Merge pull request 'Integrate GraphQL' (#1) from feature/graphql into feature/auth

Reviewed-on: #1

.gitignore

@@ -54,3 +54,6 @@ pids
 
 # Diagnostic reports (https://nodejs.org/api/report.html)
 report.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json
+
+# Prisma
+*.db

LICENSE

@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright 2024 [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.

nest-cli.json

@@ -4,5 +4,8 @@
 	"sourceRoot": "src",
 	"compilerOptions": {
 		"deleteOutDir": true
+	},
+	"generateOptions": {
+		"spec": false
 	}
 }

package.json

@@ -2,7 +2,7 @@
 	"name": "@toogether/server",
 	"version": "0.0.1",
 	"private": true,
-	"license": "UNLICENSED",
+	"license": "Apache-2.0",
 	"scripts": {
 		"build": "nest build",
 		"format": "prettier --write \"src/**/*.ts\" \"test/**/*.ts\"",
@@ -10,30 +10,35 @@
 		"start:dev": "nest start --watch",
 		"start:debug": "nest start --debug --watch",
 		"start:prod": "node dist/main",
-		"lint": "eslint \"{src,apps,libs,test}/**/*.ts\" --fix"
+		"lint": "eslint \"{src,apps,libs,test}/**/*.ts\" --fix",
+		"preinstall": "node -e \"if(process.env.npm_execpath.indexOf('yarn') === -1) throw new Error('You must use Yarn to install, not NPM')\""
 	},
 	"dependencies": {
 		"@nestjs/common": "^10.0.0",
 		"@nestjs/config": "^3.3.0",
 		"@nestjs/core": "^10.0.0",
+		"@nestjs/graphql": "^12.2.1",
 		"@nestjs/jwt": "^10.2.0",
+		"@nestjs/mercurius": "^12.2.1",
 		"@nestjs/passport": "^10.0.3",
-		"@nestjs/platform-express": "^10.0.0",
+		"@nestjs/platform-fastify": "^10.4.9",
+		"@prisma/client": "5.22.0",
 		"axios": "^1.7.7",
-		"passport": "^0.7.0",
-		"passport-jwt": "^4.0.1",
-		"passport-oauth2": "^1.8.0",
+		"graphql": "^16.9.0",
+		"graphql-subscriptions": "^3.0.0",
+		"graphql-tools": "^9.0.4",
+		"graphql-ws": "^5.16.0",
+		"mercurius": "14",
+		"prisma": "^5.22.0",
 		"reflect-metadata": "^0.2.0",
-		"rxjs": "^7.8.1"
+		"rxjs": "^7.8.1",
+		"subscriptions-transport-ws": "^0.11.0"
 	},
 	"devDependencies": {
 		"@nestjs/cli": "^10.0.0",
 		"@nestjs/schematics": "^10.0.0",
-		"@nestjs/testing": "^10.0.0",
 		"@types/express": "^5.0.0",
 		"@types/node": "^20.3.1",
-		"@types/passport-oauth2": "^1.4.17",
-		"@types/supertest": "^6.0.0",
 		"@typescript-eslint/eslint-plugin": "^8.0.0",
 		"@typescript-eslint/parser": "^8.0.0",
 		"eslint": "^9.0.0",
@@ -41,7 +46,6 @@
 		"eslint-plugin-prettier": "^5.0.0",
 		"prettier": "^3.0.0",
 		"source-map-support": "^0.5.21",
-		"supertest": "^7.0.0",
 		"ts-loader": "^9.4.3",
 		"ts-node": "^10.9.1",
 		"tsconfig-paths": "^4.2.0",

prisma/schema.prisma

@@ -0,0 +1,21 @@
+// This is your Prisma schema file,
+// learn more about it in the docs: https://pris.ly/d/prisma-schema
+
+// Looking for ways to speed up your queries, or scale easily with your serverless or edge functions?
+// Try Prisma Accelerate: https://pris.ly/cli/accelerate-init
+
+generator client {
+    provider = "prisma-client-js"
+}
+
+datasource db {
+    provider = "sqlite"
+    url      = env("DATABASE_URL")
+}
+
+model User {
+    id       String  @id @default(cuid())
+    username String?
+    isAdmin  Boolean @default(false)
+    password String?
+}

src/app.controller.ts

@@ -1,20 +0,0 @@
-import { Controller, Get, UseGuards } from "@nestjs/common";
-
-import { AppService } from "./app.service";
-import { AuthGuard } from "./auth/auth.guard";
-
-@Controller()
-export class AppController {
-	constructor(private readonly appService: AppService) {}
-
-	@Get()
-	getHello() {
-		return this.appService.getHello();
-	}
-
-	@Get("protected")
-	@UseGuards(AuthGuard)
-	getProtectedHello() {
-		return this.appService.getHello();
-	}
-}

src/app.module.ts

@@ -1,10 +1,13 @@
 import { Module } from "@nestjs/common";
 import { ConfigModule } from "@nestjs/config";
 import { JwtModule } from "@nestjs/jwt";
+import { GraphQLModule } from "@nestjs/graphql";
+import { MercuriusDriver, MercuriusDriverConfig } from "@nestjs/mercurius";
 
-import { AppController } from "./app.controller";
 import { AppService } from "./app.service";
-import { AuthModule } from "./auth/auth.module";
+import { UserModule } from "./user/user.module";
+
+import { GraphqlOptions } from "./graphqlOptions";
 
 @Module({
 	imports: [
@@ -15,9 +18,12 @@ import { AuthModule } from "./auth/auth.module";
 			global: true,
 			secret: process.env.JWT_SECRET,
 		}),
-		AuthModule,
+		GraphQLModule.forRootAsync<MercuriusDriverConfig>({
+			driver: MercuriusDriver,
+			useClass: GraphqlOptions,
+		}),
+		UserModule,
 	],
-	controllers: [AppController],
 	providers: [AppService],
 })
 export class AppModule {}

src/auth/auth.guard.ts

@@ -1,35 +0,0 @@
-import {
-	CanActivate,
-	ExecutionContext,
-	Injectable,
-	UnauthorizedException,
-} from "@nestjs/common";
-import { JwtService } from "@nestjs/jwt";
-import { Request } from "express";
-
-@Injectable()
-export class AuthGuard implements CanActivate {
-	constructor(private jwtService: JwtService) {}
-
-	async canActivate(context: ExecutionContext): Promise<boolean> {
-		const request = context.switchToHttp().getRequest();
-		const token = this.extractTokenFromHeader(request);
-		if (!token) {
-			throw new UnauthorizedException();
-		}
-		try {
-			const payload = await this.jwtService.verifyAsync(token, {
-				secret: process.env.JWT_SECRET,
-			});
-			request["user"] = payload;
-		} catch {
-			throw new UnauthorizedException();
-		}
-		return true;
-	}
-
-	private extractTokenFromHeader(request: Request): string | undefined {
-		const [type, token] = request.headers.authorization?.split(" ") ?? [];
-		return type === "Bearer" ? token : undefined;
-	}
-}

src/auth/auth.module.ts

@@ -1,4 +0,0 @@
-import { Module } from '@nestjs/common';
-
-@Module({})
-export class AuthModule {}

src/graphqlOptions.ts

@@ -0,0 +1,46 @@
+import { Injectable, UnauthorizedException } from "@nestjs/common";
+import { GqlOptionsFactory } from "@nestjs/graphql";
+import { JwtService } from "@nestjs/jwt";
+import { MercuriusDriverConfig } from "@nestjs/mercurius";
+
+@Injectable()
+export class GraphqlOptions implements GqlOptionsFactory {
+	constructor(private readonly jwtService: JwtService) {}
+
+	createGqlOptions(): Promise<MercuriusDriverConfig> | MercuriusDriverConfig {
+		return {
+			autoSchemaFile: "src/schema.gql",
+			subscription: {
+				context: (_connection, request) => {
+					const authorization = request.headers.authorization;
+					if (!authorization) throw new UnauthorizedException();
+
+					const token = authorization.split(" ")[1];
+					if (!token) throw new UnauthorizedException();
+
+					try {
+						const user = this.jwtService.verify(token);
+						return { user };
+					} catch (error) {
+						throw new UnauthorizedException();
+					}
+				},
+			},
+			graphiql: false,
+			context: (req) => {
+				const authorization = req.headers.authorization;
+				if (!authorization) throw new UnauthorizedException();
+
+				const token = authorization.split(" ")[1];
+				if (!token) throw new UnauthorizedException();
+
+				try {
+					const user = this.jwtService.verify(token);
+					return { user };
+				} catch (error) {
+					throw new UnauthorizedException();
+				}
+			},
+		};
+	}
+}

src/main.ts

@@ -1,11 +1,17 @@
 import { NestFactory } from "@nestjs/core";
 import { AppModule } from "./app.module";
+import {
+	FastifyAdapter,
+	NestFastifyApplication,
+} from "@nestjs/platform-fastify";
 
 async function bootstrap() {
-	const app = await NestFactory.create(AppModule);
+	const app = await NestFactory.create(AppModule, new FastifyAdapter());
+
 	app.enableCors({
-		origin: "*"
+		origin: "*",
 	});
-	await app.listen(process.env.PORT ?? 3000);
+
+	await app.listen(process.env.PORT ?? 3000, "0.0.0.0");
 }
 bootstrap();

src/prisma.service.ts

@@ -0,0 +1,9 @@
+import { Injectable, OnModuleInit } from "@nestjs/common";
+import { PrismaClient } from "@prisma/client";
+
+@Injectable()
+export class PrismaService extends PrismaClient implements OnModuleInit {
+	async onModuleInit() {
+		await this.$connect();
+	}
+}

src/schema.gql

@@ -0,0 +1,39 @@
+# ------------------------------------------------------
+# THIS FILE WAS AUTOMATICALLY GENERATED (DO NOT MODIFY)
+# ------------------------------------------------------
+
+type User {
+  id: String!
+  username: String!
+  isAdmin: Boolean!
+}
+
+type Query {
+  users: [User!]!
+}
+
+type Mutation {
+  CreateUser(createUserInput: CreateUserInput!): User!
+  updateUser(updateUserInput: UpdateUserInput!): User!
+  setPassword(setUserPasswordInput: SetUserPasswordInput!): User!
+}
+
+input CreateUserInput {
+  username: String!
+  isAdmin: Boolean!
+}
+
+input UpdateUserInput {
+  username: String
+  isAdmin: Boolean
+  id: String!
+}
+
+input SetUserPasswordInput {
+  id: String!
+  password: String!
+}
+
+type Subscription {
+  userAdded: User!
+}

src/user/dto/create-user.input.ts

@@ -0,0 +1,10 @@
+import { Field, InputType } from "@nestjs/graphql";
+
+@InputType()
+export class CreateUserInput {
+	@Field()
+	username: string;
+
+	@Field()
+	isAdmin: boolean;
+}

src/user/dto/setpassword-user.input.ts

@@ -0,0 +1,10 @@
+import { Field, InputType } from "@nestjs/graphql";
+
+@InputType()
+export class SetUserPasswordInput {
+    @Field()
+    id: string;
+
+	@Field()
+	password: string;
+}

src/user/dto/update-user.input.ts

@@ -0,0 +1,11 @@
+import { Field, InputType, PartialType } from "@nestjs/graphql";
+import { CreateUserInput } from "./create-user.input";
+
+@InputType()
+export class UpdateUserInput extends PartialType(CreateUserInput) {
+	@Field()
+	id: string;
+
+	@Field({ nullable: true })
+	username: string;
+}

src/user/user.entity.ts

@@ -0,0 +1,13 @@
+import { Field, ObjectType } from "@nestjs/graphql";
+
+@ObjectType()
+export class User {
+	@Field(() => String)
+	id: string;
+
+	@Field(() => String)
+	username: string;
+
+	@Field(() => Boolean)
+	isAdmin: boolean;
+}

src/user/user.module.ts

@@ -0,0 +1,11 @@
+import { Module } from "@nestjs/common";
+
+import { UserResolver } from "./user.resolver";
+import { UserService } from "./user.service";
+
+import { PrismaService } from "src/prisma.service";
+
+@Module({
+	providers: [UserResolver, UserService, PrismaService]
+})
+export class UserModule {}

src/user/user.resolver.ts

@@ -0,0 +1,56 @@
+import {
+	Args,
+	Mutation,
+	Query,
+	Resolver,
+	Subscription
+} from "@nestjs/graphql";
+
+import { CreateUserInput } from "./dto/create-user.input";
+import { SetUserPasswordInput } from "./dto/setpassword-user.input";
+import { UpdateUserInput } from "./dto/update-user.input";
+import { User } from "./user.entity";
+import { UserService } from "./user.service";
+
+import { PubSub } from "graphql-subscriptions";
+
+const pubSub = new PubSub();
+
+@Resolver(() => User)
+export class UserResolver {
+	constructor(private readonly userService: UserService) {}
+
+	@Subscription(() => User)
+	userAdded() {
+		return pubSub.asyncIterableIterator<User>("userAdded");
+	}
+
+	@Mutation(() => User)
+	async CreateUser(
+		@Args("createUserInput") createUserInput: CreateUserInput,
+	): Promise<User> {
+		const user = await this.userService.create(createUserInput);
+		pubSub.publish("userAdded", { userAdded: user });
+		return user;
+	}
+
+	@Mutation(() => User)
+	async updateUser(
+		@Args("updateUserInput") updateUserInput: UpdateUserInput,
+	) {
+		return await this.userService.update(updateUserInput);
+	}
+
+	@Mutation(() => User)
+	async setPassword(
+		@Args("setUserPasswordInput")
+		setUserPasswordInput: SetUserPasswordInput,
+	) {
+		return await this.userService.setPassword(setUserPasswordInput);
+	}
+
+	@Query(() => [User])
+	async users() {
+		return await this.userService.findAll();
+	}
+}

src/user/user.service.ts

@@ -0,0 +1,48 @@
+import { Injectable } from "@nestjs/common";
+import { PrismaService } from "src/prisma.service";
+import { CreateUserInput } from "./dto/create-user.input";
+import { UpdateUserInput } from "./dto/update-user.input";
+import { SetUserPasswordInput } from "./dto/setpassword-user.input";
+
+@Injectable()
+export class UserService {
+	constructor(private readonly prisma: PrismaService) {}
+
+	async create(createUserInput: CreateUserInput) {
+		return await this.prisma.user.create({
+			data: {
+				username: createUserInput.username,
+				isAdmin: createUserInput.isAdmin,
+			},
+		});
+	}
+
+	async update(updateUserInput: UpdateUserInput) {
+		return await this.prisma.user.update({
+			where: { id: updateUserInput.id },
+			data: {
+				username: updateUserInput.username,
+				isAdmin: updateUserInput.isAdmin,
+			},
+		});
+	}
+
+	async setPassword(setUserPasswordInput: SetUserPasswordInput) {
+		return await this.prisma.user.update({
+			where: { id: setUserPasswordInput.id },
+			data: {
+				password: setUserPasswordInput.password,
+			},
+		});
+	}
+
+	async findAll() {
+		return await this.prisma.user.findMany();
+	}
+
+	async findOne(id: string) {
+		return await this.prisma.user.findUnique({
+			where: { id },
+		});
+	}
+}