@graphql-directive/auth

GraphQL Authorization Directive

A TypeScript/JavaScript library that provides an easy way to add authorization logic to your Node.js GraphQL API using directives.

Motivation

GraphQL Authorization Directive aims to simplify the process of adding authorization to your GraphQL API. By using directives, you can easily apply authorization logic to your schema without having to manually implement complex middleware functions.

Example Usage

import auth from "@graphql-directive/auth"
import { ApolloServer } from "@apollo/server"
import { startStandaloneServer } from "@apollo/server/standalone"
import { makeExecutableSchema } from "@graphql-tools/schema"

const typeDefs = `
    type User {
        name: String!
        email: String!
        role: String @authorize(policy: "admin")
    }
    input UserInput {
        name: String!
        email: String! 
        role: String @authorize(policy: "admin")
    }
    type Query {
        getUsers: [User]!
    }
    type Mutation {
        addUser(user:UserInput!): Boolean!
        modifyUser(user: UserInput!): Boolean!
    }
`

const transform = auth.createTransformer({
    policies: {
        admin: ({ contextValue }) => contextValue.user.role === "admin"
        isLogin: ({ contextValue }) => !!contextValue.user
    }
})

const schema = transform(makeExecutableSchema({
    typeDefs: [auth.typeDefs, typeDefs],
    resolver: {
        Query: { getUsers: () => ([]) },
        Mutation: {
            addUser: () => true,
            modifyUser: ()=> true
        }
    }
}))

const server = new ApolloServer({ schema })
startStandaloneServer(server, { context: async ({ req, res }) => ({}) }).then(x => console.log(x.url))

API Documentation