Add authentication

Author: lorensr

src/index.js

@@ -1,4 +1,5 @@
 import { ApolloServer, gql } from 'apollo-server'
+import { getAuthIdFromJWT } from './util/auth'
 
 const reviews = [
   {
@@ -10,9 +11,14 @@ const reviews = [
 const server = new ApolloServer({
   typeDefs: gql`
     type Query {
+      me: User
       hello: String!
       reviews: [Review!]!
     }
+    type User {
+      firstName: String
+      lastName: String
+    }
     type Review {
       text: String!
       stars: Int
@@ -28,6 +34,7 @@ const server = new ApolloServer({
   `,
   resolvers: {
     Query: {
+      me: (_, __, context) => context.user,
       hello: () => '🌍🌏🌎',
       reviews: () => reviews
     },
@@ -43,6 +50,20 @@ const server = new ApolloServer({
         return review
       }
     }
+  },
+  context: async ({ req }) => {
+    const context = {}
+
+    const jwt = req.headers.authorization
+    const authId = await getAuthIdFromJWT(jwt)
+    if (authId === 'github|1615') {
+      context.user = {
+        firstName: 'John',
+        lastName: 'Resig'
+      }
+    }
+
+    return context
   }
 })
 

src/util/auth.js

@@ -0,0 +1,31 @@
+import jwt from 'jsonwebtoken'
+import jwks from 'jwks-rsa'
+import { promisify } from 'util'
+
+const verify = promisify(jwt.verify)
+
+const jwksClient = jwks({
+  cache: true,
+  rateLimit: true,
+  jwksUri: 'https://graphql.auth0.com/.well-known/jwks.json'
+})
+
+const getPublicKey = (header, callback) => {
+  jwksClient.getSigningKey(header.kid, (e, key) => {
+    callback(e, key.publicKey || key.rsaPublicKey)
+  })
+}
+
+export const getAuthIdFromJWT = async token => {
+  if (!token) {
+    return
+  }
+
+  const verifiedToken = await verify(token, getPublicKey, {
+    algorithms: ['RS256'],
+    audience: 'https://api.graphql.guide',
+    issuer: 'https://graphql.auth0.com/'
+  })
+
+  return verifiedToken.sub
+}