Skip to main content

GraphQL

Schema, Resolvers and Utils for GraphQL server with JSAccounts

Github | npm

The GraphQL Api package does not contain any network interface / rest server (e.g. express or koa). it's just a collection of GraphQL schema, resolvers and utils!

How to use this package?

This package exports GraphQL schema and GraphQL resolvers, which you can extend with your existing GraphQL schema server.

Start by installing it from NPM / Yarn:

// Npm
npm install --save @accounts/server @accounts/graphql-api @graphql-modules/core

// Yarn
yarn add @accounts/server @accounts/graphql-api @graphql-modules/core

This package does not create a transport or anything else, only schema and string and resolvers as object.

Start by configuring your AccountsServer as you wish. For example, using MongoDB:

import mongoose from 'mongoose';
import AccountsServer from '@accounts/server';
import AccountsPassword from '@accounts/password';
import MongoDBInterface from '@accounts/mongo';

const db = mongoose.connection;

const password = new AccountsPassword();

const accountsServer = new AccountsServer(
  {
    db: new MongoDBInterface(db),
    tokenSecret: 'SECRET',
  },
  {
    password,
  }
);

Next, import AccountsModule method from this package, and run it with your AccountsServer:

import { AccountsModule } from '@accounts/graphql-api';

const accountsGraphQL = AccountsModule.forRoot({ accountsServer });

Now, add accountsGraphQL.typeDefs to your schema definition, and extend your resolvers object with accountsGraphQL.resolvers, for example:

import { ApolloServer } from 'apollo-server';
import { mergeResolvers, mergeTypeDefs } from '@graphql-tools/merge';

const typeDefs = `
  type Query {
    myQuery: String
  }

  type Mutation {
    myMutation: String
  }
`;

let myResolvers = {
  Query: {
    myQuery: () => 'Hello',
  },
  Mutation: {
    myMutation: () => 'Hello',
  },
};

const server = new ApolloServer({
  typeDefs: mergeTypeDefs([typeDefs, accountsGraphQL.typeDefs]),
  resolvers: mergeResolvers([accountsGraphQL.resolvers, myResolvers]),
});

The last step is to add to your ApolloServer, the accounts context. It will extract the authentication token from the HTTP request, so that AccountsServer will automatically validate it:

const server = new ApolloServer({
  typeDefs,
  resolvers: mergeResolvers([accountsGraphQL.resolvers, myResolvers]),
  context: (req) => ({
    ...(await accountsGraphQL.context(req)),
    // your context
  }),
});

// The `listen` method launches a web server.
server.listen().then(({ url }) => {
  console.log(`🚀  Server ready at ${url}`);
});

Authenticating Resolvers

You can authenticate your own resolvers with JSAccounts authentication flow, by using authenticated method from this package.

This method composer also extends context with the current authenticated user!

This is an example for a protected mutation:

import AccountsServer from '@accounts/server';
import { authenticated } from '@accounts/graphql-api';

export const resolver = {
  Mutation: {
    updateUserProfile: authenticated(AccountsServer, (rootValue, args, context) => {
      // Write your resolver here
      // context.user - the current authenticated user!
    }),
  },
};

Customization

This package allow you to customize the GraphQL schema and it's resolvers.

For example, some application main query called MyQuery or RootQuery instead of query, so you can customize the name, without modifying you application's schema.

These are the available customizations:

  • rootQueryName (string) - The name of the root query, default: Query.
  • rootMutationName (string) - The name of the root mutation, default: Mutation.
  • extend (boolean) - whether to add extend before the root type declaration, default: true.
  • withSchemaDefinition (boolean): whether to add schema { ... } declaration to the generation schema, default: false.
  • userAsInterface (boolean): whether to expose interface User as interface instead of type User, default: false.

Pass a second object to AccountsModule, for example:

const myCustomGraphQLAccounts = AccountsModule.forRoot({
  accountsServer,
  rootQueryName: 'RootQuery',
  rootMutationName: 'RootMutation',
});

Another possible customization is to modify the name of the authentication header, use it with accountsContext (the default is Authorization):

headerName: 'MyCustomHeader';

Extending User

To extend User object with custom fields and logic, add your own GraphQL type definition of User with the prefix of extend, and add your fields:

extend type User {
  firstName: String
  lastName: String
}

And also implement a regular resolver, for the fields you added:

const UserResolver = {
  firstName: () => 'Dotan',
  lastName: () => 'Simha',
};

Extending User during password creation

To extend the user object during the user creation you need to extend the CreateUserInput type and add your fields:

# mySchema.graphql

extend input CreateUserInput {
  profile: CreateUserProfileInput!
}

input CreateUserProfileInput {
  firstName: String!
  lastName: String!
}

By default accounts-js only allow 'username', 'email' and 'password' for the user. In order to add custom fields you need to pass the validateNewUser function when you instantiate the 'accounts-password' package.

// server.js

const accountsPassword = new AccountsPassword({
  // This option is called when a new user create an account
  // Inside we can apply our logic to validate the user fields
  validateNewUser: (user) => {
    if (user.profile.firstName.length < 2) {
      throw new Error('First name too short');
    }
    return user;
  },
});

The user will be saved in the db with the profile key set.

You can check our examples if you want to try it:

Extending User interface

If you set userAsInterface true, you can have multiple User types those implement same User interface

enum AccountType {
  Principal
  Instructor
  Student
}
type Principal {
  id: ID
  accountType: AccountType
  username: String
  emails: [EmailRecord]
  profile: Profile
}
type Instructor implements User {
  id: ID
  accountType: AccountType
  username: String
  emails: [EmailRecord]
  profile: Profile
  lectures: [Lecture]
  students: [Student]
}
type Student implements User {
  id: ID
  accountType: AccountType
  username: String
  emails: [EmailRecord]
  profile: Profile
  lectures: [Lecture]
  instructors: [Instructor]
}

Examples

Authenticate with a Service

mutation Authenticate {
  authenticate(serviceName: "password", params: { password: "<pw>", user: { email: "<email>" } })
}
  1. serviceName - corresponds to the package you are using to authenticate (e.g. oauth, password, twitter, instagram, two factor, token, etc).
  2. params - These will be different depending on the service you are using.
  • Twitter/Instagram
mutation Authenticate {
  authenticate(
    serviceName: "twitter"
    params: { access_token: "<access-token>", access_token_secret: "<access-token-secret>" }
  )
}
  • OAuth
mutation Authenticate {
  authenticate(serviceName: "oauth", params: { provider: "<your-provider>" })
}
  • Password: Below the user contains email but can contain one or more of id, email or username too.
mutation Authenticate {
  authenticate(serviceName: "password", params: { password: "<pw>", user: { email: "<email>" } })
}
  • Two Factor
mutation Authenticate {
  authenticate(serviceName: "two-factor", params: { code: "<two-factor-code>" })
}
  • Token
mutation Authenticate {
  authenticate(serviceName: "token", params: { token: "<token>" })
}

Verify Authentication

The way to check if a user has been successfully authenticated is identical, with the exception that verifyAuthentication returns a boolean instead of a LoginResult:

mutation Verify {
  verifyAuthentication(
    serviceName: "password"
    params: { password: "<pw>", user: { email: "<email>" } }
  )
}

This will return a result similar to this, if your user has been successfully authenticated:

{
  "data": {
    "verifyAuthentication": true
  }
}

GraphQL Client

Client side graphql transport for accounts suite

Github | npm

Install

yarn add @accounts/graphql-client

Usage

import { ApolloClient } from '@apollo/client';
import { AccountsClient } from '@accounts/client';
import { AccountsClientPassword } from '@accounts/client-password';
import { AccountsGraphQLClient } from '@accounts/graphql-client';

// Create Apollo client
const apolloClient = new ApolloClient({
  // apollo options
});

// Create your transport
const accountsGraphQL = new AccountsGraphQLClient({
  graphQLClient: apolloClient,
  //other options like 'userFieldsFragment'
});

// Create the AccountsClient
const accountsClient = new AccountsClient(
  {
    // accountsClient Options
  },
  accountsGraphQL
);

// Create service client
const passwordClient = new AccountsClientPassword(accountsClient);

Error Handling

The AccountsGraphQLClient will throw errors when the graphql query/mutation returns them. Because there could be multiple GraphQLErrors, these errors will be wrapped into a GraphQLErrorList object.

import { GraphQLErrorList } from '@accounts/graphql-client';

async function registerUser() {
  try {
    passwordClient.createUser({ email: 'foo@foobar.com', password: 'foo' });
  } catch (e) {
    if (e instanceof GraphQLErrorList) {
      // the message will format the errors in a list
      console.log(error.message);
      /* example: 
         GraphQLErrorList - 1 errors in mutation: 
          mutation impersonate($accessToken: String!, $username: String!) {
            impersonate(accessToken: $accessToken, username: $username) {
              authorized
              tokens {
                refreshToken
                accessToken
              }
              user {
                id
                email
                username
              }
            }
          }

              - Cannot query field "email" on type "User". Did you mean "emails"?
      */

      // Alternatively, the list of errors is accessible on the "errors" property
      error.errors.forEach((graphQLError) => console.log(graphQLError));
    }
  }
}

Customising user fragment

For the getUser query and some other mutations the client is requesting some user fields. By default the following fields are selected.

fragment userFields on User {
  id
  emails {
    address
    verified
  }
  username
}

Use the userFieldsFragment option to add your own user fragment:

const accountsGraphQL = new GraphQLClient({
  graphQLClient: apolloClient,
  userFieldsFragment: gql`
    fragment userFields on User {
      id
      emails {
        address
        verified
      }
      # I can add my custom fields here
      firstName
      lastName
    }
  `,
});

In order to send the accounts token on every request sent to your GraphQL server, apollo requires you to implment an apollo-link. This link is usually quite generic when using accounts-js so we've implemented the apollo-link you need and offer it as a utility package.

yarn add @accounts/apollo-link

Hook it up to the apollo client

import { ApolloLink } from '@apollo/client';
import { accountsLink } from '@accounts/apollo-link';

const accountsClient = new AccountsClient( ... );

const authLink = accountsLink(() => accountsClient);

export const apolloClient = new ApolloClient({
  link: ApolloLink.from([authLink, httpLink]),
  cache,
});