graphQLServer.use(config.path, bodyParser.json(), graphqlExpress(async (req) => {
let options;
let user = null;
if (typeof givenOptions === 'function') {
options = givenOptions(req);
} else {
options = givenOptions;
}
// Merge in the defaults
options = { ...defaultOptions, ...options };
if (options.context) {
// don't mutate the context provided in options
options.context = { ...options.context };
} else {
options.context = {};
}
// Add Optics to GraphQL context object
if (process.env.OPTICS_API_KEY) {
options.context.opticsContext = OpticsAgent.context(req);
}
// Get the token from the header
if (req.headers.authorization) {
const token = req.headers.authorization;
check(token, String);
const hashedToken = Accounts._hashLoginToken(token);
// Get the user from the database
user = await Meteor.users.findOne(
{ 'services.resume.loginTokens.hashedToken': hashedToken },
);
if (user) {
const loginToken = Utils.findWhere(user.services.resume.loginTokens, { hashedToken });
const expiresAt = Accounts._tokenExpiration(loginToken.when);
const isExpired = expiresAt < new Date();
if (!isExpired) {
options.context.userId = user._id;
options.context.currentUser = user;
}
}
}
// merge with custom context
options.context = deepmerge(options.context, GraphQLSchema.context);
// go over context and add Dataloader to each collection
Collections.forEach(collection => {
options.context[collection.options.collectionName].loader = new DataLoader(ids => findByIds(collection, ids, options.context), { cache: true });
});
// add error formatting from apollo-errors
options.formatError = formatError;
return options;
}));
export const getUser = async loginToken => {
if (loginToken) {
check(loginToken, String)
const hashedToken = Accounts._hashLoginToken(loginToken)
const user = await Meteor.users.rawCollection().findOne({
'services.resume.loginTokens.hashedToken': hashedToken
})
if (user) {
// find the right login token corresponding, the current user may have
// several sessions logged on different browsers / computers
const tokenInformation = user.services.resume.loginTokens.find(
tokenInfo => tokenInfo.hashedToken === hashedToken
)
const expiresAt = Accounts._tokenExpiration(tokenInformation.when)
const isExpired = expiresAt < new Date()
if (!isExpired) {
return user
}
}
}
}
graphQLServer.use(config.path, apolloServer(async (req) => {
let options,
user = null;
if (_.isFunction(givenOptions))
options = givenOptions(req);
else
options = givenOptions;
options = options || {};
// Get the token from the header
if (req.headers.authorization) {
const token = req.headers.authorization;
check(token, String);
const hashedToken = Accounts._hashLoginToken(token);
// Get the user from the database
user = await Meteor.users.findOne(
{"services.resume.loginTokens.hashedToken": hashedToken},
{fields: {
_id: 1,
'services.resume.loginTokens.$': 1
}});
if (user) {
const expiresAt = Accounts._tokenExpiration(user.services.resume.loginTokens[0].when);
const isExpired = expiresAt < new Date();
if (!isExpired) {
if (!options.context) {
options.context = {};
}
options.context.userId = user._id;
options.context.user = user;
}
}
} else {
if (options.context) {
delete options.context.user;
}
}
return options;
}));