@neo4j/graphql/dist/translate/authorization/check-authentication.js

A GraphQL to Cypher query execution layer for Neo4j and JavaScript GraphQL implementations

"use strict";
/*
 * Copyright (c) "Neo4j"
 * Neo4j Sweden AB [http://neo4j.com]
 *
 * This file is part of Neo4j.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
Object.defineProperty(exports, "__esModule", { value: true });
exports.isAuthenticated = void 0;
exports.checkAuthentication = checkAuthentication;
exports.checkEntityAuthentication = checkEntityAuthentication;
const apply_authentication_1 = require("./utils/apply-authentication");
function checkAuthentication({ context, node, targetOperations, field, }) {
    const concreteEntities = context.schemaModel.getEntitiesByNameAndLabels(node.name, node.getAllLabels());
    if (concreteEntities.length !== 1) {
        throw new Error("Couldn't match entity");
    }
    const entity = concreteEntities[0];
    return checkEntityAuthentication({
        context,
        entity,
        targetOperations,
        field,
    });
}
function checkEntityAuthentication({ context, entity, targetOperations, field, }) {
    const schemaLevelAnnotation = context.schemaModel.annotations.authentication;
    if (schemaLevelAnnotation) {
        (0, apply_authentication_1.applyAuthentication)({ context, annotation: schemaLevelAnnotation, targetOperations });
    }
    const annotation = field
        ? entity.findAttribute(field)?.annotations.authentication
        : entity.annotations.authentication;
    if (annotation) {
        (0, apply_authentication_1.applyAuthentication)({ context, annotation, targetOperations });
    }
}
const isAuthenticated = (targetOperations, entity) => (next) => (root, args, context, info) => {
    const schemaLevelAnnotation = context.schemaModel.annotations.authentication;
    if (schemaLevelAnnotation) {
        (0, apply_authentication_1.applyAuthentication)({ context, annotation: schemaLevelAnnotation, targetOperations });
    }
    if (entity) {
        const { fieldName } = info;
        const annotation = entity.annotations.authentication ||
            (fieldName && entity.findUserResolvedAttributes(fieldName)?.annotations.authentication);
        if (annotation) {
            (0, apply_authentication_1.applyAuthentication)({ context, annotation, targetOperations });
        }
    }
    return next(root, args, context, info);
};
exports.isAuthenticated = isAuthenticated;
//# sourceMappingURL=check-authentication.js.map