stacker.news/pages/api/graphql.js

82 lines
2.7 KiB
JavaScript
Raw Normal View History

import { ApolloServer } from '@apollo/server'
import { startServerAndCreateNextHandler } from '@as-integrations/next'
import resolvers from '@/api/resolvers'
import models from '@/api/models'
import lnd from '@/api/lnd'
import typeDefs from '@/api/typeDefs'
import { getServerSession } from 'next-auth/next'
import { getAuthOptions } from './auth/[...nextauth]'
import search from '@/api/search'
2023-11-21 22:46:03 +00:00
import {
ApolloServerPluginLandingPageLocalDefault,
ApolloServerPluginLandingPageProductionDefault
} from '@apollo/server/plugin/landingPage/default'
2021-03-25 19:29:24 +00:00
2022-04-27 22:06:42 +00:00
const apolloServer = new ApolloServer({
2021-03-25 19:29:24 +00:00
typeDefs,
resolvers,
2023-11-22 15:16:40 +00:00
introspection: true,
2022-04-28 18:11:05 +00:00
plugins: [{
requestDidStart (initialRequestContext) {
return {
2023-07-27 00:18:42 +00:00
executionDidStart () {
2022-04-28 18:11:05 +00:00
return {
willResolveField ({ source, args, context, info }) {
const start = process.hrtime.bigint()
return (error, result) => {
const end = process.hrtime.bigint()
const ms = (end - start) / 1000000n
if (process.env.GRAPHQL_SLOW_LOGS_MS && ms > process.env.GRAPHQL_SLOW_LOGS_MS) {
2022-04-28 18:11:05 +00:00
console.log(`Field ${info.parentType.name}.${info.fieldName} took ${ms}ms`)
}
if (error) {
console.log(`Field ${info.parentType.name}.${info.fieldName} failed with ${error}`)
2022-04-28 18:11:05 +00:00
}
}
2023-07-27 00:18:42 +00:00
},
async executionDidEnd (err) {
if (err) {
console.error('hey bud', err)
}
2022-04-28 18:11:05 +00:00
}
}
}
}
}
2023-11-21 22:46:03 +00:00
},
process.env.NODE_ENV === 'production'
? ApolloServerPluginLandingPageProductionDefault(
{ embed: { endpointIsEditable: false, persistExplorerState: true, displayOptions: { theme: 'dark' } }, footer: false })
: ApolloServerPluginLandingPageLocalDefault(
{ embed: { endpointIsEditable: false, persistExplorerState: true, displayOptions: { theme: 'dark' } }, footer: false })]
})
export default startServerAndCreateNextHandler(apolloServer, {
context: async (req, res) => {
const apiKey = req.headers['x-api-key']
let session
if (apiKey) {
const [user] = await models.$queryRaw`
Store hashed and salted email addresses (#1111) * first pass of hashing user emails * use salt * add a salt to .env.development (prod salt needs to be kept a secret) * move `hashEmail` util to a new util module * trigger a one-time job to migrate existing emails via the worker so we can use the salt from an env var * move newsletter signup move newsletter signup to prisma adapter create user with email code path so we can still auto-enroll email accounts without having to persist the email address in plaintext * remove `email` from api key session lookup query * drop user email index before dropping column * restore email column, just null values instead * fix function name * fix salt and hash raw sql statement * update auth methods email type in typedefs from str to bool * remove todo comment * lowercase email before hashing during migration * check for emailHash and email to accommodate migration window update our lookups to check for a matching emailHash, and then a matching email, in that order, to accommodate the case that a user tries to login via email while the migration is running, and their account has not yet been migrated also update sndev to have a command `./sndev email` to launch the mailhog inbox in your browser also update `./sndev login` to hash the generated email address and insert it into the db record * update sndev help * update awards.csv * update the hack in next-auth to re-use the email supplied on input to `getUserByEmail` * consolidate console.error logs * create generic open command --------- Co-authored-by: Keyan <34140557+huumn@users.noreply.github.com> Co-authored-by: keyan <keyan.kousha+huumn@gmail.com>
2024-05-04 23:06:15 +00:00
SELECT id, name, "apiKeyEnabled"
FROM users
WHERE "apiKeyHash" = encode(digest(${apiKey}, 'sha256'), 'hex')
LIMIT 1`
if (user?.apiKeyEnabled) {
const { apiKeyEnabled, ...sessionFields } = user
session = { user: { ...sessionFields, apiKey: true } }
}
} else {
session = await getServerSession(req, res, getAuthOptions(req))
}
2021-04-12 18:05:09 +00:00
return {
models,
2023-12-14 17:30:51 +00:00
headers: req.headers,
2021-04-29 21:58:43 +00:00
lnd,
2022-04-21 22:50:02 +00:00
me: session
? session.user
2022-04-21 22:50:02 +00:00
: null,
2023-08-17 00:48:45 +00:00
search
2021-04-12 18:05:09 +00:00
}
}
2021-03-25 19:29:24 +00:00
})