Skip to content

feat(GraphQL): Allow more control over custom logic header names #5600

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
vardhanapoorv merged 5 commits into from
Jun 17, 2020
Merged

feat(GraphQL): Allow more control over custom logic header names #5600

Show file tree
Hide file tree
Changes from 4 commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
7229dc5
Added support for custom names in headers
vardhanapoorv Jun 8, 2020
b6abf68
Continue to support old header definition
vardhanapoorv Jun 8, 2020
2b4df9c
Addressed comments
vardhanapoorv Jun 9, 2020
bd3a154
Added integration test
vardhanapoorv Jun 12, 2020
5b20d74
Moved validations to rules.go
vardhanapoorv Jun 16, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
21 changes: 21 additions & 0 deletions graphql/e2e/custom_logic/cmd/main.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -295,6 +295,26 @@ func verifyHeadersHandler(w http.ResponseWriter, r *http.Request) {
check2(w.Write([]byte(`[{"id":"0x3","name":"Star Wars"}]`)))
}

func verifyCustomNameHeadersHandler(w http.ResponseWriter, r *http.Request) {
err := verifyRequest(r, expectedRequest{
method: http.MethodGet,
urlSuffix: "/verifyCustomNameHeaders",
body: "",
headers: map[string][]string{
"X-App-Token": {"app-token"},
"X-User-Id": {"123"},
"Authorization": {"random-fake-token"},
"Accept-Encoding": nil,
"User-Agent": nil,
},
})
if err != nil {
check2(w.Write([]byte(err.Error())))
return
}
check2(w.Write([]byte(`[{"id":"0x3","name":"Star Wars"}]`)))
}

func twitterFollwerHandler(w http.ResponseWriter, r *http.Request) {
err := verifyRequest(r, expectedRequest{
method: http.MethodGet,
Expand Down Expand Up @@ -1114,6 +1134,7 @@ func main() {
http.HandleFunc("/favMovies/", getFavMoviesHandler)
http.HandleFunc("/favMoviesPost/", postFavMoviesHandler)
http.HandleFunc("/verifyHeaders", verifyHeadersHandler)
http.HandleFunc("/verifyCustomNameHeaders", verifyCustomNameHeadersHandler)
http.HandleFunc("/twitterfollowers", twitterFollwerHandler)

// for mutations
Expand Down
41 changes: 40 additions & 1 deletion graphql/e2e/custom_logic/custom_logic_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -168,6 +168,45 @@ func TestCustomQueryShouldForwardHeaders(t *testing.T) {
secretHeaders: ["Github-Api-Token", "X-App-Token"]
})
}

# Dgraph.Secret Github-Api-Token "random-fake-token"
# Dgraph.Secret app "should-be-overriden"
`
updateSchemaRequireNoGQLErrors(t, schema)
time.Sleep(2 * time.Second)

query := `
query {
verifyHeaders(id: "0x123") {
id
name
}
}`
params := &common.GraphQLParams{
Query: query,
Headers: map[string][]string{
"X-App-Token": []string{"app-token"},
"X-User-Id": []string{"123"},
"Random-header": []string{"random"},
},
}

result := params.ExecuteAsPost(t, alphaURL)
require.Nil(t, result.Errors)
expected := `{"verifyHeaders":[{"id":"0x3","name":"Star Wars"}]}`
require.Equal(t, expected, string(result.Data))
}

func TestCustomNameForwardHeaders(t *testing.T) {
schema := customTypes + `
type Query {
verifyHeaders(id: ID!): [Movie] @custom(http: {
url: "http://mock:8888/verifyCustomNameHeaders",
method: "GET",
forwardHeaders: ["X-App-Token:App", "X-User-Id"],
secretHeaders: ["Authorization:Github-Api-Token", "X-App-Token"]
})
}

# Dgraph.Secret Github-Api-Token "random-fake-token"
# Dgraph.Secret X-App-Token "should-be-overriden"
Expand All @@ -185,7 +224,7 @@ func TestCustomQueryShouldForwardHeaders(t *testing.T) {
params := &common.GraphQLParams{
Query: query,
Headers: map[string][]string{
"X-App-Token": []string{"app-token"},
"App": []string{"app-token"},
"X-User-Id": []string{"123"},
"Random-header": []string{"random"},
},
Expand Down
13 changes: 11 additions & 2 deletions graphql/schema/rules.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1613,9 +1613,18 @@ func customDirectiveValidation(sch *ast.Schema,
headers := http.Header{}
if secretHeaders != nil {
for _, h := range secretHeaders.Children {
key := strings.Split(h.Value.Raw, ":")
if len(key) == 1 {
key = []string{h.Value.Raw, h.Value.Raw}
} else if len(key) > 2 {
return append(errs, gqlerror.ErrorPosf(graphql.Position,
"Type %s; Field %s; secretHeaders in @custom directive should be of the form 'remote_headername:local_headername' or just 'headername'"+
", found: `%s`.",
typ.Name, field.Name, h.Value.Raw))
}
// We try and fetch the value from the stored secrets.
val := secrets[h.Value.Raw]
headers.Add(h.Value.Raw, string(val))
val := secrets[key[1]]
headers.Add(key[0], string(val))
}
}
if err := validateRemoteGraphql(&remoteGraphqlMetadata{
Expand Down
8 changes: 7 additions & 1 deletion graphql/schema/schemagen.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -259,7 +259,13 @@ func getAllowedHeaders(sch *ast.Schema, definitions []string) string {
return
}
for _, h := range forwardHeaders.Children {
headers[h.Value.Raw] = struct{}{}
key := strings.Split(h.Value.Raw, ":")
if len(key) == 1 {
key = []string{h.Value.Raw, h.Value.Raw}
} else if len(key) > 2 {
continue
}
headers[key[1]] = struct{}{}
}
}

Expand Down
20 changes: 16 additions & 4 deletions graphql/schema/wrappers.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -847,8 +847,14 @@ func getCustomHTTPConfig(f *field, isQueryOrMutation bool) (FieldHTTPConfig, err
if secretHeaders != nil {
hc.RLock()
for _, h := range secretHeaders.Children {
val := string(hc.secrets[h.Value.Raw])
fconf.ForwardHeaders.Set(h.Value.Raw, val)
key := strings.Split(h.Value.Raw, ":")
if len(key) == 1 {
key = []string{h.Value.Raw, h.Value.Raw}
} else if len(key) > 2 {
continue
}
val := string(hc.secrets[key[1]])
fconf.ForwardHeaders.Set(key[0], val)
}
hc.RUnlock()
}
Expand All @@ -857,8 +863,14 @@ func getCustomHTTPConfig(f *field, isQueryOrMutation bool) (FieldHTTPConfig, err
if forwardHeaders != nil {
for _, h := range forwardHeaders.Children {
// We would override the header if it was also specified as part of secretHeaders.
reqHeaderVal := f.op.header.Get(h.Value.Raw)
fconf.ForwardHeaders.Set(h.Value.Raw, reqHeaderVal)
key := strings.Split(h.Value.Raw, ":")
if len(key) == 1 {
key = []string{h.Value.Raw, h.Value.Raw}
} else if len(key) > 2 {
continue
}
reqHeaderVal := f.op.header.Get(key[1])
fconf.ForwardHeaders.Set(key[0], reqHeaderVal)
}
}

Expand Down