hello i am using gofiber + ent + graphql + supertokens I am SuperTokens.com #support-questions-legacy

hello, i am using gofiber + ent + graphql + super...

04/21/2023, 5:11 AM

hello, i am using gofiber + ent + graphql + supertokens. I am not able to check whether user is authorized or not. here is my gofiber handler:

Copy code

go
// RegisterRoutes registers the routes
func (r *Router) RegisterRoutes() {
    r.App.All("/query", gqlQueryHandler(r.DB.Ent))
    r.App.Get("/playground", gqlPlaygroundHandler("Playground", "/query"))
}

// gqlQueryHandler handles graphql queries
func gqlQueryHandler(ent *ent.Client) fiber.Handler {
    return func(ctx *fiber.Ctx) error {
        h := handler.NewDefaultServer(graph.NewSchema(ctx, ent))
        adaptor.HTTPHandlerFunc(func(w http.ResponseWriter, r *http.Request) {
            h.ServeHTTP(w, r)
        })(ctx)
        return nil
    }
}

// gqlPlaygroundHandler handles graphql playground
func gqlPlaygroundHandler(title string, endpoint string) fiber.Handler {
    return adaptor.HTTPHandlerFunc(playground.Handler(title, endpoint))
}

here is my createAccount mutation resolver:

Copy code

go
// CreateAccount is the resolver for the createAccount field.
func (r *mutationResolver) CreateAccount(ctx context.Context, input ent.CreateAccountInput) (*ent.Account, error) {
    // Only authenticated user's can send request
    if !supertokens.IsAuthed(ctx) {
        return nil, gqlerror.Errorf("Unauthorized")
    }

    // TODO: validate params

    // Create account
    acc, err := r.ent.Account.Create().SetInput(input).Save(ctx)
    if err != nil {
        log.Error().Err(err).Msg("Error creating account")
        if ent.IsConstraintError(err) {
            return nil, gqlerror.Errorf("Account exists")
        }
        return nil, err
    }

    log.Debug().Msg("Account created")
    return acc, nil
}

and this is my IsAuthed function

Copy code

go
// IsAuthed returns whether the request is being made by an authenticated user
func IsAuthed(ctx context.Context) bool {
    return session.GetSessionFromRequestContext(ctx) != nil
}

04/21/2023, 5:12 AM

i am testing the createAccount mutation from insomnia. After logging in to supertokens, whenever I try to use createAccount mutatuon I get Unauthorized error

04/21/2023, 5:13 AM

In IsAuthed function I also tried to pass fiber context but still the same

rp_st

04/21/2023, 5:27 AM

are you calling verifySession / getSession anywhere at all? If you aren't please do so - see our docs. If you are, please enable backend debug logs and show the output.

04/21/2023, 5:49 AM

Copy code

r.App.All("/query", supertokens.VerifySession(nil), gqlQueryHandler(r.DB.Ent))

rp_st

04/21/2023, 5:50 AM

can you enable backend debug logs and show the output?

04/21/2023, 5:52 AM

https://cdn.discordapp.com/attachments/1098838306126581813/1098848602664742922/server_supertokens_1_logs.txt

rp_st

04/21/2023, 5:52 AM

not the core logs

rp_st

04/21/2023, 5:52 AM

the backend debug logs

rp_st

04/21/2023, 5:53 AM

https://supertokens.com/docs/session/troubleshooting/how-to-troubleshoot

04/21/2023, 5:55 AM

oops

04/21/2023, 5:55 AM

wait

04/21/2023, 6:02 AM

https://cdn.discordapp.com/attachments/1098838306126581813/1098851185743626240/st.log

rp_st

04/21/2023, 6:12 AM

session verification did succeed!

rp_st

04/21/2023, 6:13 AM

perhaps the way you have integrated it is wrong. See our example app: https://github.com/supertokens/supertokens-golang/blob/master/examples/with-fiber/main.go

3 Views

Previous Next