Download as PDF, PPTX
More Related Content
![State management with GraphQL [Angular Minsk, Online, 13.06.20]](https://cdn.slidesharecdn.com/ss_thumbnails/statemanagementwithgraphqlangularminskinternet13-200617021642-thumbnail.jpg?width=640&height=640&fit=bounds)
Similar to Wrapping and Securing REST APIs with GraphQL
Wrapping and Securing REST APIs with GraphQL
- 2. Who is thisfor? @gethackteam
- 3.
- 4.
- 5. What to do…?🤔 @gethackteam
- 6. A little bitabout myself first… @gethackteam
- 7.
- 8. @gethackteam Suppose you’re working onthis great project
- 9.
- 10. @gethackteam Let’s have alook at a REST API
- 11. …that return fixeddata structures REST APIs have multiple endpoints… @gethackteam
- 12.
- 13.
- 14.
- 15.
- 16. I hear youthinking @gethackteam
- 17.
- 18.
- 19. @gethackteam So you continue… (asthe brave frontend developer you are)
- 20. @gethackteam So you continue… (asthe brave developer you are)
- 21.
- 22. …that return fixeddata structures REST APIs have multiple endpoints… @gethackteam
- 23.
- 24.
- 25.
- 26.
- 27.
- 28.
- 29.
- 30.
- 31.
- 32.
- 33.
- 34.
- 35.
- 36. What to do…?🤔 @gethackteam
- 37. @gethackteam A. B. C. Whatto do…? 🤔
- 38. @gethackteam A. B. C. Whatto do…? 🤔
- 39.
- 40. You have multipleoptions! (unfortunately we can’t discuss all) @gethackteam
- 41. You have multipleoptions! (unfortunately we can’t discuss all) @gethackteam
- 42. @gethackteam Create your ownGraphQL server (it’s easier than you think)
- 43. @gethackteam Create your ownGraphQL server (it’s easier than you think)
- 44. How to constructyour schema? @gethackteam
- 45.
- 46.
- 47.
- 48.
- 49.
- 50.
- 51.
- 52. @gethackteam Express server Use resolversto fetch the REST endpoints
- 53.
- 54.
- 55.
- 56.
- 57.
- 58.
- 59.
- 60.
- 61. That was easyright? @gethackteam
- 62. But comes with twochallenges… @gethackteam
- 63.
- 64.
- 65. For this Ilike to use JSON Web Tokens (JWT) @gethackteam
- 66. But comes with twochallenges… @gethackteam
- 67. But comes with twochallenges… @gethackteam Never add private information!
- 68.
- 69.
- 70.
- 71.
- 72.
- 73. @gethackteam JWT /products Only returns datawith a valid JWT API
- 74. JWTs are passedwith every request @gethackteam
- 75.
- 76. @gethackteam Passed to theGraphQL server
- 77.
- 78.
- 79. @gethackteam Use resolvers tofetch the REST endpoints
- 80.
- 81. @gethackteam They can accessthe request headers
- 82. From there youcan just send them along with fetch() @gethackteam
- 83.
- 84. @gethackteam Send them alongwith the fetch() request
- 85. Your REST APIdoesn’t have authentication? @gethackteam
- 86. You can usean authentication server @gethackteam
- 87.
- 88.
- 89.
- 90.
- 91.
- 92.
- 93.
- 94.
- 95. /products @gethackteam JWT Only returns datawith a valid JWT API
- 96. Or create yourown one! @gethackteam
- 97.
- 98.
- 99. But comes with twochallenges… @gethackteam
- 100. But comes with twochallenges… @gethackteam JsonWebToken.sign()
- 101. But comes with twochallenges… @gethackteam
- 102. But comes with twochallenges… @gethackteam JsonWebToken.verify()
- 103.
- 104.
- 105.
- 106.
- 107. Apollo Data sources @gethackteam Usemodels to fetch the REST endpoints
- 108.
- 109.
- 110.
- 111.
- 112.
- 113. It helps youwith caching requests @gethackteam
- 114.
- 115. @gethackteam Cached by default!! ApolloData sources
- 116. You can alsouse memcached or redis @gethackteam
- 117.
- 118. @gethackteam Get data from requestheaders Apollo Data sources
- 119.
- 120. @gethackteam So you canpass them forward to the REST API Apollo Data sources
- 121. So what dowe want? @gethackteam
- 122.
- 123.
- 124. Want to learnmore? Search: Roy Derks@gethackteam https://auth0.com/docs https://www.apollographql.com/docs/