mirror of
https://github.com/hasura/graphql-engine.git
synced 2024-12-17 12:31:52 +03:00
2e7e6fd98a
PR-URL: https://github.com/hasura/graphql-engine-mono/pull/5048 GitOrigin-RevId: f666a10c6af5feda9d761d3ffee5c77695361fdf
105 lines
2.7 KiB
Haskell
105 lines
2.7 KiB
Haskell
{-# LANGUAGE TemplateHaskell #-}
|
|
|
|
-- | API related to server configuration
|
|
module Hasura.Server.API.Config
|
|
-- required by pro
|
|
( ServerConfig (..),
|
|
runGetConfig,
|
|
)
|
|
where
|
|
|
|
import Data.Aeson.TH
|
|
import Data.HashSet qualified as Set
|
|
import Hasura.GraphQL.Execute.Subscription.Options qualified as ES
|
|
import Hasura.GraphQL.Schema.Options qualified as Options
|
|
import Hasura.Prelude
|
|
import Hasura.Server.Auth
|
|
import Hasura.Server.Auth.JWT
|
|
import Hasura.Server.Types (ExperimentalFeature)
|
|
import Hasura.Server.Version (Version, currentVersion)
|
|
|
|
data JWTInfo = JWTInfo
|
|
{ jwtiClaimsNamespace :: !JWTNamespace,
|
|
jwtiClaimsFormat :: !JWTClaimsFormat,
|
|
jwtiClaimsMap :: !(Maybe JWTCustomClaimsMap)
|
|
}
|
|
deriving (Show, Eq)
|
|
|
|
$(deriveToJSON hasuraJSON ''JWTInfo)
|
|
|
|
data ServerConfig = ServerConfig
|
|
{ scfgVersion :: !Version,
|
|
scfgIsFunctionPermissionsInferred :: !Options.InferFunctionPermissions,
|
|
scfgIsRemoteSchemaPermissionsEnabled :: !Options.RemoteSchemaPermissions,
|
|
scfgIsAdminSecretSet :: !Bool,
|
|
scfgIsAuthHookSet :: !Bool,
|
|
scfgIsJwtSet :: !Bool,
|
|
scfgJwt :: ![JWTInfo],
|
|
scfgIsAllowListEnabled :: !Bool,
|
|
scfgLiveQueries :: !ES.LiveQueriesOptions,
|
|
scfgStreamingQueries :: !ES.SubscriptionsOptions,
|
|
scfgConsoleAssetsDir :: !(Maybe Text),
|
|
scfgExperimentalFeatures :: !(Set.HashSet ExperimentalFeature)
|
|
}
|
|
deriving (Show, Eq)
|
|
|
|
$(deriveToJSON hasuraJSON ''ServerConfig)
|
|
|
|
runGetConfig ::
|
|
Options.InferFunctionPermissions ->
|
|
Options.RemoteSchemaPermissions ->
|
|
AuthMode ->
|
|
Bool ->
|
|
ES.LiveQueriesOptions ->
|
|
ES.SubscriptionsOptions ->
|
|
Maybe Text ->
|
|
Set.HashSet ExperimentalFeature ->
|
|
ServerConfig
|
|
runGetConfig
|
|
functionPermsCtx
|
|
remoteSchemaPermsCtx
|
|
am
|
|
isAllowListEnabled
|
|
liveQueryOpts
|
|
streamQueryOpts
|
|
consoleAssetsDir
|
|
experimentalFeatures =
|
|
ServerConfig
|
|
currentVersion
|
|
functionPermsCtx
|
|
remoteSchemaPermsCtx
|
|
(isAdminSecretSet am)
|
|
(isAuthHookSet am)
|
|
(isJWTSet am)
|
|
(getJWTInfo am)
|
|
isAllowListEnabled
|
|
liveQueryOpts
|
|
streamQueryOpts
|
|
consoleAssetsDir
|
|
experimentalFeatures
|
|
|
|
isAdminSecretSet :: AuthMode -> Bool
|
|
isAdminSecretSet = \case
|
|
AMNoAuth -> False
|
|
_ -> True
|
|
|
|
isAuthHookSet :: AuthMode -> Bool
|
|
isAuthHookSet = \case
|
|
AMAdminSecretAndHook _ _ -> True
|
|
_ -> False
|
|
|
|
isJWTSet :: AuthMode -> Bool
|
|
isJWTSet = \case
|
|
AMAdminSecretAndJWT {} -> True
|
|
_ -> False
|
|
|
|
getJWTInfo :: AuthMode -> [JWTInfo]
|
|
getJWTInfo (AMAdminSecretAndJWT _ jwtCtxs _) =
|
|
let f jwtCtx = case jcxClaims jwtCtx of
|
|
JCNamespace namespace claimsFormat ->
|
|
JWTInfo namespace claimsFormat Nothing
|
|
JCMap claimsMap ->
|
|
JWTInfo (ClaimNs defaultClaimsNamespace) defaultClaimsFormat $ Just claimsMap
|
|
in fmap f jwtCtxs
|
|
getJWTInfo _ = mempty
|