-
Notifications
You must be signed in to change notification settings - Fork 49
/
server.ts
55 lines (45 loc) · 1.24 KB
/
server.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
import { randomBytes } from "crypto";
import express from "express";
import { sendResult, getGraphQLParameters, processRequest, renderGraphiQL, shouldRenderGraphiQL } from "graphql-helix";
import helmet from "helmet";
import { schema } from "./schema";
const app = express();
app.use(express.json());
app.use((_req, res, next) => {
res.locals.cspNonce = randomBytes(16).toString("hex");
next();
});
app.use((req, res, next) =>
helmet({
contentSecurityPolicy: {
directives: {
"default-src": ["'self'", "data:", `'nonce-${res.locals.cspNonce}'`],
},
},
})(req, res, next)
);
app.use("/graphql", async (req, res) => {
const request = {
body: req.body,
headers: req.headers,
method: req.method,
query: req.query,
};
if (shouldRenderGraphiQL(request)) {
res.send(renderGraphiQL({ nonce: res.locals.cspNonce }));
} else {
const { operationName, query, variables } = getGraphQLParameters(request);
const result = await processRequest({
operationName,
query,
variables,
request,
schema,
});
sendResult(result, res);
}
});
const port = process.env.PORT || 4000;
app.listen(port, () => {
console.log(`GraphQL server is running on port ${port}.`);
});