Module: Graphql::AuthHelper

Includes:: AccountLockHelper, TokenHelper

Defined in:: app/helpers/graphql/auth_helper.rb

Instance Method Summary collapse

#context ⇒ Object
#current_user ⇒ Object

set current user from Authorization header.

Methods included from TokenHelper

#delete_refresh_token, #generate_access_token, #set_current_user, #set_refresh_token

Methods included from AccountLockHelper

#account_locked?

Instance Method Details

#context ⇒ `Object`

# File 'app/helpers/graphql/auth_helper.rb', line 10

def context
  {
    current_user: current_user,
    response: response
  }
end

#current_user ⇒ `Object`

set current user from Authorization header

# File 'app/helpers/graphql/auth_helper.rb', line 18

def current_user
  authorization_token = request.headers['Authorization']
  return nil if authorization_token.nil?

  decrypted_token = GraphQL::Auth::JwtManager.decode(authorization_token)
  user = User.find_by id: decrypted_token['user']
  return nil if user.blank? || account_locked?(user)

  # update token if user is found with token
  generate_access_token(user, response)

  user

# rescue expired Authorization header with RefreshToken header
rescue JWT::ExpiredSignature
  refresh_token = request.headers['RefreshToken']
  return nil if refresh_token.nil?

  user = User.find_by refresh_token: refresh_token
  return nil if user.blank? || account_locked?(user)

  generate_access_token(user, response)
  set_refresh_token(user, response)

  user
end

Module: Graphql::AuthHelper

Instance Method Summary collapse

Methods included from TokenHelper

Methods included from AccountLockHelper

Instance Method Details

#context ⇒ Object

#current_user ⇒ Object

#context ⇒ `Object`

#current_user ⇒ `Object`