Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
@aws-cdk/aws-appsync-alpha
Advanced tools
The APIs of higher level constructs in this module are experimental and under active development. They are subject to non-backward compatible changes or removal in any future version. These are not subject to the Semantic Versioning model and breaking changes will be announced in the release notes. This means that while you may use them, you may need to update your source code when upgrading to a newer version of this package.
The @aws-cdk/aws-appsync
package contains constructs for building flexible
APIs that use GraphQL.
import * as appsync from '@aws-cdk/aws-appsync-alpha';
Example of a GraphQL API with AWS_IAM
authorization resolving into a DynamoDb
backend data source.
GraphQL schema file schema.graphql
:
type demo {
id: String!
version: String!
}
type Query {
getDemos: [ demo! ]
}
input DemoInput {
version: String!
}
type Mutation {
addDemo(input: DemoInput!): demo
}
CDK stack file app-stack.ts
:
const api = new appsync.GraphqlApi(this, 'Api', {
name: 'demo',
schema: appsync.Schema.fromAsset(path.join(__dirname, 'schema.graphql')),
authorizationConfig: {
defaultAuthorization: {
authorizationType: appsync.AuthorizationType.IAM,
},
},
xrayEnabled: true,
});
const demoTable = new dynamodb.Table(this, 'DemoTable', {
partitionKey: {
name: 'id',
type: dynamodb.AttributeType.STRING,
},
});
const demoDS = api.addDynamoDbDataSource('demoDataSource', demoTable);
// Resolver for the Query "getDemos" that scans the DynamoDb table and returns the entire list.
// Resolver Mapping Template Reference:
// https://docs.aws.amazon.com/appsync/latest/devguide/resolver-mapping-template-reference-dynamodb.html
demoDS.createResolver({
typeName: 'Query',
fieldName: 'getDemos',
requestMappingTemplate: appsync.MappingTemplate.dynamoDbScanTable(),
responseMappingTemplate: appsync.MappingTemplate.dynamoDbResultList(),
});
// Resolver for the Mutation "addDemo" that puts the item into the DynamoDb table.
demoDS.createResolver({
typeName: 'Mutation',
fieldName: 'addDemo',
requestMappingTemplate: appsync.MappingTemplate.dynamoDbPutItem(
appsync.PrimaryKey.partition('id').auto(),
appsync.Values.projecting('input'),
),
responseMappingTemplate: appsync.MappingTemplate.dynamoDbResultItem(),
});
//To enable DynamoDB read consistency with the `MappingTemplate`:
demoDS.createResolver({
typeName: 'Query',
fieldName: 'getDemosConsistent',
requestMappingTemplate: appsync.MappingTemplate.dynamoDbScanTable(true),
responseMappingTemplate: appsync.MappingTemplate.dynamoDbResultList(),
});
AppSync provides a data source for executing SQL commands against Amazon Aurora Serverless clusters. You can use AppSync resolvers to execute SQL statements against the Data API with GraphQL queries, mutations, and subscriptions.
// Create username and password secret for DB Cluster
const secret = new rds.DatabaseSecret(this, 'AuroraSecret', {
username: 'clusteradmin',
});
// The VPC to place the cluster in
const vpc = new ec2.Vpc(this, 'AuroraVpc');
// Create the serverless cluster, provide all values needed to customise the database.
const cluster = new rds.ServerlessCluster(this, 'AuroraCluster', {
engine: rds.DatabaseClusterEngine.AURORA_MYSQL,
vpc,
credentials: { username: 'clusteradmin' },
clusterIdentifier: 'db-endpoint-test',
defaultDatabaseName: 'demos',
});
// Build a data source for AppSync to access the database.
declare const api: appsync.GraphqlApi;
const rdsDS = api.addRdsDataSource('rds', cluster, secret, 'demos');
// Set up a resolver for an RDS query.
rdsDS.createResolver({
typeName: 'Query',
fieldName: 'getDemosRds',
requestMappingTemplate: appsync.MappingTemplate.fromString(`
{
"version": "2018-05-29",
"statements": [
"SELECT * FROM demos"
]
}
`),
responseMappingTemplate: appsync.MappingTemplate.fromString(`
$utils.toJson($utils.rds.toJsonObject($ctx.result)[0])
`),
});
// Set up a resolver for an RDS mutation.
rdsDS.createResolver({
typeName: 'Mutation',
fieldName: 'addDemoRds',
requestMappingTemplate: appsync.MappingTemplate.fromString(`
{
"version": "2018-05-29",
"statements": [
"INSERT INTO demos VALUES (:id, :version)",
"SELECT * WHERE id = :id"
],
"variableMap": {
":id": $util.toJson($util.autoId()),
":version": $util.toJson($ctx.args.version)
}
}
`),
responseMappingTemplate: appsync.MappingTemplate.fromString(`
$utils.toJson($utils.rds.toJsonObject($ctx.result)[1][0])
`),
});
GraphQL schema file schema.graphql
:
type job {
id: String!
version: String!
}
input DemoInput {
version: String!
}
type Mutation {
callStepFunction(input: DemoInput!): job
}
GraphQL request mapping template request.vtl
:
{
"version": "2018-05-29",
"method": "POST",
"resourcePath": "/",
"params": {
"headers": {
"content-type": "application/x-amz-json-1.0",
"x-amz-target":"AWSStepFunctions.StartExecution"
},
"body": {
"stateMachineArn": "<your step functions arn>",
"input": "{ \"id\": \"$context.arguments.id\" }"
}
}
}
GraphQL response mapping template response.vtl
:
{
"id": "${context.result.id}"
}
CDK stack file app-stack.ts
:
const api = new appsync.GraphqlApi(this, 'api', {
name: 'api',
schema: appsync.Schema.fromAsset(path.join(__dirname, 'schema.graphql')),
});
const httpDs = api.addHttpDataSource(
'ds',
'https://states.amazonaws.com',
{
name: 'httpDsWithStepF',
description: 'from appsync to StepFunctions Workflow',
authorizationConfig: {
signingRegion: 'us-east-1',
signingServiceName: 'states',
}
}
);
httpDs.createResolver({
typeName: 'Mutation',
fieldName: 'callStepFunction',
requestMappingTemplate: appsync.MappingTemplate.fromFile('request.vtl'),
responseMappingTemplate: appsync.MappingTemplate.fromFile('response.vtl'),
});
AppSync has builtin support for Amazon OpenSearch Service (successor to Amazon Elasticsearch Service) from domains that are provisioned through your AWS account. You can use AppSync resolvers to perform GraphQL operations such as queries, mutations, and subscriptions.
import * as opensearch from 'aws-cdk-lib/aws-opensearchservice';
const user = new iam.User(this, 'User');
const domain = new opensearch.Domain(this, 'Domain', {
version: opensearch.EngineVersion.OPENSEARCH_1_3,
removalPolicy: RemovalPolicy.DESTROY,
fineGrainedAccessControl: { masterUserArn: user.userArn },
encryptionAtRest: { enabled: true },
nodeToNodeEncryption: true,
enforceHttps: true,
});
declare const api: appsync.GraphqlApi;
const ds = api.addOpenSearchDataSource('ds', domain);
ds.createResolver({
typeName: 'Query',
fieldName: 'getTests',
requestMappingTemplate: appsync.MappingTemplate.fromString(JSON.stringify({
version: '2017-02-28',
operation: 'GET',
path: '/id/post/_search',
params: {
headers: {},
queryString: {},
body: { from: 0, size: 50 },
},
})),
responseMappingTemplate: appsync.MappingTemplate.fromString(`[
#foreach($entry in $context.result.hits.hits)
#if( $velocityCount > 1 ) , #end
$utils.toJson($entry.get("_source"))
#end
]`),
});
For many use cases you may want to associate a custom domain name with your GraphQL API. This can be done during the API creation.
import * as acm from 'aws-cdk-lib/aws-certificatemanager';
import * as route53 from 'aws-cdk-lib/aws-route53';
const myDomainName = 'api.example.com';
const certificate = new acm.Certificate(this, 'cert', { domainName: myDomainName });
const api = new appsync.GraphqlApi(this, 'api', {
name: 'myApi',
domainName: {
certificate,
domainName: myDomainName,
},
});
// hosted zone and route53 features
declare const hostedZoneId: string;
declare const zoneName = 'example.com';
// hosted zone for adding appsync domain
const zone = route53.HostedZone.fromHostedZoneAttributes(this, `HostedZone`, {
hostedZoneId,
zoneName,
});
// create a cname to the appsync domain. will map to something like xxxx.cloudfront.net
new route53.CnameRecord(this, `CnameApiRecord`, {
recordName: 'api',
zone,
domainName: api.appSyncDomainName,
});
AppSync automatically create a log group with the name /aws/appsync/apis/<graphql_api_id>
upon deployment with
log data set to never expire. If you want to set a different expiration period, use the logConfig.retention
property.
To obtain the GraphQL API's log group as a logs.ILogGroup
use the logGroup
property of the
GraphqlApi
construct.
import * as logs from 'aws-cdk-lib/aws-logs';
const logConfig: appsync.LogConfig = {
retention: logs.RetentionDays.ONE_WEEK,
};
new appsync.GraphqlApi(this, 'api', {
authorizationConfig: {},
name: 'myApi',
schema: appsync.Schema.fromAsset(path.join(__dirname, 'myApi.graphql')),
logConfig,
});
Every GraphQL Api needs a schema to define the Api. CDK offers appsync.Schema
for static convenience methods for various types of schema declaration: code-first
or schema-first.
When declaring your GraphQL Api, CDK defaults to a code-first approach if the
schema
property is not configured.
const api = new appsync.GraphqlApi(this, 'api', { name: 'myApi' });
CDK will declare a Schema
class that will give your Api access functions to
define your schema code-first: addType
, addToSchema
, etc.
You can also declare your Schema
class outside of your CDK stack, to define
your schema externally.
const schema = new appsync.Schema();
schema.addType(new appsync.ObjectType('demo', {
definition: { id: appsync.GraphqlType.id() },
}));
const api = new appsync.GraphqlApi(this, 'api', {
name: 'myApi',
schema,
});
See the code-first schema section for more details.
You can define your GraphQL Schema from a file on disk. For convenience, use
the appsync.Schema.fromAsset
to specify the file representing your schema.
const api = new appsync.GraphqlApi(this, 'api', {
name: 'myApi',
schema: appsync.Schema.fromAsset(path.join(__dirname, 'schema.graphl')),
});
Any GraphQL Api that has been created outside the stack can be imported from
another stack into your CDK app. Utilizing the fromXxx
function, you have
the ability to add data sources and resolvers through a IGraphqlApi
interface.
declare const api: appsync.GraphqlApi;
declare const table: dynamodb.Table;
const importedApi = appsync.GraphqlApi.fromGraphqlApiAttributes(this, 'IApi', {
graphqlApiId: api.apiId,
graphqlApiArn: api.arn,
});
importedApi.addDynamoDbDataSource('TableDataSource', table);
If you don't specify graphqlArn
in fromXxxAttributes
, CDK will autogenerate
the expected arn
for the imported api, given the apiId
. For creating data
sources and resolvers, an apiId
is sufficient.
There are multiple authorization types available for GraphQL API to cater to different access use cases. They are:
AuthorizationType.API_KEY
)AuthorizationType.USER_POOL
)AuthorizationType.OPENID_CONNECT
)AuthorizationType.AWS_IAM
)AuthorizationType.AWS_LAMBDA
)These types can be used simultaneously in a single API, allowing different types of clients to access data. When you specify an authorization type, you can also specify the corresponding authorization mode to finish defining your authorization. For example, this is a GraphQL API with AWS Lambda Authorization.
import * as lambda from 'aws-cdk-lib/aws-lambda';
declare const authFunction: lambda.Function;
new appsync.GraphqlApi(this, 'api', {
name: 'api',
schema: appsync.Schema.fromAsset(path.join(__dirname, 'appsync.test.graphql')),
authorizationConfig: {
defaultAuthorization: {
authorizationType: appsync.AuthorizationType.LAMBDA,
lambdaAuthorizerConfig: {
handler: authFunction,
// can also specify `resultsCacheTtl` and `validationRegex`.
},
},
},
});
When using AWS_IAM
as the authorization type for GraphQL API, an IAM Role
with correct permissions must be used for access to API.
When configuring permissions, you can specify specific resources to only be
accessible by IAM
authorization. For example, if you want to only allow mutability
for IAM
authorized access you would configure the following.
In schema.graphql
:
type Mutation {
updateExample(...): ...
@aws_iam
}
In IAM
:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"appsync:GraphQL"
],
"Resource": [
"arn:aws:appsync:REGION:ACCOUNT_ID:apis/GRAPHQL_ID/types/Mutation/fields/updateExample"
]
}
]
}
See documentation for more details.
To make this easier, CDK provides grant
API.
Use the grant
function for more granular authorization.
const role = new iam.Role(this, 'Role', {
assumedBy: new iam.ServicePrincipal('lambda.amazonaws.com'),
});
declare const api: appsync.GraphqlApi;
api.grant(role, appsync.IamResource.custom('types/Mutation/fields/updateExample'), 'appsync:GraphQL');
In order to use the grant
functions, you need to use the class IamResource
.
IamResource.custom(...arns)
permits custom ARNs and requires an argument.
IamResouce.ofType(type, ...fields)
permits ARNs for types and their fields.
IamResource.all()
permits ALL resources.
Alternatively, you can use more generic grant
functions to accomplish the same usage.
These include:
declare const api: appsync.GraphqlApi;
declare const role: iam.Role;
// For generic types
api.grantMutation(role, 'updateExample');
// For custom types and granular design
api.grant(role, appsync.IamResource.ofType('Mutation', 'updateExample'), 'appsync:GraphQL');
AppSync Functions are local functions that perform certain operations onto a backend data source. Developers can compose operations (Functions) and execute them in sequence with Pipeline Resolvers.
declare const api: appsync.GraphqlApi;
const appsyncFunction = new appsync.AppsyncFunction(this, 'function', {
name: 'appsync_function',
api,
dataSource: api.addNoneDataSource('none'),
requestMappingTemplate: appsync.MappingTemplate.fromFile('request.vtl'),
responseMappingTemplate: appsync.MappingTemplate.fromFile('response.vtl'),
});
AppSync Functions are used in tandem with pipeline resolvers to compose multiple operations.
declare const api: appsync.GraphqlApi;
declare const appsyncFunction: appsync.AppsyncFunction;
const pipelineResolver = new appsync.Resolver(this, 'pipeline', {
api,
dataSource: api.addNoneDataSource('none'),
typeName: 'typeName',
fieldName: 'fieldName',
requestMappingTemplate: appsync.MappingTemplate.fromFile('beforeRequest.vtl'),
pipelineConfig: [appsyncFunction],
responseMappingTemplate: appsync.MappingTemplate.fromFile('afterResponse.vtl'),
});
Learn more about Pipeline Resolvers and AppSync Functions here.
CDK offers the ability to generate your schema in a code-first approach. A code-first approach offers a developer workflow with:
The code-first approach allows for dynamic schema generation. You can generate your schema based on variables and templates to reduce code duplication.
To showcase the code-first approach. Let's try to model the following schema segment.
interface Node {
id: String
}
type Query {
allFilms(after: String, first: Int, before: String, last: Int): FilmConnection
}
type FilmNode implements Node {
filmName: String
}
type FilmConnection {
edges: [FilmEdge]
films: [Film]
totalCount: Int
}
type FilmEdge {
node: Film
cursor: String
}
Above we see a schema that allows for generating paginated responses. For example,
we can query allFilms(first: 100)
since FilmConnection
acts as an intermediary
for holding FilmEdges
we can write a resolver to return the first 100 films.
In a separate file, we can declare our object types and related functions.
We will call this file object-types.ts
and we will have created it in a way that
allows us to generate other XxxConnection
and XxxEdges
in the future.
import * as appsync from '@aws-cdk/aws-appsync-alpha';
const pluralize = require('pluralize');
export const args = {
after: appsync.GraphqlType.string(),
first: appsync.GraphqlType.int(),
before: appsync.GraphqlType.string(),
last: appsync.GraphqlType.int(),
};
export const Node = new appsync.InterfaceType('Node', {
definition: { id: appsync.GraphqlType.string() }
});
export const FilmNode = new appsync.ObjectType('FilmNode', {
interfaceTypes: [Node],
definition: { filmName: appsync.GraphqlType.string() }
});
export function generateEdgeAndConnection(base: appsync.ObjectType) {
const edge = new appsync.ObjectType(`${base.name}Edge`, {
definition: { node: base.attribute(), cursor: appsync.GraphqlType.string() }
});
const connection = new appsync.ObjectType(`${base.name}Connection`, {
definition: {
edges: edge.attribute({ isList: true }),
[pluralize(base.name)]: base.attribute({ isList: true }),
totalCount: appsync.GraphqlType.int(),
}
});
return { edge: edge, connection: connection };
}
Finally, we will go to our cdk-stack
and combine everything together
to generate our schema.
declare const dummyRequest: appsync.MappingTemplate;
declare const dummyResponse: appsync.MappingTemplate;
const api = new appsync.GraphqlApi(this, 'Api', {
name: 'demo',
});
const objectTypes = [ Node, FilmNode ];
const filmConnections = generateEdgeAndConnection(FilmNode);
api.addQuery('allFilms', new appsync.ResolvableField({
returnType: filmConnections.connection.attribute(),
args: args,
dataSource: api.addNoneDataSource('none'),
requestMappingTemplate: dummyRequest,
responseMappingTemplate: dummyResponse,
}));
api.addType(Node);
api.addType(FilmNode);
api.addType(filmConnections.edge);
api.addType(filmConnections.connection);
Notice how we can utilize the generateEdgeAndConnection
function to generate
Object Types. In the future, if we wanted to create more Object Types, we can simply
create the base Object Type (i.e. Film) and from there we can generate its respective
Connections
and Edges
.
Check out a more in-depth example here.
One of the benefits of GraphQL is its strongly typed nature. We define the types within an object, query, mutation, interface, etc. as GraphQL Types.
GraphQL Types are the building blocks of types, whether they are scalar, objects, interfaces, etc. GraphQL Types can be:
demo
from the example above)More concretely, GraphQL Types are simply the types appended to variables.
Referencing the object type Demo
in the previous example, the GraphQL Types
is String!
and is applied to both the names id
and version
.
Directives
are attached to a field or type and affect the execution of queries,
mutations, and types. With AppSync, we use Directives
to configure authorization.
CDK provides static functions to add directives to your Schema.
Directive.iam()
sets a type or field's authorization to be validated through Iam
Directive.apiKey()
sets a type or field's authorization to be validated through a Api Key
Directive.oidc()
sets a type or field's authorization to be validated through OpenID Connect
Directive.cognito(...groups: string[])
sets a type or field's authorization to be validated
through Cognito User Pools
groups
the name of the cognito groups to give accessTo learn more about authorization and directives, read these docs here.
While GraphqlType
is a base implementation for GraphQL fields, we have abstractions
on top of GraphqlType
that provide finer grain support.
Field
extends GraphqlType
and will allow you to define arguments. Interface Types are not resolvable and this class will allow you to define arguments,
but not its resolvers.
For example, if we want to create the following type:
type Node {
test(argument: string): String
}
The CDK code required would be:
const field = new appsync.Field({
returnType: appsync.GraphqlType.string(),
args: {
argument: appsync.GraphqlType.string(),
},
});
const type = new appsync.InterfaceType('Node', {
definition: { test: field },
});
ResolvableField
extends Field
and will allow you to define arguments and its resolvers.
Object Types can have fields that resolve and perform operations on
your backend.
You can also create resolvable fields for object types.
type Info {
node(id: String): String
}
The CDK code required would be:
declare const api: appsync.GraphqlApi;
declare const dummyRequest: appsync.MappingTemplate;
declare const dummyResponse: appsync.MappingTemplate;
const info = new appsync.ObjectType('Info', {
definition: {
node: new appsync.ResolvableField({
returnType: appsync.GraphqlType.string(),
args: {
id: appsync.GraphqlType.string(),
},
dataSource: api.addNoneDataSource('none'),
requestMappingTemplate: dummyRequest,
responseMappingTemplate: dummyResponse,
}),
},
});
To nest resolvers, we can also create top level query types that call upon other types. Building off the previous example, if we want the following graphql type definition:
type Query {
get(argument: string): Info
}
The CDK code required would be:
declare const api: appsync.GraphqlApi;
declare const dummyRequest: appsync.MappingTemplate;
declare const dummyResponse: appsync.MappingTemplate;
const query = new appsync.ObjectType('Query', {
definition: {
get: new appsync.ResolvableField({
returnType: appsync.GraphqlType.string(),
args: {
argument: appsync.GraphqlType.string(),
},
dataSource: api.addNoneDataSource('none'),
requestMappingTemplate: dummyRequest,
responseMappingTemplate: dummyResponse,
}),
},
});
Learn more about fields and resolvers here.
Intermediate Types are defined by Graphql Types and Fields. They have a set of defined fields, where each field corresponds to another type in the system. Intermediate Types will be the meat of your GraphQL Schema as they are the types defined by you.
Intermediate Types include:
Interface Types are abstract types that define the implementation of other intermediate types. They are useful for eliminating duplication and can be used to generate Object Types with less work.
You can create Interface Types externally.
const node = new appsync.InterfaceType('Node', {
definition: {
id: appsync.GraphqlType.string({ isRequired: true }),
},
});
To learn more about Interface Types, read the docs here.
Object Types are types that you declare. For example, in the code-first example
the demo
variable is an Object Type. Object Types are defined by
GraphQL Types and are only usable when linked to a GraphQL Api.
You can create Object Types in two ways:
Object Types can be created externally.
const api = new appsync.GraphqlApi(this, 'Api', {
name: 'demo',
});
const demo = new appsync.ObjectType('Demo', {
definition: {
id: appsync.GraphqlType.string({ isRequired: true }),
version: appsync.GraphqlType.string({ isRequired: true }),
},
});
api.addType(demo);
This method allows for reusability and modularity, ideal for larger projects. For example, imagine moving all Object Type definition outside the stack.
object-types.ts
- a file for object type definitions
import * as appsync from '@aws-cdk/aws-appsync-alpha';
export const demo = new appsync.ObjectType('Demo', {
definition: {
id: appsync.GraphqlType.string({ isRequired: true }),
version: appsync.GraphqlType.string({ isRequired: true }),
},
});
cdk-stack.ts
- a file containing our cdk stack
declare const api: appsync.GraphqlApi;
api.addType(demo);
Object Types can be created externally from an Interface Type.
const node = new appsync.InterfaceType('Node', {
definition: {
id: appsync.GraphqlType.string({ isRequired: true }),
},
});
const demo = new appsync.ObjectType('Demo', {
interfaceTypes: [ node ],
definition: {
version: appsync.GraphqlType.string({ isRequired: true }),
},
});
This method allows for reusability and modularity, ideal for reducing code duplication.
To learn more about Object Types, read the docs here.
Enum Types are a special type of Intermediate Type. They restrict a particular set of allowed values for other Intermediate Types.
enum Episode {
NEWHOPE
EMPIRE
JEDI
}
This means that wherever we use the type Episode in our schema, we expect it to be exactly one of NEWHOPE, EMPIRE, or JEDI.
The above GraphQL Enumeration Type can be expressed in CDK as the following:
declare const api: appsync.GraphqlApi;
const episode = new appsync.EnumType('Episode', {
definition: [
'NEWHOPE',
'EMPIRE',
'JEDI',
],
});
api.addType(episode);
To learn more about Enum Types, read the docs here.
Input Types are special types of Intermediate Types. They give users an easy way to pass complex objects for top level Mutation and Queries.
input Review {
stars: Int!
commentary: String
}
The above GraphQL Input Type can be expressed in CDK as the following:
declare const api: appsync.GraphqlApi;
const review = new appsync.InputType('Review', {
definition: {
stars: appsync.GraphqlType.int({ isRequired: true }),
commentary: appsync.GraphqlType.string(),
},
});
api.addType(review);
To learn more about Input Types, read the docs here.
Union Types are a special type of Intermediate Type. They are similar to Interface Types, but they cannot specify any common fields between types.
Note: the fields of a union type need to be Object Types
. In other words, you
can't create a union type out of interfaces, other unions, or inputs.
union Search = Human | Droid | Starship
The above GraphQL Union Type encompasses the Object Types of Human, Droid and Starship. It can be expressed in CDK as the following:
declare const api: appsync.GraphqlApi;
const string = appsync.GraphqlType.string();
const human = new appsync.ObjectType('Human', { definition: { name: string } });
const droid = new appsync.ObjectType('Droid', { definition: { name: string } });
const starship = new appsync.ObjectType('Starship', { definition: { name: string } }););
const search = new appsync.UnionType('Search', {
definition: [ human, droid, starship ],
});
api.addType(search);
To learn more about Union Types, read the docs here.
Every schema requires a top level Query type. By default, the schema will look
for the Object Type
named Query
. The top level Query
is the only exposed
type that users can access to perform GET
operations on your Api.
To add fields for these queries, we can simply run the addQuery
function to add
to the schema's Query
type.
declare const api: appsync.GraphqlApi;
declare const filmConnection: appsync.InterfaceType;
declare const dummyRequest: appsync.MappingTemplate;
declare const dummyResponse: appsync.MappingTemplate;
const string = appsync.GraphqlType.string();
const int = appsync.GraphqlType.int();
api.addQuery('allFilms', new appsync.ResolvableField({
returnType: filmConnection.attribute(),
args: { after: string, first: int, before: string, last: int},
dataSource: api.addNoneDataSource('none'),
requestMappingTemplate: dummyRequest,
responseMappingTemplate: dummyResponse,
}));
To learn more about top level operations, check out the docs here.
Every schema can have a top level Mutation type. By default, the schema will look
for the ObjectType
named Mutation
. The top level Mutation
Type is the only exposed
type that users can access to perform mutable
operations on your Api.
To add fields for these mutations, we can simply run the addMutation
function to add
to the schema's Mutation
type.
declare const api: appsync.GraphqlApi;
declare const filmNode: appsync.ObjectType;
declare const dummyRequest: appsync.MappingTemplate;
declare const dummyResponse: appsync.MappingTemplate;
const string = appsync.GraphqlType.string();
const int = appsync.GraphqlType.int();
api.addMutation('addFilm', new appsync.ResolvableField({
returnType: filmNode.attribute(),
args: { name: string, film_number: int },
dataSource: api.addNoneDataSource('none'),
requestMappingTemplate: dummyRequest,
responseMappingTemplate: dummyResponse,
}));
To learn more about top level operations, check out the docs here.
Every schema can have a top level Subscription type. The top level Subscription
Type
is the only exposed type that users can access to invoke a response to a mutation. Subscriptions
notify users when a mutation specific mutation is called. This means you can make any data source
real time by specify a GraphQL Schema directive on a mutation.
Note: The AWS AppSync client SDK automatically handles subscription connection management.
To add fields for these subscriptions, we can simply run the addSubscription
function to add
to the schema's Subscription
type.
declare const api: appsync.GraphqlApi;
declare const film: appsync.InterfaceType;
api.addSubscription('addedFilm', new appsync.Field({
returnType: film.attribute(),
args: { id: appsync.GraphqlType.id({ isRequired: true }) },
directives: [appsync.Directive.subscribe('addFilm')],
}));
To learn more about top level operations, check out the docs here.
FAQs
The CDK Construct Library for AWS::AppSync
The npm package @aws-cdk/aws-appsync-alpha receives a total of 24,123 weekly downloads. As such, @aws-cdk/aws-appsync-alpha popularity was classified as popular.
We found that @aws-cdk/aws-appsync-alpha demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.