goldcaddy77
commented
4 years ago Gotcha! So it could be as simple as passing res in context as well?
https://github.com/goldcaddy77/warthog/blob/master/src/core/server.ts#L228
Open FOSSforlife opened 4 years ago
goldcaddy77
commented
4 years ago Gotcha! So it could be as simple as passing res in context as well?
https://github.com/goldcaddy77/warthog/blob/master/src/core/server.ts#L228
goldcaddy77
commented
4 years ago If that’s the case, feel free to open up a PR or I can get to it this week
FOSSforlife
commented
4 years ago Yep! I'll go ahead and attempt implementing it myself :) Hopefully it's as straight forward as it seems.
goldcaddy77
commented
4 years ago Awesome. If you tackle this, let’s keep request there for backwards compatibility and additionally add req and res.
FOSSforlife
commented
4 years ago Right, I forgot that request was named as such here instead of req. In that case, I'll just do request and response if that works with you.
goldcaddy77
commented
4 years ago I’d prefer req and res to indicate they’re the express req and res objects.
FOSSforlife
commented
4 years ago Sorry for not making progress on this yet, I keep getting super wrapped up in work and other priorities. I should have time this weekend, but if anyone else wants to take care of it sooner I'm also fine with that. Otherwise I'll get to it on saturday.
goldcaddy77
commented
4 years ago No worries, I’ll review once I see a PR come through
FOSSforlife
commented
4 years ago Hey @goldcaddy77, sorry for not keeping you posted. I had started to make progress on this, but didn't have anything working. I don't think I'll be able to accomplish this task, as I've got many other things going on and have currently de-prioritized my project which was using Warthog. Hope you understand and sorry to disappoint.
goldcaddy77
commented
4 years ago No worries - I'll take a crack at this when I get through the other items on my list.
I've been attempting to use this tutorial (written using TypeORM and TypeGraphQL) as a guide for setting up authentication. He uses a "refresh token" method which he explains in this video, which is supposed to be more secure than relying just on JWT headers or cookies because it makes use of both.
In his code, he has a login mutation which, upon success, sets a refresh token using Express's
res.cookie(). The problem with implementing this in Warthog is that the login mutation does not have access to theresobject, as Warthog's context object only passes inreq. The only place we can accessres, as @goldcaddy77 has suggested, is inside the onBeforeGraphQLMiddleware and onAfterGraphQLMiddleware hooks. I'm just not sure how to get these hooks to run specifically when a user is logging in, since that's when I need to set the refresh token.I also had the idea of passing
resinto the context object using the onBeforeGraphQLMiddleware hook, so that I could then access it from within GraphQL like the example shows, but this function doesn't seem to have access to the context object.It doesn't seem like I'll be able to replicate the example I was looking at using Warthog, and if that's the case, I'd like to know the best solution for setting cookies inside GraphQL resolvers.