Question about authentication for subscriptions using Prisma Prisma #prisma-whats-new

Question about authentication for subscriptions u...

kdn

03/26/2018, 10:42 PM

Question about authentication for subscriptions using Prisma. When I test a subscription using the playground, I send an Authorization header and it comes through but when the same request is sent through apollo on android no header comes through. Has any one had any issues like this or have any insight into what is going on?

😖 1

kdn

03/26/2018, 10:45 PM

This is my

Subscription.js

file

Copy code

const { getUserIdFromAuthorization } = require('../utils')

const Subscription = {
  pendingMessages: {
    subscribe: async (parent, args, ctx, info) => {
      console.log(info)
      console.log("AUTHORIZATION: " + ctx.connection.context.Authorization)
      const userId = getUserIdFromAuthorization(ctx.connection.context.Authorization)
      return ctx.db.subscription.pendingMessage({
        where:{
          mutation_in: ["CREATED", "UPDATED"],
          node: {
            user: {id: userId},
          },
        }
      }, info)
    }
  },

  newMessage: {
    subscribe: async(parent, args, ctx, info) => {
      const userId = getUserIdFromAuthorization(ctx.connection.context.Authorization)
      return ctx.db.subscription.message({
        where:{
          mutation_in: ["CREATED"],
          node:{
            conversation: {
              user: {
                id: userId
              }
            }
          }
        }
      }, info)
    }
  },

}

module.exports = { Subscription }

kdn

03/26/2018, 10:47 PM

index.js

for resolvers

Copy code

const { Query } = require('./Query')
const { auth } = require('./Mutation/auth')
const { messages } = require('./Mutation/messages')
const { conversations } = require('./Mutation/conversations')
const { AuthPayload } = require('./AuthPayload')
const { Subscription } = require('./Subscription')

module.exports = {
  Query,
  Mutation: {
    ...auth,
    ...messages,
    ...conversations,
  },
  Subscription,
  AuthPayload,
}

Daniel K.

03/26/2018, 10:57 PM

subscription go through WebSocket by default, that means there is a single connection at the beginning where you needs to pass the token ... in case you don't have it yet, you have to ensure that connection is not open till you have it or you need to reconnect

Daniel K.

03/26/2018, 10:57 PM

simply said, you cannot change headers for websocket connection

at0mic

03/27/2018, 12:20 AM

Speaking of playground authentication…I’m having issues because my playground App tab won’t let me run a mutation…but I have definitely set

Copy code

disableAuth: true

at0mic

03/27/2018, 12:21 AM

So I can run the mutation directly on the server tab of the playground…but not on the app tab because

Copy code

{
  "data": null,
  "errors": [
    {
      "message": "Not authorized",
      "locations": [
        {
          "line": 2,
          "column": 3
        }
      ],
      "path": [
        "createCountry"
      ]
    }
  ]
}

at0mic

03/27/2018, 12:21 AM

any ideas? 😞

Daniel K.

03/27/2018, 7:06 AM

disableAuth is for DB tab only 🙂 the app tab is completely under your control (it's your code)

kdn

03/28/2018, 11:03 PM

@Daniel K. Makes sense thanks!

Open in Slack

Previous Next