strapi/packages/plugins/graphql/server/services/content-api/policy.js

'use strict';

const { propOr } = require('lodash/fp');
const { policy: policyUtils } = require('@strapi/utils');
const { PolicyError } = require('@strapi/utils').errors;

const getPoliciesConfig = propOr([], 'policies');

const createPoliciesMiddleware = (resolverConfig, { strapi }) => {
  const resolverPolicies = getPoliciesConfig(resolverConfig);
  const policies = policyUtils.resolve(resolverPolicies);

  return async (resolve, ...rest) => {
    // Create a graphql policy context
    const context = createGraphQLPolicyContext(...rest);

    // Run policies & throw an error if one of them fails
    for (const { handler, config } of policies) {
      const result = await handler(context, config, { strapi });

      if (![true, undefined].includes(result)) {
        throw new PolicyError();
      }
    }

    return resolve(...rest);
  };
};

const createGraphQLPolicyContext = (parent, args, context, info) => {
  return policyUtils.createPolicyContext('graphql', {
    get parent() {
      return parent;
    },

    get args() {
      return args;
    },

    get context() {
      return context;
    },

    get info() {
      return info;
    },

    get state() {
      return this.context.state;
    },

    get http() {
      return this.context.koaContext;
    },
  });
};

module.exports = {
  createPoliciesMiddleware,
};
V4/graphql customization (#10850) * Add basic implementation for the graphql extension service * Add createPolicyContext in @strapi/utils * policiesMiddleware implementation for graphql * wrapResolvers first implementation (authentication, middlewares, policies) * move the content API schema build from /generators to /content-api. Extract types' register functions into a dedicated folder * fix schema generation on bootstrap * update the graphql service file to match new services arch * fix single type queries * simplify entity's resolver * use apollo graphql conventions for resolver's args naming * use the graphql extension system in i18n to add a locale arg to localized queries & mutations 2021-09-01 12:06:51 +02:00			`'use strict';`

Refactor policies to have a consistent factory API like middlewares 2021-11-05 12:19:49 +01:00			`const { propOr } = require('lodash/fp');`
V4/graphql customization (#10850) * Add basic implementation for the graphql extension service * Add createPolicyContext in @strapi/utils * policiesMiddleware implementation for graphql * wrapResolvers first implementation (authentication, middlewares, policies) * move the content API schema build from /generators to /content-api. Extract types' register functions into a dedicated folder * fix schema generation on bootstrap * update the graphql service file to match new services arch * fix single type queries * simplify entity's resolver * use apollo graphql conventions for resolver's args naming * use the graphql extension system in i18n to add a locale arg to localized queries & mutations 2021-09-01 12:06:51 +02:00			`const { policy: policyUtils } = require('@strapi/utils');`
change default policies error Signed-off-by: Derrick Mehaffy <derrickmehaffy@gmail.com> 2022-01-03 06:25:18 -07:00			`const { PolicyError } = require('@strapi/utils').errors;`
V4/graphql customization (#10850) * Add basic implementation for the graphql extension service * Add createPolicyContext in @strapi/utils * policiesMiddleware implementation for graphql * wrapResolvers first implementation (authentication, middlewares, policies) * move the content API schema build from /generators to /content-api. Extract types' register functions into a dedicated folder * fix schema generation on bootstrap * update the graphql service file to match new services arch * fix single type queries * simplify entity's resolver * use apollo graphql conventions for resolver's args naming * use the graphql extension system in i18n to add a locale arg to localized queries & mutations 2021-09-01 12:06:51 +02:00
Refactor policies to have a consistent factory API like middlewares 2021-11-05 12:19:49 +01:00			`const getPoliciesConfig = propOr([], 'policies');`
V4/graphql customization (#10850) * Add basic implementation for the graphql extension service * Add createPolicyContext in @strapi/utils * policiesMiddleware implementation for graphql * wrapResolvers first implementation (authentication, middlewares, policies) * move the content API schema build from /generators to /content-api. Extract types' register functions into a dedicated folder * fix schema generation on bootstrap * update the graphql service file to match new services arch * fix single type queries * simplify entity's resolver * use apollo graphql conventions for resolver's args naming * use the graphql extension system in i18n to add a locale arg to localized queries & mutations 2021-09-01 12:06:51 +02:00
Refactor policies to have a consistent factory API like middlewares 2021-11-05 12:19:49 +01:00			`const createPoliciesMiddleware = (resolverConfig, { strapi }) => {`
			`const resolverPolicies = getPoliciesConfig(resolverConfig);`
			`const policies = policyUtils.resolve(resolverPolicies);`
V4/graphql customization (#10850) * Add basic implementation for the graphql extension service * Add createPolicyContext in @strapi/utils * policiesMiddleware implementation for graphql * wrapResolvers first implementation (authentication, middlewares, policies) * move the content API schema build from /generators to /content-api. Extract types' register functions into a dedicated folder * fix schema generation on bootstrap * update the graphql service file to match new services arch * fix single type queries * simplify entity's resolver * use apollo graphql conventions for resolver's args naming * use the graphql extension system in i18n to add a locale arg to localized queries & mutations 2021-09-01 12:06:51 +02:00
Refactor policies to have a consistent factory API like middlewares 2021-11-05 12:19:49 +01:00			`return async (resolve, ...rest) => {`
V4/graphql customization (#10850) * Add basic implementation for the graphql extension service * Add createPolicyContext in @strapi/utils * policiesMiddleware implementation for graphql * wrapResolvers first implementation (authentication, middlewares, policies) * move the content API schema build from /generators to /content-api. Extract types' register functions into a dedicated folder * fix schema generation on bootstrap * update the graphql service file to match new services arch * fix single type queries * simplify entity's resolver * use apollo graphql conventions for resolver's args naming * use the graphql extension system in i18n to add a locale arg to localized queries & mutations 2021-09-01 12:06:51 +02:00			`// Create a graphql policy context`
			`const context = createGraphQLPolicyContext(...rest);`

			`// Run policies & throw an error if one of them fails`
Refactor policies to have a consistent factory API like middlewares 2021-11-05 12:19:49 +01:00			`for (const { handler, config } of policies) {`
			`const result = await handler(context, config, { strapi });`
V4/graphql customization (#10850) * Add basic implementation for the graphql extension service * Add createPolicyContext in @strapi/utils * policiesMiddleware implementation for graphql * wrapResolvers first implementation (authentication, middlewares, policies) * move the content API schema build from /generators to /content-api. Extract types' register functions into a dedicated folder * fix schema generation on bootstrap * update the graphql service file to match new services arch * fix single type queries * simplify entity's resolver * use apollo graphql conventions for resolver's args naming * use the graphql extension system in i18n to add a locale arg to localized queries & mutations 2021-09-01 12:06:51 +02:00
Harmonize and make policies and middlwares more consistent 2021-10-04 18:16:28 +02:00			`if (![true, undefined].includes(result)) {`
change default policies error Signed-off-by: Derrick Mehaffy <derrickmehaffy@gmail.com> 2022-01-03 06:25:18 -07:00			`throw new PolicyError();`
V4/graphql customization (#10850) * Add basic implementation for the graphql extension service * Add createPolicyContext in @strapi/utils * policiesMiddleware implementation for graphql * wrapResolvers first implementation (authentication, middlewares, policies) * move the content API schema build from /generators to /content-api. Extract types' register functions into a dedicated folder * fix schema generation on bootstrap * update the graphql service file to match new services arch * fix single type queries * simplify entity's resolver * use apollo graphql conventions for resolver's args naming * use the graphql extension system in i18n to add a locale arg to localized queries & mutations 2021-09-01 12:06:51 +02:00			`}`
			`}`

			`return resolve(...rest);`
			`};`
			`};`

			`const createGraphQLPolicyContext = (parent, args, context, info) => {`
			`return policyUtils.createPolicyContext('graphql', {`
			`get parent() {`
			`return parent;`
			`},`

			`get args() {`
			`return args;`
			`},`

			`get context() {`
			`return context;`
			`},`

			`get info() {`
			`return info;`
			`},`

			`get state() {`
			`return this.context.state;`
			`},`

			`get http() {`
			`return this.context.koaContext;`
			`},`
			`});`
			`};`

			`module.exports = {`
			`createPoliciesMiddleware,`
			`};`