如何在 ApolloServer 中获取 req.user
How to get req.user in ApolloServer
我应该怎么做才能获得 req.user 和 req.logout 以及在 ApolloServer 上下文中在护照中间件中创建的所有请求。就像我可以在
中访问它一样
app.get('/good', isLoggedIn, (req, res) => res.send(req.user));
我使用 cookie-session、paspport、passport-google-oauth20、express、apollo-server、express 和 cors 包
app.use(
cors({
origin: "http://localhost:3000",
credentials: true
})
);
app.use(cookieSession({
name: 'session',
keys: ['key1', 'key2']
}))
app.use(passport.initialize());
app.use(passport.session());
app.get('/auth/google', passport.authenticate('google', { scope: ['profile','email'] }));
app.get('/auth/google/callback', passport.authenticate('google', {
successRedirect: '/good',
failureRedirect: '/fail',
}));
app.get('/good', (req, res) => res.send(req.user));
// route for logging out
app.get('/logout', (req, res) => {
req.session = null;
req.logout();
res.redirect('/');
});
// Connect to Mongo(skipped)
const { ApolloServer } = require('apollo-server-express');
const typeDefs = require('./modules/graphqlschemas/index');
const resolvers = require('./modules/resolvers/index');
// #5 Initialize an Apollo server
const server = new ApolloServer({
typeDefs: typeDefs,
resolvers: resolvers,
context: ({ req }) => ({
getUser: () => {
console.log(req.user); // ! undefined !
},
logout: () => req.logout() // ! header not sent to the client error !
})
});
这是我的 googleAuth 文件:
const GoogleStrategy = require('passport-google-oauth20').Strategy
const passport = require('passport');
const User = require('../models/user');
passport.serializeUser((user, done) => {
done(null, user.id)
})
passport.deserializeUser((id, done) => {
User.findById(id, (err, user) => done(err, user))
})
passport.use(
new GoogleStrategy(
{
clientID: process.env.GOOGLE_CLIENT_ID,
clientSecret: process.env.GOOGLE_CLIENT_SECRET,
callbackURL: '/auth/google/callback',
proxy: true
},
async (accessToken, refreshToken, profile, done) => {
const newUser = {
googleId: profile.id,
displayName: profile.displayName,
firstName: profile.name.givenName,
lastName: profile.name.familyName,
image: profile.photos[0].value,
}
try {
let user = await User.findOne({ googleId: profile.id })
if (user) {
done(null, user)
} else {
user = await User.create(newUser)
done(null, user)
}
} catch (err) {
console.error(err)
}
}
)
)
您可以在使用护照进行身份验证后通过为其创建中间件将 req.user 注入到 Apollo 的上下文中
/// app.js
// you can move this to a new module for code brevity
const strategy = new GoogleStrategy(
{
clientID: process.env.GOOGLE_CLIENT_ID,
clientSecret: process.env.GOOGLE_CLIENT_SECRET,
callbackURL: '/auth/google/callback',
proxy: true
},
async (accessToken, refreshToken, profile, done) => {
const newUser = {
googleId: profile.id,
displayName: profile.displayName,
firstName: profile.name.givenName,
lastName: profile.name.familyName,
image: profile.photos[0].value,
}
try {
let user = await User.findOne({ googleId: profile.id })
if (user) {
done(null, user)
} else {
user = await User.create(newUser)
done(null, user)
}
} catch (err) {
console.error(err)
}
}
)
passport.use(strategy)
// ...
const app = express()
// ...
passport.initialize()
app.use('/graphql', (req, res, next) => {
passport.authenticate('google', { scope: ['profile','email'] }, (err, user, info) => {
if (user) {
req.user = user
}
next()
})(req, res, next)
})
// ...
const typeDefs = require('./modules/graphqlschemas/index');
const resolvers = require('./modules/resolvers/index');
const server = new ApolloServer({
typeDefs: typeDefs,
resolvers: resolvers,
context: ({ req }) => {
// do some other things with req
// inject data into context like user
return { user: req.user }
}
})
server.applyMiddleware({
app
})
无论如何,问题是在 graphql playground 设置中,凭据默认设置为省略。我只需要改变它。看这里 或直接看这里:
我应该怎么做才能获得 req.user 和 req.logout 以及在 ApolloServer 上下文中在护照中间件中创建的所有请求。就像我可以在
中访问它一样app.get('/good', isLoggedIn, (req, res) => res.send(req.user));
我使用 cookie-session、paspport、passport-google-oauth20、express、apollo-server、express 和 cors 包
app.use(
cors({
origin: "http://localhost:3000",
credentials: true
})
);
app.use(cookieSession({
name: 'session',
keys: ['key1', 'key2']
}))
app.use(passport.initialize());
app.use(passport.session());
app.get('/auth/google', passport.authenticate('google', { scope: ['profile','email'] }));
app.get('/auth/google/callback', passport.authenticate('google', {
successRedirect: '/good',
failureRedirect: '/fail',
}));
app.get('/good', (req, res) => res.send(req.user));
// route for logging out
app.get('/logout', (req, res) => {
req.session = null;
req.logout();
res.redirect('/');
});
// Connect to Mongo(skipped)
const { ApolloServer } = require('apollo-server-express');
const typeDefs = require('./modules/graphqlschemas/index');
const resolvers = require('./modules/resolvers/index');
// #5 Initialize an Apollo server
const server = new ApolloServer({
typeDefs: typeDefs,
resolvers: resolvers,
context: ({ req }) => ({
getUser: () => {
console.log(req.user); // ! undefined !
},
logout: () => req.logout() // ! header not sent to the client error !
})
});
这是我的 googleAuth 文件:
const GoogleStrategy = require('passport-google-oauth20').Strategy
const passport = require('passport');
const User = require('../models/user');
passport.serializeUser((user, done) => {
done(null, user.id)
})
passport.deserializeUser((id, done) => {
User.findById(id, (err, user) => done(err, user))
})
passport.use(
new GoogleStrategy(
{
clientID: process.env.GOOGLE_CLIENT_ID,
clientSecret: process.env.GOOGLE_CLIENT_SECRET,
callbackURL: '/auth/google/callback',
proxy: true
},
async (accessToken, refreshToken, profile, done) => {
const newUser = {
googleId: profile.id,
displayName: profile.displayName,
firstName: profile.name.givenName,
lastName: profile.name.familyName,
image: profile.photos[0].value,
}
try {
let user = await User.findOne({ googleId: profile.id })
if (user) {
done(null, user)
} else {
user = await User.create(newUser)
done(null, user)
}
} catch (err) {
console.error(err)
}
}
)
)
您可以在使用护照进行身份验证后通过为其创建中间件将 req.user 注入到 Apollo 的上下文中
/// app.js
// you can move this to a new module for code brevity
const strategy = new GoogleStrategy(
{
clientID: process.env.GOOGLE_CLIENT_ID,
clientSecret: process.env.GOOGLE_CLIENT_SECRET,
callbackURL: '/auth/google/callback',
proxy: true
},
async (accessToken, refreshToken, profile, done) => {
const newUser = {
googleId: profile.id,
displayName: profile.displayName,
firstName: profile.name.givenName,
lastName: profile.name.familyName,
image: profile.photos[0].value,
}
try {
let user = await User.findOne({ googleId: profile.id })
if (user) {
done(null, user)
} else {
user = await User.create(newUser)
done(null, user)
}
} catch (err) {
console.error(err)
}
}
)
passport.use(strategy)
// ...
const app = express()
// ...
passport.initialize()
app.use('/graphql', (req, res, next) => {
passport.authenticate('google', { scope: ['profile','email'] }, (err, user, info) => {
if (user) {
req.user = user
}
next()
})(req, res, next)
})
// ...
const typeDefs = require('./modules/graphqlschemas/index');
const resolvers = require('./modules/resolvers/index');
const server = new ApolloServer({
typeDefs: typeDefs,
resolvers: resolvers,
context: ({ req }) => {
// do some other things with req
// inject data into context like user
return { user: req.user }
}
})
server.applyMiddleware({
app
})
无论如何,问题是在 graphql playground 设置中,凭据默认设置为省略。我只需要改变它。看这里