UNPKG

@graphql-mesh/plugin-jwt-auth

Version:

graphql-hive/gateway

87 lines (82 loc) 2.96 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
'use strict'; Object.defineProperty(exports, '__esModule', { value: true }); var pluginJwt = require('@graphql-yoga/plugin-jwt'); function useForwardedJWT(config) { const extensionsJwtFieldName = config.extensionsFieldName ?? "jwt"; const extendContextFieldName = config.extendContextFieldName ?? "jwt"; return { onContextBuilding({ context, extendContext }) { if (context.params.extensions?.[extensionsJwtFieldName]) { const jwt = context.params.extensions[extensionsJwtFieldName]; extendContext({ [extendContextFieldName]: jwt }); } } }; } function useJWT(options) { const forwardPayload = options?.forward?.payload ?? true; const forwardToken = options?.forward?.token ?? false; const shouldForward = forwardPayload || forwardToken; const fieldName = options?.forward?.extensionsFieldName ?? "jwt"; return { onPluginInit({ addPlugin }) { const jwtPlugin = pluginJwt.useJWT(options); addPlugin( // @ts-expect-error fix useYogaJWT typings to inherit the context jwtPlugin ); }, // When a subgraph is about to be executed, we check if the initial request has a JWT token // that needs to be passed. At the moment, only GraphQL subgraphs will have the option to forward tokens/payload. // The JWT info will be passed to the subgraph execution request. onSubgraphExecute({ executionRequest, subgraphName, setExecutionRequest, logger }) { if (shouldForward && executionRequest.context?.jwt) { const jwtData = { payload: forwardPayload ? executionRequest.context.jwt.payload : void 0, token: forwardToken ? executionRequest.context.jwt.token : void 0 }; logger?.debug( `Forwarding JWT payload to subgraph ${subgraphName}, payload: `, jwtData.payload ); setExecutionRequest({ ...executionRequest, extensions: { ...executionRequest.extensions, [fieldName]: jwtData } }); } } }; } Object.defineProperty(exports, "createInlineSigningKeyProvider", { enumerable: true, get: function () { return pluginJwt.createInlineSigningKeyProvider; } }); Object.defineProperty(exports, "createRemoteJwksSigningKeyProvider", { enumerable: true, get: function () { return pluginJwt.createRemoteJwksSigningKeyProvider; } }); Object.defineProperty(exports, "extractFromConnectionParams", { enumerable: true, get: function () { return pluginJwt.extractFromConnectionParams; } }); Object.defineProperty(exports, "extractFromCookie", { enumerable: true, get: function () { return pluginJwt.extractFromCookie; } }); Object.defineProperty(exports, "extractFromHeader", { enumerable: true, get: function () { return pluginJwt.extractFromHeader; } }); exports.default = useJWT; exports.useForwardedJWT = useForwardedJWT; exports.useJWT = useJWT;