camji55 / nexus-plugin-jwt-auth Goto Github PK

Someone opened an issue over here: graphql-nexus/nexus#1013

According to a comment it could be linked to an old version of nexus being used here because TestContextAppCore has changed recently

Hello!

I'm using the version 0.23.0-next.10 of nexus in a yarn workspace and after having installed the plugin I had the following error

       | error  Error: Cannot use GraphQLSchema "[object GraphQLSchema]" from another module or realm.
       |
       |        Ensure that there is only one instance of "graphql" in the node_modules
       |        directory. If different versions of "graphql" are the dependencies of other
       |        relied on modules, use "resolutions" to ensure only one version is installed.
       |
       |        https://yarnpkg.com/en/docs/selective-version-resolutions
       |
       |        Duplicate "graphql" modules cannot be used at the same time since different
       |        versions may have different capabilities and behavior. The data from one
       |        version used in the function from another could produce confusing and
       |        spurious results.
       |            at instanceOf (node_modules/nexus/node_modules/graphql/jsutils/instanceOf.js:28:13)
       |            at isSchema (node_modules/nexus/node_modules/graphql/type/schema.js:36:34)
       |            at assertSchema (node_modules/nexus/node_modules/graphql/type/schema.js:40:8)
       |            at validateSchema (node_modules/nexus/node_modules/graphql/type/validate.js:44:28)
       |            at assertValidSchema (node_modules/nexus/node_modules/graphql/type/validate.js:68:16)
       |            at Object.validate (node_modules/nexus/node_modules/graphql/validation/validate.js:54:35)
       |            at node_modules/nexus/src/runtime/server/handler-graphql.ts:45:30
       |            at process._tickCallback (internal/process/next_tick.js:68:7)

I think the issue might be due to the version of nexus (0.21.0-next.5) in the package.json. I tried to stick my version to 0.21.0-next.5 but was not able to make it work. I'm still not sure about the issue but would it make sense to have nexus as a peer dependency ?

Target

Modify a t.crud createPost operation like so that it automatically connect through the userId the created Post with the User table.

What i did

    t.crud.createOnePOST({
      async resolve(root, args, ctx: NexusContext, info, originalResolve) {
        console.log(JSON.stringify(args))
        const argsw = {
          data: {
            ...args.data,
            user: {
              ...args.data.user,
              connect: {
                ...args?.data?.user?.connect,
                id: ctx!.token!.userId,
              },
            },
          },
        }
        const res = await originalResolve(root, argsw, ctx, info)
        return res
      },
    })

The Functionality is fine, however i get this ugly typescript error as stated in the topic:

Ideas:
I think the error occurs because of the extraction of the token can't be typed?
Maybe a change type with a mapped type or something like this helps out? I'm not a typescript expert through

Thanks for your Help!

Would you accept a PR for a setting to use auth on all routes?

Perhaps using this syntax
use( auth({ appSecret: process.env.TOKEN_SECRET, protectedPaths: true }) );

or

use( auth({ appSecret: process.env.TOKEN_SECRET, protectedPaths: ['Query.*', 'Mutation.*'] }) );

I have the following setup in my app

use(auth({
    appSecret: config.TOKEN_SECRET_KEY,
    protectedPaths
}))

However when calling my Query from a front-end app, I get the following error:

error Error: Network error: Http failure response for http://localhost:4000/graphql: 500 Internal Server Error

In the network tab of the browser i see:
{"errors":[{"message":"jwt malformed"}]}

Notes:

• When making the call, I am not passing any Authorization Bearer token (could this be the reason of the error? if so, how can I make calls to some open queries and mutations without the need of having a user authenticated?)

Thanks!

I believe latest version is 0.16.1

It would be wonderful to have a testing example, as the current nexus-testing docs do not cover more complex examples with authentication.

From image below, the type definition of token is String | null, but when logging the object, it is actually the deserialized object. Is there a way to pass in a type/interface as a part of the setup for type-safety?

I'm not a typescript expert, so I don't know if its possible to stringify an interface/type, but it would be cool if we could pass our own type-string into the token definition.

I am new to contributing to open source projects, but I could implement something if we can come up with a good solution

nexus@next already support subscriptions. Do you plan to support this as well?

It would be good to let the user choose the implementation for his JWT methods (sign, verify etc).
or another lib like jose