DEV Community: Thomas Peklak The latest articles on DEV Community by Thomas Peklak (@thomaspeklak). https://dev.to/thomaspeklak https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F97302%2F9162fb28-73b6-475b-875b-adcd101ec398.jpg DEV Community: Thomas Peklak https://dev.to/thomaspeklak en How to test a Hasura Api with Jest Thomas Peklak Fri, 27 Aug 2021 06:51:18 +0000 https://dev.to/trigo/how-to-test-a-hasura-api-with-jest-36jh https://dev.to/trigo/how-to-test-a-hasura-api-with-jest-36jh <p>Hasura provides an easy way to build an API and testing it is as easy as testing any other API. We will focus on the GraphQL API but everything presented here can be applied to the REST API as well.</p> <h2> Use Case </h2> <p>We will model a todo list for different users. Each user should only see her own todo items and none of a different user.</p> <h2> Tools </h2> <p>We will use</p> <ul> <li> <strong>Docker:</strong> to setup Hasura and PostgreSQL</li> <li> <strong>Jest:</strong> as our test runner</li> <li> <strong>graphql-codegen:</strong> to generate an SDK including Typescript support to have good autocompletion in the editor</li> <li> <strong>JWT:</strong> to set the authenticated user</li> </ul> <p>... to test that the business logic in Hasura works as intended. Business logic can live in Hasura itself (e.g. permissions) or within the database (e.g. views, constraints, et al.). Note that it does not make sense to test that Hasura does its job correctly as it is by itself well tested. If you just create a resource without any logic you probably do not want to test it.</p> <p>If you want to follow along you can clone the sample repository at <a href="https://github.com/trigo-at/hasura-api-testing">trigo/hasura-api-testing</a>.</p> <h2> Hasura and PostgreSQL Setup with Docker Compose </h2> <p>We use a slightly modified version of Hasura's <a href="https://hasura.io/docs/latest/graphql/core/getting-started/docker-simple.html#step-1-get-the-docker-compose-file">docker compose file</a>.</p> <p>Changes include:</p> <ul> <li> <code>HASURA_GRAPHQL_JWT_SECRET</code> for user authentication</li> <li> <code>cli-migrations</code> image so that migrations are automatically applied</li> <li> <code>graphql-engine/volumes</code> to be able to store migrations and metadata in the repository</li> <li> exposed <code>port</code> for PostgreSQL to be able to connect directly to PostgreSQL </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="s">// docker-compose.yml</span> <span class="na">version</span><span class="pi">:</span> <span class="s2">"</span><span class="s">3.6"</span> <span class="na">services</span><span class="pi">:</span> <span class="na">postgres</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">postgres:12</span> <span class="na">restart</span><span class="pi">:</span> <span class="s">always</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">5432:5432"</span> <span class="na">volumes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">db_data:/var/lib/postgresql/data</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">POSTGRES_PASSWORD</span><span class="pi">:</span> <span class="s">password</span> <span class="na">graphql-engine</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">hasura/graphql-engine:v2.0.3.cli-migrations-v3</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">8080:8080"</span> <span class="na">depends_on</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">postgres"</span> <span class="na">restart</span><span class="pi">:</span> <span class="s">always</span> <span class="na">volumes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">${PWD}/migrations:/hasura-migrations</span> <span class="pi">-</span> <span class="s">${PWD}/metadata:/hasura-metadata</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">HASURA_GRAPHQL_METADATA_DATABASE_URL</span><span class="pi">:</span> <span class="s">postgres://postgres:password@postgres:5432/postgres</span> <span class="na">PG_DATABASE_URL</span><span class="pi">:</span> <span class="s">postgres://postgres:password@postgres:5432/postgres</span> <span class="na">HASURA_GRAPHQL_ENABLE_CONSOLE</span><span class="pi">:</span> <span class="s2">"</span><span class="s">true"</span> <span class="na">HASURA_GRAPHQL_DEV_MODE</span><span class="pi">:</span> <span class="s2">"</span><span class="s">true"</span> <span class="na">HASURA_GRAPHQL_ENABLED_LOG_TYPES</span><span class="pi">:</span> <span class="s">startup, http-log, webhook-log, websocket-log, query-log</span> <span class="na">HASURA_GRAPHQL_ADMIN_SECRET</span><span class="pi">:</span> <span class="s">admin-secret</span> <span class="na">HASURA_GRAPHQL_JWT_SECRET</span><span class="pi">:</span> <span class="s1">'</span><span class="s">{"type":"HS256",</span><span class="nv"> </span><span class="s">"key":</span><span class="nv"> </span><span class="s">"3EK6FD+o0+c7tzBNVfjpMkNDi2yARAAKzQlk8O2IKoxQu4nF7EdAh8s3TwpHwrdWT6R",</span><span class="nv"> </span><span class="s">"claims_map":</span><span class="nv"> </span><span class="s">{</span><span class="nv"> </span><span class="s">"x-hasura-allowed-roles":</span><span class="nv"> </span><span class="s">{</span><span class="nv"> </span><span class="s">"path":</span><span class="nv"> </span><span class="s">"$$.roles"</span><span class="nv"> </span><span class="s">},</span><span class="nv"> </span><span class="s">"x-hasura-default-role":</span><span class="nv"> </span><span class="s">{</span><span class="nv"> </span><span class="s">"path":</span><span class="nv"> </span><span class="s">"$$.roles[0]"</span><span class="nv"> </span><span class="s">},</span><span class="nv"> </span><span class="s">"x-hasura-client-id":</span><span class="nv"> </span><span class="s">{</span><span class="nv"> </span><span class="s">"path":</span><span class="nv"> </span><span class="s">"$$.clientId",</span><span class="nv"> </span><span class="s">"default":</span><span class="nv"> </span><span class="s">""</span><span class="nv"> </span><span class="s">},</span><span class="nv"> </span><span class="s">"x-hasura-user-id":</span><span class="nv"> </span><span class="s">{</span><span class="nv"> </span><span class="s">"path":</span><span class="nv"> </span><span class="s">"$$.userId",</span><span class="nv"> </span><span class="s">"default":</span><span class="nv"> </span><span class="s">""</span><span class="nv"> </span><span class="s">},</span><span class="nv"> </span><span class="s">"x-hasura-username":</span><span class="nv"> </span><span class="s">{</span><span class="nv"> </span><span class="s">"path":</span><span class="nv"> </span><span class="s">"$$.username",</span><span class="nv"> </span><span class="s">"default":</span><span class="nv"> </span><span class="s">""</span><span class="nv"> </span><span class="s">}</span><span class="nv"> </span><span class="s">}}'</span> <span class="na">volumes</span><span class="pi">:</span> <span class="na">db_data</span><span class="pi">:</span> </code></pre> </div> <p>Start Hasura and PostgreSQL with <code>docker-compose up -d</code> and wait until Hasura is up and running. You can either check via <code>curl localhost:8080/healthz</code> or <code>hasura migrate status --admin-secret admin-secret</code> to see whether all migrations have been applied.</p> <h2> Setup Database and Permissions </h2> <p><em>When you spin up the compose file within the provided repository you can skip the next steps because migrations and metadata are included and applied automatically when Hasura starts.</em></p> <p>Next we create a <code>todo</code> table with properties <code>id</code>, <code>description</code>, <code>is_done</code>, and <code>user</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="k">TABLE</span> <span class="nv">"public"</span><span class="p">.</span><span class="nv">"todo"</span> <span class="p">(</span> <span class="nv">"id"</span> <span class="nb">serial</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="nv">"description"</span> <span class="nb">text</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="nv">"is_done"</span> <span class="nb">boolean</span> <span class="k">NOT</span> <span class="k">NULL</span> <span class="k">DEFAULT</span> <span class="k">false</span><span class="p">,</span> <span class="nv">"user"</span> <span class="nb">text</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="k">PRIMARY</span> <span class="k">KEY</span> <span class="p">(</span><span class="nv">"id"</span><span class="p">)</span> <span class="p">);</span> </code></pre> </div> <h3> Permissions </h3> <p><strong>Insert permissions:</strong></p> <p>When inserting new todos, we do not allow the user to set the <code>user</code> property by herself, instead we use the <code>user-id</code> session variable for the user and only allow the properties <code>description</code> and <code>is_done</code> to be set. <code>id</code> is an autoincrement field and should not be touched by the user either.</p> <p><a href="https://res.cloudinary.com/practicaldev/image/fetch/s--nkkDjRXQ--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/mlznaiynz27h4m8z77w1.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--nkkDjRXQ--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/mlznaiynz27h4m8z77w1.png" alt="insert permissions"></a></p> <p><strong>Select permissions:</strong></p> <p>When a user retrieves her todos, we set the custom check <code>user</code> equals <code>x-hasura-user-id</code> to ensure that a user only gets her own todos.</p> <p><a href="https://res.cloudinary.com/practicaldev/image/fetch/s--lXXAvHZM--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/3nfus8z5tlm395w813ah.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--lXXAvHZM--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/3nfus8z5tlm395w813ah.png" alt="select permissions"></a></p> <p>We have now completed our PostgreSQL and Hasura setup and are ready to look into the test setup.</p> <h2> Tests </h2> <h3> Code Generation </h3> <p>We leverage <code>@graphql-codegen</code> to generate an SDK for the GraphQL API. It will take all <code>.graphql</code> files under <code>tests</code>, connect to the Hasura GraphQL API and output the SDK in <code>tests/client/graphql.request.ts</code>. This takes over most of the communication between our tests and the GraphQL API and gives us typing information to help us in the editor and in our tests.</p> <p>You can find detailed information at <a href="https://www.graphql-code-generator.com/">GraphQL Code Generator</a> on the possibilities to generate code from your GraphQL schema.</p> <p>First we need a <code>.graphql</code> file that describes how to insert and select todos. It has a <em>query</em> <code>GetTodos</code> that retrieves<br> all todos and a <em>mutation</em> <code>AddTodo</code> which inserts a new todo item.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>// tests/graphql/todo.graphql query GetTodos { todo { id description is_done } } mutation AddTodo($description: String = "", $is_done: Boolean = false) { insert_todo(objects: { description: $description, is_done: $is_done }) { returning { id } } } </code></pre> </div> <p><code>graphql-codegen/cli</code> needs a configuration file so it knows where our GraphQL API lives, where to look for source files and where to put the generated SDK. You can also specify plugins which modify the output of SDK. More information can be found in the <a href="https://www.graphql-code-generator.com/docs/plugins/index">graphql-codegen plugin index</a>. </p> <p>We will use</p> <ul> <li> <strong>typescript:</strong> Generate types for TypeScript - those are usually relevant for both client side and server side code</li> <li> <strong>typescript-operations:</strong> Generate client specific TypeScript types (query, mutation, subscription, fragment)</li> <li> <strong>typescript-graphql-request:</strong> Generates fully-typed ready-to-use SDK for graphql-request </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// codegen.js</span> <span class="nx">module</span><span class="p">.</span><span class="nx">exports</span> <span class="o">=</span> <span class="p">{</span> <span class="na">schema</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">http://localhost:8080/v1/graphql</span><span class="dl">'</span><span class="p">:</span> <span class="p">{</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">x-hasura-admin-secret</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">admin-secret</span><span class="dl">'</span><span class="p">,</span> <span class="p">},</span> <span class="p">},</span> <span class="p">},</span> <span class="p">],</span> <span class="na">documents</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">./tests/**/*.graphql</span><span class="dl">'</span><span class="p">],</span> <span class="na">overwrite</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">generates</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">./tests/utils/graphql.request.ts</span><span class="dl">'</span><span class="p">:</span> <span class="p">{</span> <span class="na">plugins</span><span class="p">:</span> <span class="p">[</span> <span class="dl">'</span><span class="s1">typescript</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">typescript-operations</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">typescript-graphql-request</span><span class="dl">'</span><span class="p">,</span> <span class="p">],</span> <span class="p">},</span> <span class="p">},</span> <span class="p">};</span> </code></pre> </div> <p>Now install all necessary npm modules<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install</span> <span class="nt">-D</span> @graphql-codegen/cli @graphql-codegen/typescript @graphql-codegen/typescript-graphql-request @graphql-codegen/typescript-operations </code></pre> </div> <p>and generate the SDK with <code>npx graphql-codegen --config codegen.js</code>. This should generate an SDK under <code>tests/utils/graphql.request.ts</code>.</p> <h3> Authenticated Requests </h3> <p>The SDK itself does not have an easy way to create authenticated requests with JWT, you need to generate and specify the headers for each request. But we can simply wrap it for our purposes so that authentication headers are automatically sent with each request. The configuration will be sourced from the <code>.env</code> file which should include Hasura and PostgreSQL configuration variables, see <a href="https://github.com/trigo-at/hasura-api-testing/blob/main/.env">.env example</a><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// tests/utils/client.ts</span> <span class="k">import</span> <span class="p">{</span><span class="nx">GraphQLClient</span><span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">graphql-request</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span><span class="nx">getSdk</span><span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">./graphql.request</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">jwt</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">jsonwebtoken</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">dotenv</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">dotenv</span><span class="dl">'</span><span class="p">;</span> <span class="c1">// source environment variables</span> <span class="nx">dotenv</span><span class="p">.</span><span class="nx">config</span><span class="p">();</span> </code></pre> </div> <p>We have set up the imports and read in the configuration variables. We can now extract the key from the Hasura configuration parameter (see <code>docker-compose.yml</code> above).<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">let</span> <span class="nx">secret</span> <span class="o">=</span> <span class="dl">''</span><span class="p">;</span> <span class="k">try</span> <span class="p">{</span> <span class="nx">secret</span> <span class="o">=</span> <span class="nx">JSON</span><span class="p">.</span><span class="nx">parse</span><span class="p">(</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">HASURA_GRAPHQL_JWT_SECRET</span><span class="o">!</span><span class="p">).</span><span class="nx">key</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">(</span><span class="nx">e</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nx">error</span><span class="p">(</span> <span class="dl">'</span><span class="s1">HASURA_GRAPHQL_JWT_SECRET must be parsable json and have property key</span><span class="dl">'</span> <span class="p">);</span> <span class="nx">process</span><span class="p">.</span><span class="nx">exit</span><span class="p">(</span><span class="mi">1</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>The client takes options for either a user or an admin:</p> <ul> <li> <strong>User:</strong> <ul> <li> <em>allowedRoles:</em> all roles that a user can have, this will be sent within the JWT</li> <li> <em>defaultRole:</em> the role that is currently active, is sent in the <code>x-hasura-role</code> header, but must also be present in the JWT</li> <li> <em>userId:</em> the user id</li> <li> <em>username:</em> the username</li> </ul> </li> <li> <strong>Admin:</strong> <ul> <li> <em>admin:</em> boolean used to make requests with the <code>admin-secret</code>. No other option needs to be present </li> </ul> </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">type</span> <span class="nx">UserOptions</span> <span class="o">=</span> <span class="p">{</span> <span class="nx">allowedRoles</span><span class="p">?:</span> <span class="kr">string</span><span class="p">[];</span> <span class="nl">defaultRole</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">userId</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">username</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">};</span> <span class="kd">type</span> <span class="nx">AdminOptions</span> <span class="o">=</span> <span class="p">{</span> <span class="na">admin</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="p">};</span> <span class="c1">// define the configuration options for the client</span> <span class="kd">type</span> <span class="nx">Options</span> <span class="o">=</span> <span class="nx">UserOptions</span> <span class="o">|</span> <span class="nx">AdminOptions</span><span class="p">;</span> </code></pre> </div> <p>If we have a user we map the <em>default role</em> to the <code>x-hasura-role</code> header which corresponds to the role in the Hasura Console permissions tab.</p> <p><a href="https://res.cloudinary.com/practicaldev/image/fetch/s--4YsN5aju--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/7ymsy7vvtzi9je3gubng.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--4YsN5aju--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/7ymsy7vvtzi9je3gubng.png" alt="roles"></a><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">mapOptionsToHeaders</span> <span class="o">=</span> <span class="p">(</span><span class="nx">options</span><span class="p">:</span> <span class="nx">Options</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">({</span> <span class="dl">'</span><span class="s1">x-hasura-role</span><span class="dl">'</span><span class="p">:</span> <span class="nx">options</span><span class="p">.</span><span class="nx">defaultRole</span> <span class="o">||</span> <span class="dl">''</span><span class="p">,</span> <span class="p">});</span> </code></pre> </div> <p>All other user options are packed into the JWT which will be read by Hasura and provided as variables for permissions.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">generateJwt</span> <span class="o">=</span> <span class="p">(</span><span class="nx">options</span><span class="p">:</span> <span class="nx">Options</span><span class="p">):</span> <span class="kr">string</span> <span class="o">=&gt;</span> <span class="nx">jwt</span><span class="p">.</span><span class="nx">sign</span><span class="p">(</span> <span class="nx">JSON</span><span class="p">.</span><span class="nx">stringify</span><span class="p">({</span> <span class="na">roles</span><span class="p">:</span> <span class="nx">options</span><span class="p">.</span><span class="nx">allowedRoles</span> <span class="o">||</span> <span class="p">[],</span> <span class="na">userId</span><span class="p">:</span> <span class="nx">options</span><span class="p">.</span><span class="nx">userId</span><span class="p">,</span> <span class="na">username</span><span class="p">:</span> <span class="nx">options</span><span class="p">.</span><span class="nx">username</span><span class="p">,</span> <span class="p">}),</span> <span class="nx">secret</span> <span class="p">);</span> </code></pre> </div> <p>We can now create the main entry point which takes the options and returns an SDK with a user specific GraphQL client embedded.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="k">default</span> <span class="p">(</span><span class="nx">options</span><span class="p">:</span> <span class="nx">Options</span><span class="p">):</span> <span class="nx">ReturnType</span><span class="o">&lt;</span><span class="k">typeof</span> <span class="nx">getSdk</span><span class="o">&gt;</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">GRAPHQL_ENDPOINT</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">GRAPHQL_ENDPOINT is not defined</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">HASURA_GRAPHQL_ADMIN_SECRET</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">HASURA_GRAPHQL_ADMIN_SECRET is not defined</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="c1">// if we do not provide allowedRoles for the client we assume that the defaultRole is an allowed role</span> <span class="k">if</span> <span class="p">(</span><span class="dl">'</span><span class="s1">defaultRole</span><span class="dl">'</span> <span class="k">in</span> <span class="nx">options</span> <span class="o">&amp;&amp;</span> <span class="o">!</span><span class="nx">options</span><span class="p">.</span><span class="nx">allowedRoles</span><span class="p">)</span> <span class="p">{</span> <span class="nx">options</span><span class="p">.</span><span class="nx">allowedRoles</span> <span class="o">=</span> <span class="p">[</span><span class="nx">options</span><span class="p">.</span><span class="nx">defaultRole</span><span class="p">];</span> <span class="p">}</span> </code></pre> </div> <p>We configure a GraphQL client with either an admin user (with an admin secret) or a normal user (with JWT) and pass it to the SDK factory function. This will ensure that all request have the correct headers.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code> <span class="kd">const</span> <span class="nx">client</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">GraphQLClient</span><span class="p">(</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">GRAPHQL_ENDPOINT</span><span class="p">,</span> <span class="p">{</span> <span class="na">headers</span><span class="p">:</span> <span class="dl">'</span><span class="s1">admin</span><span class="dl">'</span> <span class="k">in</span> <span class="nx">options</span> <span class="p">?</span> <span class="p">{</span> <span class="dl">"</span><span class="s2">x-hasura-admin-secret</span><span class="dl">"</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">HASURA_GRAPHQL_ADMIN_SECRET</span> <span class="p">}</span> <span class="p">:</span> <span class="p">{</span> <span class="na">Authorization</span><span class="p">:</span> <span class="s2">`Bearer </span><span class="p">${</span><span class="nx">generateJwt</span><span class="p">(</span><span class="nx">options</span><span class="p">)}</span><span class="s2">`</span><span class="p">,</span> <span class="p">...</span><span class="nx">mapOptionsToHeaders</span><span class="p">(</span><span class="nx">options</span><span class="p">),</span> <span class="p">},</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">getSdk</span><span class="p">(</span><span class="nx">client</span><span class="p">);</span> <span class="p">};</span> </code></pre> </div> <h3> Testing Todo Permissions </h3> <p><strong>Recap:</strong> We want to ensure that users see only their respective to todos.</p> <p><strong>Steps:</strong></p> <ol> <li>clear the database before each test</li> <li>create 2 todos for user <em>Franz</em> </li> <li>create 1 todo for user <em>Herbert</em> </li> <li>get todos for user <em>Franz</em> </li> <li>get todos for user <em>Herbert</em> </li> <li>test that each user sees only his todos</li> </ol> <p>Import dependencies<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">clearDb</span><span class="p">,</span> <span class="p">{</span><span class="nx">closeConnection</span><span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">./utils/clear-db</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">client</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">./utils/client</span><span class="dl">'</span><span class="p">;</span> </code></pre> </div> <p>Setup the test and hooks<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">describe</span><span class="p">(</span><span class="dl">"</span><span class="s2">Todo</span><span class="dl">"</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// reset the database before each run</span> <span class="nx">beforeEach</span><span class="p">(</span><span class="nx">clearDb</span><span class="p">);</span> <span class="c1">// close PG connection after all tests</span> <span class="nx">afterAll</span><span class="p">(</span><span class="nx">closeConnection</span><span class="p">);</span> </code></pre> </div> <p>Create an SDK client for each user. We provide the <code>defaultRole</code> (user), a <code>username</code> and a <code>userId</code> all client requests are scoped to the passed in options.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code> <span class="nx">describe</span><span class="p">(</span><span class="dl">"</span><span class="s2">user: Franz + Herbert</span><span class="dl">"</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">it</span><span class="p">(</span><span class="dl">"</span><span class="s2">should only see his todos</span><span class="dl">"</span><span class="p">,</span> <span class="k">async</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">franzClient</span> <span class="o">=</span> <span class="nx">client</span><span class="p">({</span><span class="na">defaultRole</span><span class="p">:</span><span class="dl">'</span><span class="s1">user</span><span class="dl">'</span><span class="p">,</span> <span class="na">username</span><span class="p">:</span><span class="dl">'</span><span class="s1">franz</span><span class="dl">'</span><span class="p">,</span> <span class="na">userId</span><span class="p">:</span><span class="dl">'</span><span class="s1">1</span><span class="dl">'</span><span class="p">});</span> <span class="kd">const</span> <span class="nx">herbertClient</span> <span class="o">=</span> <span class="nx">client</span><span class="p">({</span><span class="na">defaultRole</span><span class="p">:</span><span class="dl">'</span><span class="s1">user</span><span class="dl">'</span><span class="p">,</span> <span class="na">username</span><span class="p">:</span><span class="dl">'</span><span class="s1">herbert</span><span class="dl">'</span><span class="p">,</span> <span class="na">userId</span><span class="p">:</span><span class="dl">'</span><span class="s1">2</span><span class="dl">'</span><span class="p">});</span> </code></pre> </div> <p>Insert two todos into the database for user <em>Franz</em><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">franzTodo1</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">franzClient</span><span class="p">.</span><span class="nx">AddTodo</span><span class="p">({</span> <span class="na">description</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Franz's first todo item</span><span class="dl">"</span><span class="p">,</span> <span class="na">is_done</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">franzTodo2</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">franzClient</span><span class="p">.</span><span class="nx">AddTodo</span><span class="p">({</span> <span class="na">description</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Franz's second todo item</span><span class="dl">"</span><span class="p">,</span> <span class="na">is_done</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="p">});</span> </code></pre> </div> <p>Insert one todo for user Herbert<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">herbertTodo1</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">herbertClient</span><span class="p">.</span><span class="nx">AddTodo</span><span class="p">({</span> <span class="na">description</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Herbert's first todo item</span><span class="dl">"</span><span class="p">,</span> <span class="na">is_done</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="p">});</span> </code></pre> </div> <p>Now we have <strong>three</strong> todos in the database two for <em>Franz</em> and one for <em>Herbert</em>. We retrieve the todos for each user and assert that the user only sees his own todo items.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code> <span class="c1">// get Franz's todos</span> <span class="kd">const</span> <span class="nx">franzsTodos</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">franzClient</span><span class="p">.</span><span class="nx">GetTodos</span><span class="p">();</span> <span class="c1">// Franz should only see his todos</span> <span class="nx">expect</span><span class="p">(</span><span class="nx">franzsTodos</span><span class="p">.</span><span class="nx">todo</span><span class="p">.</span><span class="nx">map</span><span class="p">(</span><span class="nx">todo</span> <span class="o">=&gt;</span> <span class="nx">todo</span><span class="p">.</span><span class="nx">id</span><span class="p">).</span><span class="nx">sort</span><span class="p">())</span> <span class="p">.</span><span class="nx">toEqual</span><span class="p">([</span> <span class="nx">franzTodo1</span><span class="p">.</span><span class="nx">insert_todo</span><span class="p">?.</span><span class="nx">returning</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">id</span><span class="p">,</span> <span class="nx">franzTodo2</span><span class="p">.</span><span class="nx">insert_todo</span><span class="p">?.</span><span class="nx">returning</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">id</span><span class="p">]);</span> <span class="c1">// get Herbert's todos</span> <span class="kd">const</span> <span class="nx">herbertsTodos</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">herbertClient</span><span class="p">.</span><span class="nx">GetTodos</span><span class="p">();</span> <span class="c1">// Herbert should only see his todos</span> <span class="nx">expect</span><span class="p">(</span><span class="nx">herbertsTodos</span><span class="p">.</span><span class="nx">todo</span><span class="p">.</span><span class="nx">map</span><span class="p">(</span><span class="nx">todo</span> <span class="o">=&gt;</span> <span class="nx">todo</span><span class="p">.</span><span class="nx">id</span><span class="p">).</span><span class="nx">sort</span><span class="p">())</span> <span class="p">.</span><span class="nx">toEqual</span><span class="p">([</span><span class="nx">herbertTodo1</span><span class="p">.</span><span class="nx">insert_todo</span><span class="p">?.</span><span class="nx">returning</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">id</span><span class="p">]);</span> <span class="p">});</span> <span class="p">});</span> <span class="p">});</span> </code></pre> </div> <h2> Conclusion </h2> <p>It is really easy to setup a Hasura API but with this ease we often forget that business logic should be well tested. As soon as the test setup is done it is rather easy to write tests against the API. TypeScript and the tests help to see any breaking API changes that would let your application fail in production.</p> <h3> Notes </h3> <p>Due to the current setup it is not possible to run tests in parallel. The API tests provide no means to isolate a test in a transaction. Keep this in mind as it will increase the time of your test runs.</p> <p>This is all just a starting point.</p> hasura graphql testing jest Develop Electron in Docker Thomas Peklak Wed, 25 Aug 2021 14:30:10 +0000 https://dev.to/trigo/develop-electron-in-docker-52h3 https://dev.to/trigo/develop-electron-in-docker-52h3 <h2> Why </h2> <p>There are several reasons to develop in Docker and not on your host machine. First, when it comes to backend services, you can guarantee that your development runtime is the same as in production, which can eliminate some scenarios where inconsistencies can lead to problems in production.</p> <p>Of course, this doesn’t really apply to Electron because their apps are bundled up and shipped to your users — here you don’t have any control over the environment. Even so, you can have build dependencies where you want to have either an easier setup for the whole development team or you want to guarantee that every developer has the same system dependencies as your build servers installed.</p> <p><strong>My case was different:</strong> my colleague had to introduce a new dependency with a native module. It worked well on his machine, but created a segfault on mine. I’m not familiar with debugging segfaults and getting my development setup up and running again was urgent. Before I turned to Docker I tried different versions of Electron and the library but always ended up with the same result: it worked on other machines but not on mine. The library even worked well using the corresponding NodeJS version there only seemed to be a problem with Electron.</p> <p>As I thought that this was just a temporary issue and would be fixed in future versions of the library or Electron, I was happy to have a temporary solution.</p> <h2> How </h2> <p>Based on this directory structure we can build a Docker image from a Dockerfile which installs all node modules, performs an electron rebuild, and does some other black magic.</p> <p><strong>Directory Structure</strong></p> <ul> <li> package.json</li> <li> package-lock.json</li> <li> Dockerfile</li> <li> src <ul> <li> main.js</li> <li> index.html</li> </ul> </li> </ul> <p>It’s important that your files are not located in the root folder because we want to mount the source directory into the container, so we can continuously work without rebuilding the image. We only need to rebuild the image if there is a change in the npm dependencies.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight docker"><code><span class="c"># use the version that corresponds to your electron version</span> <span class="k">FROM</span><span class="s"> node:14.16</span> <span class="c"># install electron dependencies or more if your library has other dependencies</span> <span class="k">RUN </span>apt-get update <span class="o">&amp;&amp;</span> apt-get <span class="nb">install</span> <span class="se">\ </span> git libx11-xcb1 libxcb-dri3-0 libxtst6 libnss3 libatk-bridge2.0-0 libgtk-3-0 libxss1 libasound2 <span class="se">\ </span> <span class="nt">-yq</span> <span class="nt">--no-install-suggests</span> <span class="nt">--no-install-recommends</span> <span class="se">\ </span> <span class="o">&amp;&amp;</span> apt-get clean <span class="o">&amp;&amp;</span> <span class="nb">rm</span> <span class="nt">-rf</span> /var/lib/apt/lists/<span class="k">*</span> <span class="c"># copy the source into /app</span> <span class="k">WORKDIR</span><span class="s"> /app</span> <span class="k">COPY</span><span class="s"> . .</span> <span class="k">RUN </span><span class="nb">chown</span> <span class="nt">-R</span> node /app <span class="c"># install node modules and perform an electron rebuild</span> <span class="k">USER</span><span class="s"> node</span> <span class="k">RUN </span>npm <span class="nb">install</span> <span class="k">RUN </span>npx electron-rebuild <span class="c"># Electron needs root for sand boxing</span> <span class="c"># see https://github.com/electron/electron/issues/17972</span> <span class="k">USER</span><span class="s"> root</span> <span class="k">RUN </span><span class="nb">chown </span>root /app/node_modules/electron/dist/chrome-sandbox <span class="k">RUN </span><span class="nb">chmod </span>4755 /app/node_modules/electron/dist/chrome-sandbox <span class="c"># Electron doesn't like to run as root</span> <span class="k">USER</span><span class="s"> node</span> <span class="k">CMD</span><span class="s"> bash</span> </code></pre> </div> <p>Now, we can build the Docker image and start a container. If you have other files and folders in your root directory, you need to mount each single one separately. You can’t mount the root directory as this will also overwrite the node modules.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker build <span class="nt">-t</span> electron-wrapper <span class="nb">.</span> docker run <span class="nt">-v</span> /tmp/.X11-unix:/tmp/.X11-unix <span class="nt">-e</span> <span class="nv">DISPLAY</span><span class="o">=</span>unix<span class="nv">$DISPLAY</span> <span class="nt">-v</span><span class="sb">`</span><span class="nb">pwd</span><span class="sb">`</span>/src:/app/src <span class="nt">--rm</span> <span class="nt">-it</span> electron-wrapper bash </code></pre> </div> <p>This should fire up a bash prompt from which you can start your development workflow, e.g. <code>npm start</code>.</p> <h3> Example <code>package.json</code> </h3> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"name"</span><span class="p">:</span><span class="w"> </span><span class="s2">"electron-in-docker"</span><span class="p">,</span><span class="w"> </span><span class="nl">"version"</span><span class="p">:</span><span class="w"> </span><span class="s2">"1.0.0"</span><span class="p">,</span><span class="w"> </span><span class="nl">"description"</span><span class="p">:</span><span class="w"> </span><span class="s2">""</span><span class="p">,</span><span class="w"> </span><span class="nl">"main"</span><span class="p">:</span><span class="w"> </span><span class="s2">"src/main.js"</span><span class="p">,</span><span class="w"> </span><span class="nl">"scripts"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"start"</span><span class="p">:</span><span class="w"> </span><span class="s2">"electron . --no-sandbox"</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="nl">"author"</span><span class="p">:</span><span class="w"> </span><span class="s2">""</span><span class="p">,</span><span class="w"> </span><span class="nl">"license"</span><span class="p">:</span><span class="w"> </span><span class="s2">"ISC"</span><span class="p">,</span><span class="w"> </span><span class="nl">"devDependencies"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"electron"</span><span class="p">:</span><span class="w"> </span><span class="s2">"^13.1.7"</span><span class="p">,</span><span class="w"> </span><span class="nl">"electron-rebuild"</span><span class="p">:</span><span class="w"> </span><span class="s2">"^2.3.5"</span><span class="p">,</span><span class="w"> </span><span class="nl">"libxmljs"</span><span class="p">:</span><span class="w"> </span><span class="s2">"^0.19.7"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h2> Conclusion </h2> <p>This guide works in Linux and likely in WSL2. For macOS, you can take a look at Jake Donham's blog post in the links below, which helped me a lot to get started. I always find it good to have some backup in my developer's toolbox if things break in unpredictable ways. Running programs in Docker is one of my all-time favorites.</p> <h2> Further reading </h2> <ul> <li> <a href="https://blog.jessfraz.com/post/docker-containers-on-the-desktop/">https://blog.jessfraz.com/post/docker-containers-on-the-desktop/</a> </li> <li> <a href="https://jaked.org/blog/2021-02-18-How-to-run-Electron-on-Linux-on-Docker-on-Mac">https://jaked.org/blog/2021-02-18-How-to-run-Electron-on-Linux-on-Docker-on-Mac</a> </li> </ul> <h2> Example repository </h2> <p>If you want to try it out yourself, you can take a look at the <a href="https://github.com/trigo-at/electron-in-docker">electron in docker repository</a>.</p> docker electron