Class: GraphQL::Guard

Inherits:

Object

• Object
• GraphQL::Guard

Defined in:

lib/graphql/guard.rb,
lib/graphql/guard/version.rb

Constant Summary

NotAuthorizedError =

Class.new(StandardError)

ANY_FIELD_NAME =

:'*'

DEFAULT_NOT_AUTHORIZED =

->(type, field) do
  raise NotAuthorizedError.new("Not authorized to access: #{type}.#{field}")
end

MASKING_FILTER =

->(schema_member, ctx) do
  mask = schema_member.graphql_definition.metadata[:mask]
  mask ? mask.call(ctx) : true
end

VERSION =

"2.0.0"

Instance Attribute Summary

• #not_authorized ⇒ Object readonly

  Returns the value of attribute not_authorized.

• #policy_object ⇒ Object readonly

  Returns the value of attribute policy_object.

Instance Method Summary

• #find_guard_proc(type, field) ⇒ Object
• #initialize(policy_object: nil, not_authorized: DEFAULT_NOT_AUTHORIZED) ⇒ Guard constructor

  A new instance of Guard.

• #trace(event, trace_data) ⇒ Object
• #use(schema_definition) ⇒ Object

Constructor Details

#initialize(policy_object: nil, not_authorized: DEFAULT_NOT_AUTHORIZED) ⇒ Guard

Returns a new instance of Guard.

# File 'lib/graphql/guard.rb', line 23

def initialize(policy_object: nil, not_authorized: DEFAULT_NOT_AUTHORIZED)
  @policy_object = policy_object
  @not_authorized = not_authorized
end

Instance Attribute Details

#not_authorized ⇒ Object (readonly)

Returns the value of attribute not_authorized.

# File 'lib/graphql/guard.rb', line 21

def not_authorized
  @not_authorized
end

#policy_object ⇒ Object (readonly)

Returns the value of attribute policy_object.

# File 'lib/graphql/guard.rb', line 21

def policy_object
  @policy_object
end

Instance Method Details

#find_guard_proc(type, field) ⇒ Object

# File 'lib/graphql/guard.rb', line 46

def find_guard_proc(type, field)
  return unless type.respond_to?(:type_class)

  inline_guard(field) ||
    policy_object_guard(type.type_class, field.name.to_sym) ||
    inline_guard(type) ||
    policy_object_guard(type.type_class, ANY_FIELD_NAME)
end

#trace(event, trace_data) ⇒ Object

# File 'lib/graphql/guard.rb', line 38

def trace(event, trace_data)
  if event == 'execute_field'
    ensure_guarded(trace_data) { yield }
  else
    yield
  end
end

#use(schema_definition) ⇒ Object

# File 'lib/graphql/guard.rb', line 28

def use(schema_definition)
  if schema_definition.interpreter?
    schema_definition.tracer(self)
  else
    raise "Please use the graphql gem version >= 1.10 with GraphQL::Execution::Interpreter"
  end

  add_schema_masking!(schema_definition)
end