logo标签列表

GraphQL订阅,WebSocket,Node.js,Express会话

expresswebsocketgraphqlsession-cookiesapollo-server
5

我正在使用Apollo Server 2 (但这个问题不仅限于Apollo)和原始的Express.js(使用apollo-server-express)。

除了Express会话(session)机制之外,一切都很好,包括订阅(Subscription)

问题:

我正在使用cookie-sessionhttps://github.com/expressjs/cookie-session,但我认为express-session中间件也是如此),当我的浏览器与服务器建立新连接时,ApolloServer的onConnect钩子没有req属性,也没有req.session等等...

我能做的是在onConnect生命周期钩子中从webSocket.upgradeReq.headers.cookie解析cookie,但我觉得这非常诡异。

代码:

const { ApolloServer } = require('apollo-server-express')

const typeDefs = require('../src/graphql/types')
const resolvers = require('../src/graphql/resolvers')
const models = require('../src/models')

const apolloServer = new ApolloServer({
  typeDefs,
  resolvers,
  context: ({ req, connection }) => {
    // connection exists only on webSocket connection
    if (connection) {
      return {
        currentUser: connection.context.currentUser // <-- I NEED THIS!
      }
    }
    // if not a (webSocket) connection it is a "default" HTTP call
    return {
      models,
      currentUser: { id: req.user.id }
    }
  },
  subscriptions: {
    onConnect: (connectionParams, webSocket) => {
      // "connectionParams" is from the client but I cannot use it because cookies are HTTP-Only
      // I can retrieve cookies from here: "webSocket.upgradeReq.headers.cookie" but then I need to parse them which seems a bit hacky to me
      // return { currentUser: req.user.id } // <-- I NEED THIS (req.user.id doesn't exists)!
    }
  }
})

module.exports = apolloServer

我在Apollo Server文档网站上找不到任何内容(其他主题都有很好的文档!)。

我做错了什么?

你是如何解决的? - Nux
4个回答
2
我知道这个问题很旧了,但我自己也遇到了这个问题,我解决的方法是通过我的会话中间件运行webSocket.upgradeReq.session。

enter image description here

然后在onConnect中:

enter image description here

"您可以访问您的会话"
1

这是我使用的代码

  //Session middleware before resolvers
  const sessionParser = session({
    store,
    secret: config.get('keys.session_secret'),
    //...The rest config here
    }
  });


  const apolloServer = new ApolloServer({
    schema,
    context: ({req, res, connection}: TheContext): TheContext => {
      return {req, res, redisStore: store, connection}; //connection is must here
    },
    subscriptions: {
      onConnect: (_params, _ws, ctx) => {
        return new Promise((resolve, reject) => {
          const req = ctx.request as express.Request;
          const res = ({} as any) as express.Response;

          //Parsing session
          sessionParser(req, res, (_: any) => {
            const session = req.session as any;

            //Getting userId which was stored during login
            const userId = session.userId;

            if (!userId) {
              reject(new AppError('You are not logged in'));
            }

            //This will be available in subscription via connection as
            //something.connection.context.userId
            resolve({userId});
          });
        });
      }
    }
  });

我使用 TypeGraphql 如下所示。
  @Subscription(() => Post, {
    topics: ({context}) => `${Topic.DELETED_POST}:${parseUserId(context)}`,
    description: 'To be used in requests list and not for individual request'
  })
  deletedPost(@Root() post: Post) {
    return post;
  }

这是我如何访问存储在会话中的userId的方法。
export function parseUserId(obj: any): string {
  return obj.connection.context.userId ?? '';
}

感谢所有答案这里

0
0

请查看 dougwilson 的评论:https://github.com/expressjs/cookie-session/issues/117#issuecomment-452046225,以获取会话值。

If you just want to get the session contents (and not write back a new session -- which would not be possible without a res anyhow), you could likely just use the cookies module directly, which is what this module uses under the hood to read the cookie and validate the signature. A possible example:

const Cookies = require('cookies')

// …

const cookies = new Cookies(req, null, { keys }) const session =
JSON.parse(Buffer.from(cookies.get('session'),'base64').toString('utf8'))

onConnect 则返回你在 subscribe() 中需要使用的任何内容。

网页内容由stack overflow 提供, 点击上面的
可以查看英文原文,
原文链接