bunjil.js.org | Getting Started
Bunjil is a public facing GraphQL server.
It comes with Policy Based authorization, and hook for your own authentication (Passport.js, Auth0, database).
It’s purpose is to allow the stitching of one or more private GraphQL Schemas into a public one.
Documentation coming real soon.
yarn add bunjil
npm install bunjil
// Import Bunjil and the Policy Types
import { Bunjil, Policy, PolicyCondition, PolicyEffect } from "bunjil";
// Create a schema
const typeDefs: string = `
type User {
id: ID
name: String
password: String
posts(limit: Int): [Post]
}
type Post {
id: ID
title: String
views: Int
author: User
}
type Query {
author(id: ID): User
topPosts(limit: Int): [Post]
}
`;
// Resolvers are not shown in this example.
const schema = makeExecutableSchema({
typeDefs,
resolvers,
});
// Create a simple policy allowing public access to the data
const policies: Policy[] = [
{
id: "public:read-all",
resources: ["Query::topPosts", "Post::*", "User::*"],
actions: ["query"],
effect: PolicyEffect.Allow,
roles: ["*"],
},
{
// Explicitly deny access to the password field.
// This will superseed any other policy
id: "deny:user::password",
resources: ["User::password"],
actions: ["query"],
effect: PolicyEffect.Deny,
roles: ["*"],
},
];
// Create our bunjil server
const bunjil: Bunjil = new Bunjil({
// Server config
server: {
port: 3000,
tracing: true,
cacheControl: true,
},
// Optionally in DEV you can enable the GraphQL playground
playgroundOptions: {
enabled: false,
},
// Set the endpoints where GraphQL is available at
endpoints: {
graphQL: "/graphql",
subscriptions: "/graphql/subscriptions",
playground: "/playground",
},
policies,
});
// Add our schema to the Bunjil instance
bunjil.addSchema({ schemas: [schema] });
// Now start Bunjil
await bunjil.start();
Use yarn test or npm run test.
Tests are written with ava, and we would strongly like tests with any new functionality.
Please read CONTRIBUTING.md for details on our code of conduct, and the process for submitting pull requests to us.
We use SemVer for versioning. For the versions available, see the tags on this repository.
This project is licensed under the MIT License - see the LICENSE.md file for details
1.0.9 (2018-03-31)
<a name="1.0.8"></a>
FAQs
A GraphQL bastion server
The npm package bunjil receives a total of 0 weekly downloads. As such, bunjil popularity was classified as not popular.
We found that bunjil demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Opengrep continues building momentum with the alpha release of its Playground tool, demonstrating the project's rapid evolution just two months after its initial launch.
Security News
FSF files an amicus brief against Neo4j, defending the AGPL and warning against adding restrictive terms that undermine free software rights.
Research
Security News
Malicious PyPI package ‘set-utils’ steals Ethereum private keys by exfiltrating them through blockchain transactions via the Polygon RPC.