildSchema)(buildSchemaInput),
+    graphiql,
+    landingPage: false,
+    logging: false
+  });
   const jwtVerifier = (() => {
     if (authenticationType === "AMAZON_COGNITO_USER_POOLS") {
       if (!userPoolConfig) {
         throw new Error("userPoolConfig is required when using AMAZON_COGNITO_USER_POOLS authenticationType");
       }
-      return import_aws_jwt_verify.CognitoJwtVerifier.create({
+      return import_amazon_cognito.CognitoJwtVerifier.create({
         tokenUse: "access",
         ...userPoolConfig
       });
     }
     return null;
   })();
-  app.use(async ctx => {
-    const request = {
-      body: ctx.request.body,
-      headers: ctx.headers,
-      method: ctx.method,
-      query: ctx.request.query
-    };
-    if (request.method !== "GET" && request.headers.referer !== "http://localhost:4000/graphql") {
+  app.use(async (ctx, next) => {
+    if (ctx.path !== "/graphql") {
+      return next();
+    }
+    const isGraphiqlRequest = ctx.headers.accept?.includes("text/html") && graphiql;
+    if (!isGraphiqlRequest) {
       try {
         if (authenticationType === "AMAZON_COGNITO_USER_POOLS" && jwtVerifier) {
-          const token = request.headers.authorization?.replace("Bearer ", "");
+          const token = ctx.headers.authorization?.replace("Bearer ", "");
           const identity = await jwtVerifier.verify(token || "");
           ctx.identity = identity;
         }
@@ -83,13 +90,6 @@ var createServer = ({
         return;
       }
     }
-    const operationName = request.body;
-    const query = request.headers;
-    const variables = request.method;
-    const yoga = (0, import_graphql_yoga.createYoga)({
-      schema: (0, import_graphql_api.buildSchema)(buildSchemaInput),
-      logging: false
-    });
     const response = await yoga.handleNodeRequest(ctx.req, ctx);
     ctx.status = response.status;
     for (const [key, value] of response.headers.entries()) {
@@ -103,5 +103,6 @@ var createServer = ({
 };
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
+  Router,
   createServer
 });

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@ttoss/graphql-api-server",
-  "version": "0.5.0",
+  "version": "0.5.2",
   "description": "GraphQL API Server",
   "author": "ttoss",
   "contributors": [
@@ -20,27 +20,22 @@
   "sideEffects": false,
   "typings": "dist/index.d.ts",
   "dependencies": {
-    "@koa/cors": "^4.0.0",
     "@koa/router": "^12.0.1",
-    "@types/supertest": "^6.0.2",
-    "aws-jwt-verify": "^4.0.0",
-    "graphql-helix": "^1.13.0",
-    "graphql-yoga": "^5.0.2",
-    "koa": "^2.14.2",
-    "koa-bodyparser": "^4.4.1"
+    "graphql-yoga": "^5.1.1",
+    "koa": "^2.15.0",
+    "@ttoss/auth-core": "^0.0.2"
   },
   "peerDependencies": {
     "graphql": "^16.6.0",
     "@ttoss/graphql-api": "^0.5.0"
   },
   "devDependencies": {
-    "@types/koa": "^2.13.12",
-    "@types/koa__cors": "^4.0.3",
+    "@types/koa": "^2.14.0",
     "@types/koa__router": "^12.0.4",
-    "@types/koa-bodyparser": "^4.3.12",
+    "@types/supertest": "^6.0.2",
     "graphql": "^16.8.1",
     "jest": "^29.7.0",
-    "supertest": "^6.3.3",
+    "supertest": "^6.3.4",
     "tsup": "^8.0.1",
     "@ttoss/config": "^1.31.4",
     "@ttoss/graphql-api": "^0.5.0"

package/src/index.ts

@@ -1,7 +1,10 @@
 import { BuildSchemaInput, buildSchema } from '@ttoss/graphql-api';
-import { CognitoJwtVerifier } from 'aws-jwt-verify';
+import { CognitoJwtVerifier } from '@ttoss/auth-core/amazon-cognito';
 import { createYoga } from 'graphql-yoga';
 import Koa from 'koa';
+import Router from '@koa/router';
+
+export { Router };
 
 export type AuthenticationType = 'AMAZON_COGNITO_USER_POOLS';
 
@@ -18,10 +21,21 @@ export type CreateServerInput = {
 export const createServer = ({
   authenticationType,
   userPoolConfig,
+  graphiql,
   ...buildSchemaInput
 }: CreateServerInput): Koa => {
   const app = new Koa();
 
+  /**
+   * https://the-guild.dev/graphql/yoga-server/docs/integrations/integration-with-koa
+   */
+  const yoga = createYoga<Koa.ParameterizedContext>({
+    schema: buildSchema(buildSchemaInput),
+    graphiql,
+    landingPage: false,
+    logging: false,
+  });
+
   const jwtVerifier = (() => {
     if (authenticationType === 'AMAZON_COGNITO_USER_POOLS') {
       if (!userPoolConfig) {
@@ -38,23 +52,27 @@ export const createServer = ({
     return null;
   })();
 
-  app.use(async (ctx) => {
-    const request = {
-      body: ctx.request.body,
-      headers: ctx.headers,
-      method: ctx.method,
-      query: ctx.request.query,
-    };
+  app.use(async (ctx, next) => {
+    /**
+     * Check if the request is for the GraphQL endpoint.
+     * If not, pass it to the next middleware.
+     */
+    if (ctx.path !== '/graphql') {
+      return next();
+    }
+
+    const isGraphiqlRequest =
+      ctx.headers.accept?.includes('text/html') && graphiql;
 
-    if (
-      request.method !== 'GET' &&
-      request.headers.referer !== 'http://localhost:4000/graphql'
-    ) {
+    /**
+     * If the request is not a GraphiQL request, verify the JWT token, else
+     * set Unauthorized status code and return.
+     */
+    if (!isGraphiqlRequest) {
       try {
         if (authenticationType === 'AMAZON_COGNITO_USER_POOLS' && jwtVerifier) {
-          const token = request.headers.authorization?.replace('Bearer ', '');
+          const token = ctx.headers.authorization?.replace('Bearer ', '');
           const identity = await jwtVerifier.verify(token || '');
-
           ctx.identity = identity;
         }
       } catch {
@@ -64,25 +82,16 @@ export const createServer = ({
       }
     }
 
-    //console.log(ctx.identity);
-    // eslint-disable-next-line @typescript-eslint/no-unused-vars
-    const operationName = request.body;
-    // eslint-disable-next-line @typescript-eslint/no-unused-vars
-    const query = request.headers;
-    // eslint-disable-next-line @typescript-eslint/no-unused-vars
-    const variables = request.method;
-
-    const yoga = createYoga<Koa.ParameterizedContext>({
-      schema: buildSchema(buildSchemaInput),
-      logging: false,
-    });
-
     const response = await yoga.handleNodeRequest(ctx.req, ctx);
 
-    // Set status code
+    /**
+     * Set status code
+     */
     ctx.status = response.status;
 
-    // Set headers
+    /**
+     * Set headers
+     */
     for (const [key, value] of response.headers.entries()) {
       if (ctx.status != 401) {
         ctx.append(key, value);

package/src/indexGraphqlHelix.ts

@@ -1,113 +0,0 @@
-import { type BuildSchemaInput, buildSchema } from '@ttoss/graphql-api';
-import { CognitoJwtVerifier } from 'aws-jwt-verify';
-import {
-  getGraphQLParameters,
-  processRequest,
-  renderGraphiQL,
-  sendResult,
-  shouldRenderGraphiQL,
-} from 'graphql-helix';
-import Koa from 'koa';
-import Router from '@koa/router';
-import bodyParser from 'koa-bodyparser';
-import cors from '@koa/cors';
-
-export { Router };
-
-export type AuthenticationType = 'AMAZON_COGNITO_USER_POOLS';
-
-export type CreateServerInput = {
-  graphiql?: boolean;
-  authenticationType?: AuthenticationType;
-  userPoolConfig?: {
-    userPoolId: string;
-    tokenUse?: 'access' | 'id';
-    clientId: string;
-  };
-} & BuildSchemaInput;
-
-export const createServerNew = ({
-  graphiql = false,
-  authenticationType,
-  userPoolConfig,
-  ...buildSchemaInput
-}: CreateServerInput): Koa => {
-  const server = new Koa();
-
-  const router = new Router();
-
-  /**
-   * Create the verifier outside your route handlers,
-   * so the cache is persisted and can be shared amongst them.
-   */
-  const jwtVerifier = (() => {
-    if (authenticationType === 'AMAZON_COGNITO_USER_POOLS') {
-      if (!userPoolConfig) {
-        throw new Error(
-          'userPoolConfig is required when using AMAZON_COGNITO_USER_POOLS authenticationType'
-        );
-      }
-
-      return CognitoJwtVerifier.create({
-        tokenUse: 'access',
-        ...userPoolConfig,
-      });
-    }
-
-    return null;
-  })();
-
-  router.all('/graphql', async (ctx) => {
-    const request = {
-      body: ctx.request.body,
-      headers: ctx.headers,
-      method: ctx.method,
-      query: ctx.request.query,
-    };
-
-    try {
-      if (authenticationType === 'AMAZON_COGNITO_USER_POOLS' && jwtVerifier) {
-        const token = request.headers.authorization?.replace('Bearer ', '');
-        const identity = await jwtVerifier.verify(token || '');
-        ctx.identity = identity;
-      }
-    } catch {
-      ctx.status = 401;
-      ctx.body = 'Unauthorized';
-      return;
-    }
-
-    if (shouldRenderGraphiQL(request)) {
-      if (graphiql) {
-        ctx.body = renderGraphiQL({});
-      }
-
-      return;
-    }
-
-    const { operationName, query, variables } = getGraphQLParameters(request);
-
-    const result = await processRequest({
-      operationName,
-      query,
-      variables,
-      request,
-      schema: buildSchema(buildSchemaInput),
-      contextFactory: () => {
-        return {
-          identity: ctx.identity,
-        };
-      },
-    });
-
-    sendResult(result, ctx.res);
-  });
-
-  server
-    .use(cors())
-    .use(bodyParser())
-    .use(router.routes())
-    .use(router.allowedMethods());
-
-  return server;
-};

package/src/typings.d.ts

@@ -1 +0,0 @@
-declare module 'graphql-helix';