GraphQL schema documentation

2025-11-20 12:02:22 +03:00 · 2022-11-09 13:39:25 +01:00
parent 4918440c3a
commit 4f01c123c3
8 changed files with 349 additions and 57 deletions
--- a/crates/graphql/src/model/oauth.rs
+++ b/crates/graphql/src/model/oauth.rs
@@ -12,7 +12,7 @@
 // See the License for the specific language governing permissions and
 // limitations under the License.

-use async_graphql::{Context, Object, ID};
+use async_graphql::{Context, Description, Object, ID};
 use mas_storage::{oauth2::client::lookup_client, PostgresqlBackend};
 use oauth2_types::scope::Scope;
 use sqlx::PgPool;
@@ -21,75 +21,97 @@ use url::Url;

 use super::{BrowserSession, User};

+/// An OAuth 2.0 session represents a client session which used the OAuth APIs
+/// to login.
+#[derive(Description)]
 pub struct OAuth2Session(pub mas_data_model::Session<PostgresqlBackend>);

-#[Object]
+#[Object(use_type_description)]
 impl OAuth2Session {
+    /// ID of the object.
    pub async fn id(&self) -> ID {
        ID(self.0.data.to_string())
    }

+    /// OAuth 2.0 client used by this session.
    pub async fn client(&self) -> OAuth2Client {
        OAuth2Client(self.0.client.clone())
    }

+    /// Scope granted for this session.
    pub async fn scope(&self) -> String {
        self.0.scope.to_string()
    }

+    /// The browser session which started this OAuth 2.0 session.
    pub async fn browser_session(&self) -> BrowserSession {
        BrowserSession(self.0.browser_session.clone())
    }

+    /// User authorized for this session.
    pub async fn user(&self) -> User {
        User(self.0.browser_session.user.clone())
    }
 }

+/// An OAuth 2.0 client
+#[derive(Description)]
 pub struct OAuth2Client(pub mas_data_model::Client<PostgresqlBackend>);

-#[Object]
+#[Object(use_type_description)]
 impl OAuth2Client {
+    /// ID of the object.
    pub async fn id(&self) -> ID {
        ID(self.0.data.to_string())
    }

+    /// OAuth 2.0 client ID
    pub async fn client_id(&self) -> &str {
        &self.0.client_id
    }

+    /// Client name advertised by the client.
    pub async fn client_name(&self) -> Option<&str> {
        self.0.client_name.as_deref()
    }

+    /// Client URI advertised by the client.
    pub async fn client_uri(&self) -> Option<&Url> {
        self.0.client_uri.as_ref()
    }

+    /// Terms of services URI advertised by the client.
    pub async fn tos_uri(&self) -> Option<&Url> {
        self.0.tos_uri.as_ref()
    }

+    /// Privacy policy URI advertised by the client.
    pub async fn policy_uri(&self) -> Option<&Url> {
        self.0.policy_uri.as_ref()
    }

+    /// List of redirect URIs used for authorization grants by the client.
    pub async fn redirect_uris(&self) -> &[Url] {
        &self.0.redirect_uris
    }
 }

+/// An OAuth 2.0 consent represents the scope a user consented to grant to a
+/// client.
+#[derive(Description)]
 pub struct OAuth2Consent {
    scope: Scope,
    client_id: Ulid,
 }

-#[Object]
+#[Object(use_type_description)]
 impl OAuth2Consent {
+    /// Scope consented by the user for this client.
    pub async fn scope(&self) -> String {
        self.scope.to_string()
    }

+    /// OAuth 2.0 client for which the user granted access.
    pub async fn client(&self, ctx: &Context<'_>) -> Result<OAuth2Client, async_graphql::Error> {
        let mut conn = ctx.data::<PgPool>()?.acquire().await?;
        let client = lookup_client(&mut conn, self.client_id).await?;