Comments (7)
I don't know if its related, but i have a problem to get user in resolve
property.
I'm fully authenticated for rest routes, but when I attempted to access graphql, user is set anonymous.
It's probably a misconfiguration at symfony level, but maybe you have a suggestion?
Thanks
If I try setting access: "@=isAuthenticated()"
, i got "Access denied to this field." message.
from graphqlbundle.
Here the solution for me: http://dev.apollodata.com/angular2/auth.html#Cookie
from graphqlbundle.
Hi @lube,
can you give an example to explain the difference between what you asking for and the current access
feature please?
from graphqlbundle.
@lube have you tried using the Symfony security layer?
-
Add a firewall targeting your endpoint
firewalls: graphql: pattern: ^/graphql stateless: true <YOUR_PROVIDER>: <CONFIG>
-
Set an access_control
access_control: - { path: ^/graphql, roles: IS_AUTHENTICATED_FULLY }
from graphqlbundle.
I have only set this in routing:
overblog_graphql_endpoint:
path: /graphql
defaults:
_controller: OverblogGraphQLBundle:Graph:endpoint
_format: "json"
and in security:
access_control:
- { path: ^/graphql, roles: IS_AUTHENTICATED_ANONYMOUSLY, methods: [POST] }
and finally the firewalls:
firewalls:
# disables authentication for assets and the profiler, adapt it according to your needs
dev:
pattern: ^/(_(profiler|wdt)|css|images|js)/
security: false
login:
pattern: ^/auth/form$
anonymous: true
token:
pattern: ^/token$
security: false
secured:
pattern: ^/
guard:
authenticators:
- acme_superadmin.token_authenticator
- acme_app.token_authenticator
entry_point: acme_app.token_authenticator
saml:
username_attribute: '%sso_saml_username_attribute%'
check_path: /saml/acs
login_path: /saml/login
always_use_default_target_path: true
user_factory: acme_user.user_manipulator
form_login_ldap:
login_path: /#/sign-in
check_path: /auth/login
service: ldap
dn_string: '%ldap_binddn%'
require_previous_session: false
always_use_default_target_path: true
form_login:
login_path: /#/sign-in
check_path: /auth/login
require_previous_session: false
always_use_default_target_path: true
logout:
path: /saml/logout
anonymous: ~
remember_me:
secret: '%secret%'
lifetime: '%remember_me_lifetime%'
from graphqlbundle.
Ok, it seems to be a problem with Apollo Client, not Symfony or this bundle. I will put the solution here as soon as i found to pass cookies. Something related to https://github.com/github/fetch/blob/7f71c9bdccedaf65cf91b450b74065f8bed26d36/README.md#sending-cookies
from graphqlbundle.
closing this feel free to reopen if needed...
from graphqlbundle.
Related Issues (20)
- Add support for `parseValue` configuration for `input-object` types
- Dynamic fields from database HOT 1
- Default enum value for argument when using annotations HOT 3
- MetadataParser will throw exception if you have Symfony PHP Configurations in your bundle HOT 4
- Types with same name differents according to schema
- Example from doc not working under Symfony 6 HOT 1
- The path "overblog_graphql_types.RootQuery._object_config.fields" should have at least 1 element(s) defined. HOT 10
- Ignoring of the name parameter of field attribute HOT 3
- Dataloader or Resolver Contexts & Parameters
- Type error introduced in 1.2.0 HOT 23
- Multiline documentation with a graphql schema leads to unnececairy indent/code block formatting HOT 1
- Multi level Input-object validation issue HOT 1
- Automatic type resolver for annotations/attributes
- ArgumentTransfomer should only validate arguments of type input
- Default field value for Input Object
- Annotations should be deprecated HOT 3
- Arguments order shouldn't matter
- Add ability to set HTTP status code and set own headers
- Help: Unclear how to use validation "link" with mutation/input objects HOT 2
- Validation is called on optional fields that are not passed
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from graphqlbundle.