feat: add auth scopes on queries and mutations

Nexirift · Dec 15, 2024 · bcd9d0a · bcd9d0a
1 parent fdd4b2e
commit bcd9d0a
Show file tree

Hide file tree

Showing 7 changed files with 19 additions and 4 deletions.
diff --git a/src/mutations/post/Collection.ts b/src/mutations/post/Collection.ts
@@ -21,6 +21,7 @@ builder.mutationField('createPostCollection', (t) =>
 			description: t.arg.string(),
 			visibility: t.arg.string({ defaultValue: 'PUBLIC' })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const originalPostCollection =
 				await db.query.postCollection.findFirst({
@@ -63,6 +64,7 @@ builder.mutationField('updatePostCollection', (t) =>
 			description: t.arg.string(),
 			visibility: t.arg.string({ defaultValue: 'PUBLIC' })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const originalPostCollection = await findPostCollectionById(
 				args.id
@@ -97,6 +99,7 @@ builder.mutationField('deletePostCollection', (t) =>
 		args: {
 			id: t.arg.string({ required: true })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const originalPostCollection = await findPostCollectionById(
 				args.id
@@ -126,6 +129,7 @@ builder.mutationField('addPostToCollection', (t) =>
 			id: t.arg.string({ required: true }),
 			postId: t.arg.string({ required: true })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const originalPostCollection = await findPostCollectionById(
 				args.id
@@ -159,6 +163,7 @@ builder.mutationField('removePostFromCollection', (t) =>
 			id: t.arg.string({ required: true }),
 			postId: t.arg.string({ required: true })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const originalPostCollection = await findPostCollectionById(
 				args.id

diff --git a/src/mutations/post/Interaction.ts b/src/mutations/post/Interaction.ts
@@ -22,7 +22,7 @@ interactionTypes.forEach((type) => {
 				id: t.arg.string({ required: true }),
 				reason: t.arg.string()
 			},
-			// TODO: Add auth scope.
+			authScopes: { loggedIn: true },
 			resolve: async (_root, args, ctx: Context) =>
 				postInteract(ctx, args, type)
 		})

diff --git a/src/mutations/post/Post.ts b/src/mutations/post/Post.ts
@@ -15,6 +15,7 @@ builder.mutationField('createPost', (t) =>
 			parent: t.arg.string(),
 			quote: t.arg.boolean({ defaultValue: false })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const createPost = await db
 				.insert(post)
@@ -40,6 +41,7 @@ builder.mutationField('updatePost', (t) =>
 			id: t.arg.string({ required: true }),
 			content: t.arg.string({ required: true })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const originalPost = await db.query.post.findFirst({
 				where: (post, { eq }) => eq(post.id, args.id)
@@ -77,6 +79,7 @@ builder.mutationField('deletePost', (t) =>
 		args: {
 			id: t.arg.string({ required: true })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const originalPost = await db.query.post.findFirst({
 				where: (post, { eq }) => eq(post.id, args.id)

diff --git a/src/mutations/user/Conversation.ts b/src/mutations/user/Conversation.ts
@@ -153,6 +153,7 @@ builder.mutationField('createUserConversation', (t) =>
 			type: t.arg({ type: UserConversationType, required: true }),
 			participants: t.arg.stringList({ required: true })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const participants = args.participants.map((id) => id.toString());
 			validateParticipants(participants, ctx.oidc.sub);
@@ -176,6 +177,7 @@ builder.mutationField('createUserConversationMessage', (t) =>
 			content: t.arg.string({ required: true }),
 			conversationId: t.arg.string({ required: true })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			await checkPermissions(
 				['SEND_MESSAGES'],
@@ -210,6 +212,7 @@ builder.mutationField('addUserConversationParticipants', (t) =>
 			conversationId: t.arg.string({ required: true }),
 			participants: t.arg.stringList({ required: true })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const conversation = await getConversation(args.conversationId);
 			await getParticipant(ctx.oidc.sub, args.conversationId);
@@ -243,6 +246,7 @@ builder.mutationField('removeUserConversationParticipants', (t) =>
 			conversationId: t.arg.string({ required: true }),
 			participants: t.arg.stringList({ required: true })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const conversation = await getConversation(args.conversationId);
 			await getParticipant(ctx.oidc.sub, args.conversationId);

diff --git a/src/mutations/user/ProfileField.ts b/src/mutations/user/ProfileField.ts
@@ -13,6 +13,7 @@ builder.mutationField('createProfileField', (t) =>
 			name: t.arg.string({ required: true }),
 			value: t.arg.string({ required: true })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, _args, ctx: Context) => {
 			const existingField = await db.query.userProfileField.findFirst({
 				where: (profileField, { eq, and }) =>
@@ -50,6 +51,7 @@ builder.mutationField('updateProfileField', (t) =>
 			newName: t.arg.string({ required: false }),
 			newValue: t.arg.string({ required: false })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, _args, ctx: Context) => {
 			const existingFields = await db.query.userProfileField.findMany({
 				where: (profileField, { eq }) =>

diff --git a/src/mutations/user/Relationship.ts b/src/mutations/user/Relationship.ts
@@ -28,7 +28,7 @@ relationshipTypes.forEach((type) => {
 				id: t.arg.string({ required: true }),
 				reason: t.arg.string()
 			},
-			// TODO: Add auth scope.
+			authScopes: { loggedIn: true },
 			resolve: async (_root, args, ctx: Context) =>
 				modifyRelationship(ctx, args, type)
 		})
@@ -41,7 +41,7 @@ builder.mutationField('acceptFollowRequest', (t) =>
 		args: {
 			id: t.arg.string({ required: true })
 		},
-		// TODO: Add auth scope.
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const requestedRelationship =
 				await db.query.userRelationship.findFirst({
@@ -82,7 +82,7 @@ builder.mutationField('denyFollowRequest', (t) =>
 		args: {
 			id: t.arg.string({ required: true })
 		},
-		// TODO: Add auth scope.
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const requestedRelationship =
 				await db.query.userRelationship.findFirst({

diff --git a/src/queries/user/Conversation.ts b/src/queries/user/Conversation.ts
@@ -14,6 +14,7 @@ builder.queryField('getUserConversation', (t) =>
 		args: {
 			id: t.arg.string({ required: true })
 		},
+		authScopes: { loggedIn: true },
 		resolve: async (_root, args, ctx: Context) => {
 			const conversation = await getConversation(args.id);
 			await getParticipant(ctx.oidc?.sub, args.id);