auth has been implemented

Author: rohit-ravikoti

packages/server/package.json

@@ -11,6 +11,8 @@
     "lint": "echo linting disabled"
   },
   "dependencies": {
+    "isomorphic-fetch": "^2.2.1",
+    "jsonwebtoken": "^8.5.1",
     "yoga": "0.0.18"
   },
   "devDependencies": {
@@ -27,4 +29,4 @@
   },
   "license": "MIT",
   "version": "1.0.1"
-}
+}

packages/server/prisma/datamodel.prisma

@@ -1,7 +1,16 @@
 type User {
   id: ID! @unique
-  email: String! @unique
+  createdAt: DateTime!
+  updatedAt: DateTime!
+
   name: String!
+  email: String @unique
+
+  githubHandle: String! @unique
+  githubUserId: String! @unique
+  avatarUrl: String
+  bio: String!
+
   posts: [Post!]!
 }
 

packages/server/src/config.ts

@@ -0,0 +1,21 @@
+export type Config = {
+    github: {
+        CLIENT_ID: string;
+        CLIENT_SECRET: string;
+    },
+    jwt: {
+        SECRET: string
+    }
+};
+// https://github.com/login/oauth/authorize?client_id=Iv1.5345771c55b8eb37&redirect_uri=http://localhost:8000
+const config: Config = {
+    github: {
+        CLIENT_ID: process.env.GQL_GITHUB_CLIENT_ID || "Iv1.5345771c55b8eb37",
+        CLIENT_SECRET: process.env.GQL_GITHUB_CLIENT_SECRET || "19cef65a19b44c2c28e86f3969d83583cf071b02"
+    },
+    jwt: {
+        SECRET: process.env.GQL_JWT_SECRET || "helloworld"
+    }
+}
+
+export default config;

packages/server/src/context.ts

@@ -3,6 +3,7 @@ import { yogaContext } from 'yoga'
 
 export interface Context {
   prisma: Prisma
+  req: Request
 }
 
 export default yogaContext(({ req }) => ({

packages/server/src/github.ts

@@ -0,0 +1,72 @@
+import * as fetch from 'isomorphic-fetch'
+import config from './config';
+
+export interface GithubUser {
+    login: string;
+    id: number;
+    node_id: string;
+    avatar_url: string;
+    gravatar_id: string;
+    url: string;
+    html_url: string;
+    followers_url: string;
+    following_url: string;
+    gists_url: string;
+    starred_url: string;
+    subscriptions_url: string;
+    organizations_url: string;
+    repos_url: string;
+    events_url: string;
+    received_events_url: string;
+    type: string;
+    site_admin: boolean;
+    name: string;
+    company: string;
+    blog: string;
+    location: string;
+    email: string;
+    hireable?: any;
+    bio: string;
+    public_repos: number;
+    public_gists: number;
+    followers: number;
+    following: number;
+    created_at: string;
+    updated_at: string;
+}
+
+export async function getGithubToken(githubCode: string): Promise<string> {
+    const endpoint = 'https://github.com/login/oauth/access_token'
+    const data = await fetch(endpoint, {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/json',
+            'Accept': 'application/json'
+        },
+        body: JSON.stringify({
+            client_id: config.github.CLIENT_ID,
+            client_secret: config.github.CLIENT_SECRET,
+            code: githubCode,
+        })
+    })
+        .then(response => response.json())
+
+    if (data.error) {
+        throw new Error(JSON.stringify(data.error))
+    }
+
+    return data.access_token
+}
+
+
+export async function getGithubUser(githubToken: string): Promise<GithubUser> {
+    const endpoint = `https://api.github.com/user?access_token=${githubToken}`
+    const data = await fetch(endpoint)
+        .then(response => response.json())
+
+    if (data.error) {
+        throw new Error(JSON.stringify(data.error))
+    }
+
+    return data
+}

packages/server/src/graphql/Viewer.ts

@@ -0,0 +1,20 @@
+import { queryField, objectType } from "yoga";
+import { getUserId } from "../utils";
+
+export const Viewer = objectType({
+    name: "Viewer",
+    definition: (t) => {
+        t.field("user", {
+            type: "User",
+            resolve: async (_, args, ctx) => {
+                const id = getUserId(ctx)
+                return await ctx.prisma.user({ id })
+            }
+        })
+    }
+});
+
+export const viewer = queryField("viewer", {
+    type: Viewer,
+    resolve: () => ({})
+})

packages/server/src/graphql/auth.ts

@@ -0,0 +1,58 @@
+import { mutationField, stringArg, objectType } from "yoga";
+import * as jwt from 'jsonwebtoken'
+import { getGithubToken, getGithubUser, GithubUser } from '../github';
+import { Context } from "../context";
+import { User } from "../../.yoga/prisma-client";
+import config from "../config";
+
+export const authenticate = mutationField("authenticate", {
+    type: "AuthenticateUserPayload",
+    nullable: true,
+    args: {
+        githubCode: stringArg({
+            required: true,
+            description: "GitHub OAuth Token from the client."
+        })
+    },
+    resolve: async (_, { githubCode }, ctx) => {
+        const githubToken = await getGithubToken(githubCode)
+        const githubUser = await getGithubUser(githubToken)
+        let user = await getPrismaUser(ctx, githubUser.id.toString())
+
+        if (!user) {
+            user = await createPrismaUser(ctx, githubUser)
+        }
+
+        return {
+            token: jwt.sign({ userId: user.id }, config.jwt.SECRET),
+            user
+        }
+    }
+})
+
+export const AuthenticateUserPayload = objectType({
+    name: "AuthenticateUserPayload",
+    definition: (t) => {
+        t.field("user", {
+            type: "User"
+        })
+        t.string("token")
+    }
+})
+// Helpers -------------------------------------------------------------------
+
+async function getPrismaUser(ctx: Context, githubUserId: string): Promise<User> {
+    return await ctx.prisma.user({ githubUserId })
+}
+
+async function createPrismaUser(ctx: Context, githubUser: GithubUser): Promise<User> {
+    const user = await ctx.prisma.createUser({
+        githubUserId: githubUser.id.toString(),
+        name: githubUser.name,
+        email: githubUser.email,
+        githubHandle: githubUser.login,
+        bio: githubUser.bio,
+        avatarUrl: githubUser.avatar_url
+    })
+    return user
+}

packages/server/src/schema.graphql

@@ -1,8 +1,19 @@
-### This file was autogenerated by Nexus 0.9.17
+### This file was autogenerated by Nexus 0.11.3
 ### Do not make changes to this file directly
 
 
+type AuthenticateUserPayload {
+  token: String!
+  user: User!
+}
+
+scalar DateTime
+
 type Mutation {
+  authenticate(
+    """GitHub OAuth Token from the client."""
+    githubCode: String!
+  ): AuthenticateUserPayload
   createDraft(authorEmail: String!, content: String!, title: String!): Post!
   deletePost(id: ID!): Post
   publish(id: ID!): Post!
@@ -86,17 +97,60 @@ input PostWhereInput {
 type Query {
   feed: [Post!]!
   filterPosts(searchString: String!): [Post!]!
+  viewer: Viewer!
 }
 
 type User {
+  avatarUrl: String
+  bio: String!
+  createdAt: DateTime!
   email: String!
+  githubHandle: String!
+  githubUserId: String!
   id: ID!
   name: String!
   posts(after: String, before: String, first: Int, last: Int, orderBy: PostOrderByInput, skip: Int, where: PostWhereInput): [Post!]
+  updatedAt: DateTime!
 }
 
 input UserWhereInput {
   AND: [UserWhereInput!]
+  avatarUrl: String
+  avatarUrl_contains: String
+  avatarUrl_ends_with: String
+  avatarUrl_gt: String
+  avatarUrl_gte: String
+  avatarUrl_in: [String!]
+  avatarUrl_lt: String
+  avatarUrl_lte: String
+  avatarUrl_not: String
+  avatarUrl_not_contains: String
+  avatarUrl_not_ends_with: String
+  avatarUrl_not_in: [String!]
+  avatarUrl_not_starts_with: String
+  avatarUrl_starts_with: String
+  bio: String
+  bio_contains: String
+  bio_ends_with: String
+  bio_gt: String
+  bio_gte: String
+  bio_in: [String!]
+  bio_lt: String
+  bio_lte: String
+  bio_not: String
+  bio_not_contains: String
+  bio_not_ends_with: String
+  bio_not_in: [String!]
+  bio_not_starts_with: String
+  bio_starts_with: String
+  createdAt: DateTime
+  createdAt_gt: DateTime
+  createdAt_gte: DateTime
+  createdAt_in: [DateTime!]
+  createdAt_lt: DateTime
+  createdAt_lte: DateTime
+  createdAt_not: DateTime
+  createdAt_not_in: [DateTime!]
   email: String
   email_contains: String
   email_ends_with: String
@@ -111,6 +165,34 @@ input UserWhereInput {
   email_not_in: [String!]
   email_not_starts_with: String
   email_starts_with: String
+  githubHandle: String
+  githubHandle_contains: String
+  githubHandle_ends_with: String
+  githubHandle_gt: String
+  githubHandle_gte: String
+  githubHandle_in: [String!]
+  githubHandle_lt: String
+  githubHandle_lte: String
+  githubHandle_not: String
+  githubHandle_not_contains: String
+  githubHandle_not_ends_with: String
+  githubHandle_not_in: [String!]
+  githubHandle_not_starts_with: String
+  githubHandle_starts_with: String
+  githubUserId: String
+  githubUserId_contains: String
+  githubUserId_ends_with: String
+  githubUserId_gt: String
+  githubUserId_gte: String
+  githubUserId_in: [String!]
+  githubUserId_lt: String
+  githubUserId_lte: String
+  githubUserId_not: String
+  githubUserId_not_contains: String
+  githubUserId_not_ends_with: String
+  githubUserId_not_in: [String!]
+  githubUserId_not_starts_with: String
+  githubUserId_starts_with: String
   id: ID
   id_contains: ID
   id_ends_with: ID
@@ -144,4 +226,16 @@ input UserWhereInput {
   posts_every: PostWhereInput
   posts_none: PostWhereInput
   posts_some: PostWhereInput
+  updatedAt: DateTime
+  updatedAt_gt: DateTime
+  updatedAt_gte: DateTime
+  updatedAt_in: [DateTime!]
+  updatedAt_lt: DateTime
+  updatedAt_lte: DateTime
+  updatedAt_not: DateTime
+  updatedAt_not_in: [DateTime!]
+}
+
+type Viewer {
+  user: User!
 }

packages/server/src/utils.ts

@@ -0,0 +1,22 @@
+import * as jwt from 'jsonwebtoken'
+import { Context } from "./context";
+import config from './config';
+
+export function getUserId(ctx: Context) {
+    const Authorization = ctx.req.get('Authorization')
+    if (Authorization) {
+        const token = Authorization.replace('Bearer ', '')
+        const { userId } = jwt.verify(token, config.jwt.SECRET!) as {
+            userId: string
+        }
+        return userId
+    }
+
+    throw new AuthError()
+}
+
+export class AuthError extends Error {
+    constructor() {
+        super('Not authorized')
+    }
+}