Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/n1ru4l/graphql-public-schema-filter

Filter your GraphQL graph into a subgraph. Code-first & SDL-first!
https://github.com/n1ru4l/graphql-public-schema-filter

access-control api graphql graphql-tools the-guild

Last synced: 11 days ago
JSON representation

Filter your GraphQL graph into a subgraph. Code-first & SDL-first!

Awesome Lists containing this project

README

        

# @n1ru4l/graphql-public-schema-filter

This library allows filtering an existing GraphQL schema down into a subset of the original schema. It supports both the code first development flow of building GraphQL schemas (via GraphQL extension fields) and the SDL first development flow (via schema directives).

The implementation is smart and warns the user if the processed annotations would result in an invalid schema such as:

- Object Type without fields
- Field whose type is not part of the schema

If such a scenario is encountered the implementation will propagate and hide all fields/types that use types that are not marked as public or that would be invalid.

## Why would you need this?

As I have been building GraphQL APIs I often had the need to have both a private and public API.

The private API is used for in-house products. Breaking changes can and will occur. It also includes types and fields specific to in-house application built around the API. The public API, however, is used by individuals not part of our organization. We cannot simply roll out breaking changes on the GraphQL API for those. Furthermore, they should only have access to a subset of the whole GraphQL graph. By generating a subgraph out of the internal graph we can hide stuff, without having to maintain and build two GraphQL schema.

## Install instructions

This library requires `graphql` as a peer dependency and has a runtime dependency on `@graphql-tools/utils`.

```bash
yarn add -E @n1ru4l/graphql-public-schema-filter
```

## Usage Instructions

This library is designed to be inclusive for anyone within the GraphQL.js ecosystem. It supports both the SDL `makeExecutableSchema` and code-first via extension fields flow.

There is no delegation or validation overhead when executing against the newly generated schema. It is highly recommended to built the public schema during server-startup and not on the fly during incoming requests.

### Code-First

Annotate types and fields that should be public with the `isPublic` extension.

```ts
import { GraphQLObjectType, GraphQLString } from "graphql";
import { buildPublicSchema } from "@n1ru4l/graphql-public-schema-filter";

const GraphQLQueryType = new GraphQLObjectType({
name: "Query",
fields: {
hello: {
type: GraphQLString,
resolve: () => "hi",
extensions: {
isPublic: true,
},
},
secret: {
type: GraphQLString,
resolve: () => "sup",
},
},
});

const privateSchema = new GraphQLSchema({
query: GraphQLQueryType,
});
const publicSchema = buildPublicSchema({ schema: privateSchema });
// serve privateSchema or publicSchema based on the request :)
```

You can also find this example within `examples/src/schema.ts`.

### SDL-First

Instead of using the extension fields, we use the `@public` directive.

```tsx
import { makeExecutableSchema } from "@graphql-tools/schema";
import {
publicDirectiveSDL,
buildPublicSchema,
} from "@n1ru4l/graphql-public-schema-filter";

const source = /* GraphQL */ `
type Query {
hello: String @public
secret: String
}
`;

const privateSchema = makeExecutableSchema({
typeDefs: [publicDirectiveSDL, source],
});
const publicSchema = buildPublicSchema({ schema: privateSchema });
// serve privateSchema or publicSchema based on the request :)
```

## FAQ

### Why `isPublic` and `@public` over `isPrivate` and `@private`?

Deny-listing is more prone to errors than allow-listing. By adding a directive/extension field we explicitly set something to public. The other way around it is easier to forgot to add a `@private`/ `isPrivate` annotation, which would automatically result in the new fields being public. Being verbose about what fields are public is the safest way.

### Why is the no more granular control that allows building multiple unique public schemas?

I considered this at the beginning, but in practice we never had a use for this. Having multiple public schemas requires maintaining a lot of documentation. In our use-case we only have a public and a private schema. There is still role based access for the public schema. certain users are not allowed to select specific fields. Instead of hiding those fields for those users we instead deny operations that select fields the users are not allowed to select before even executing it with the [envelop `useOperationFieldPermissions` plugin](https://www.envelop.dev/plugins/use-operation-field-permissions).

You can overwrite the `isPublic` function which is used to determine whether a field or type is public based on directives and extensions. This allows to fully customize the behavior based on your needs.

```ts
type SharedExtensionAndDirectiveInformation = {
extensions?: Maybe<{
[attributeName: string]: any;
}>;
astNode?: Maybe<
Readonly<{
directives?: ReadonlyArray;
}>
>;
};

export const defaultIsPublic = (
input: SharedExtensionAndDirectiveInformation
): boolean =>
input.extensions?.["isPublic"] === true ||
!!input.astNode?.directives?.find(
(directive) => directive.name.value === "public"
);
```

## License

MIT