authorizer/server/graph/schema.graphqls

# GraphQL schema example
#
# https://gqlgen.com/getting-started/
scalar Int64
scalar Map
scalar Any

type Meta {
	version: String!
	is_google_login_enabled: Boolean!
	is_facebook_login_enabled: Boolean!
	is_github_login_enabled: Boolean!
	is_email_verification_enabled: Boolean!
	is_basic_authentication_enabled: Boolean!
	is_magic_link_login_enabled: Boolean!
}

type User {
	id: ID!
	email: String!
	email_verified: Boolean!
	signup_methods: String!
	given_name: String
	family_name: String
	middle_name: String
	nickname: String
	# defaults to email
	preferred_username: String
	gender: String
	birthdate: String
	phone_number: String
	phone_number_verified: Boolean
	picture: String
	roles: [String!]!
	created_at: Int64
	updated_at: Int64
}

type VerificationRequest {
	id: ID!
	identifier: String
	token: String
	email: String
	expires: Int64
	created_at: Int64
	updated_at: Int64
}

type Error {
	message: String!
	reason: String!
}

type AuthResponse {
	message: String!
	access_token: String
	expires_at: Int64
	user: User
}

type Response {
	message: String!
}

type ValidJWTResponse {
	valid: Boolean!
	message: String!
}

type Env {
	ADMIN_SECRET: String
	DATABASE_NAME: String
	DATABASE_URL: String
	DATABASE_TYPE: String
	CUSTOM_ACCESS_TOKEN_SCRIPT: String
	SMTP_HOST: String
	SMTP_PORT: String
	SMTP_USERNAME: String
	SMTP_PASSWORD: String
	SENDER_EMAIL: String
	JWT_TYPE: String
	JWT_SECRET: String
	ALLOWED_ORIGINS: [String!]
	AUTHORIZER_URL: String
	APP_URL: String
	REDIS_URL: String
	COOKIE_NAME: String
	RESET_PASSWORD_URL: String
	DISABLE_EMAIL_VERIFICATION: Boolean
	DISABLE_BASIC_AUTHENTICATION: Boolean
	DISABLE_MAGIC_LINK_LOGIN: Boolean
	DISABLE_LOGIN_PAGE: Boolean
	ROLES: [String!]
	PROTECTED_ROLES: [String!]
	DEFAULT_ROLES: [String!]
	JWT_ROLE_CLAIM: String
	GOOGLE_CLIENT_ID: String
	GOOGLE_CLIENT_SECRET: String
	GITHUB_CLIENT_ID: String
	GITHUB_CLIENT_SECRET: String
	FACEBOOK_CLIENT_ID: String
	FACEBOOK_CLIENT_SECRET: String
	ORGANIZATION_NAME: String
	ORGANIZATION_LOGO: String
}

input UpdateEnvInput {
	ADMIN_SECRET: String
	CUSTOM_ACCESS_TOKEN_SCRIPT: String
	OLD_ADMIN_SECRET: String
	SMTP_HOST: String
	SMTP_PORT: String
	SMTP_USERNAME: String
	SMTP_PASSWORD: String
	SENDER_EMAIL: String
	JWT_TYPE: String
	JWT_SECRET: String
	ALLOWED_ORIGINS: [String!]
	AUTHORIZER_URL: String
	APP_URL: String
	REDIS_URL: String
	COOKIE_NAME: String
	RESET_PASSWORD_URL: String
	DISABLE_EMAIL_VERIFICATION: Boolean
	DISABLE_BASIC_AUTHENTICATION: Boolean
	DISABLE_MAGIC_LINK_LOGIN: Boolean
	DISABLE_LOGIN_PAGE: Boolean
	ROLES: [String!]
	PROTECTED_ROLES: [String!]
	DEFAULT_ROLES: [String!]
	JWT_ROLE_CLAIM: String
	GOOGLE_CLIENT_ID: String
	GOOGLE_CLIENT_SECRET: String
	GITHUB_CLIENT_ID: String
	GITHUB_CLIENT_SECRET: String
	FACEBOOK_CLIENT_ID: String
	FACEBOOK_CLIENT_SECRET: String
	ORGANIZATION_NAME: String
	ORGANIZATION_LOGO: String
}

input AdminLoginInput {
	admin_secret: String!
}

input AdminSignupInput {
	admin_secret: String!
}

input SignUpInput {
	email: String!
	given_name: String
	family_name: String
	middle_name: String
	nickname: String
	gender: String
	birthdate: String
	phone_number: String
	picture: String
	password: String!
	confirm_password: String!
	roles: [String!]
}

input LoginInput {
	email: String!
	password: String!
	roles: [String!]
}

input VerifyEmailInput {
	token: String!
}

input ResendVerifyEmailInput {
	email: String!
	identifier: String!
}

input UpdateProfileInput {
	old_password: String
	new_password: String
	confirm_new_password: String
	email: String
	given_name: String
	family_name: String
	middle_name: String
	nickname: String
	gender: String
	birthdate: String
	phone_number: String
	picture: String
}

input UpdateUserInput {
	id: ID!
	email: String
	email_verified: Boolean
	given_name: String
	family_name: String
	middle_name: String
	nickname: String
	gender: String
	birthdate: String
	phone_number: String
	picture: String
	roles: [String]
}

input ForgotPasswordInput {
	email: String!
}

input ResetPasswordInput {
	token: String!
	password: String!
	confirm_password: String!
}

input DeleteUserInput {
	email: String!
}

input MagicLinkLoginInput {
	email: String!
	roles: [String!]
}

input SessionQueryInput {
	roles: [String!]
}

input IsValidJWTQueryInput {
	jwt: String
	roles: [String!]
}

type Mutation {
	signup(params: SignUpInput!): AuthResponse!
	login(params: LoginInput!): AuthResponse!
	magic_link_login(params: MagicLinkLoginInput!): Response!
	logout: Response!
	update_profile(params: UpdateProfileInput!): Response!
	verify_email(params: VerifyEmailInput!): AuthResponse!
	resend_verify_email(params: ResendVerifyEmailInput!): Response!
	forgot_password(params: ForgotPasswordInput!): Response!
	reset_password(params: ResetPasswordInput!): Response!
	# admin only apis
	_delete_user(params: DeleteUserInput!): Response!
	_update_user(params: UpdateUserInput!): User!
	_admin_signup(params: AdminSignupInput!): Response!
	_admin_login(params: AdminLoginInput!): Response!
	_admin_logout: Response!
	_update_env(params: UpdateEnvInput!): Response!
}

type Query {
	meta: Meta!
	session(params: SessionQueryInput): AuthResponse!
	is_valid_jwt(params: IsValidJWTQueryInput): ValidJWTResponse!
	profile: User!
	# admin only apis
	_users: [User!]!
	_verification_requests: [VerificationRequest!]!
	_admin_session: Response!
	_env: Env!
}
update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00			`# GraphQL schema example`
			`#`
			`# https://gqlgen.com/getting-started/`
add signup resolver 2021-07-12 18:22:16 +00:00			`scalar Int64`
feat/role based access (#50) * feat: add roles based access * feat: update roles env + todo * feat: add roles to update profile * feat: add role based oauth * feat: validate role for a given token 2021-09-20 05:06:26 +00:00			`scalar Map`
			`scalar Any`
update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00
feat/add meta query (#38) * feat: add meta query * fix: readme 2021-07-28 07:55:52 +00:00			`type Meta {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`version: String!`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`is_google_login_enabled: Boolean!`
			`is_facebook_login_enabled: Boolean!`
			`is_github_login_enabled: Boolean!`
			`is_email_verification_enabled: Boolean!`
			`is_basic_authentication_enabled: Boolean!`
			`is_magic_link_login_enabled: Boolean!`
feat/add meta query (#38) * feat: add meta query * fix: readme 2021-07-28 07:55:52 +00:00			`}`

add signup resolver 2021-07-12 18:22:16 +00:00			`type User {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`id: ID!`
			`email: String!`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`email_verified: Boolean!`
			`signup_methods: String!`
			`given_name: String`
			`family_name: String`
			`middle_name: String`
			`nickname: String`
			`# defaults to email`
			`preferred_username: String`
			`gender: String`
			`birthdate: String`
			`phone_number: String`
			`phone_number_verified: Boolean`
			`picture: String`
feat/role based access (#50) * feat: add roles based access * feat: update roles env + todo * feat: add roles to update profile * feat: add role based oauth * feat: validate role for a given token 2021-09-20 05:06:26 +00:00			`roles: [String!]!`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`created_at: Int64`
			`updated_at: Int64`
update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00			`}`

add signup resolver 2021-07-12 18:22:16 +00:00			`type VerificationRequest {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`id: ID!`
			`identifier: String`
			`token: String`
			`email: String`
			`expires: Int64`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`created_at: Int64`
			`updated_at: Int64`
add signup resolver 2021-07-12 18:22:16 +00:00			`}`

			`type Error {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`message: String!`
			`reason: String!`
add signup resolver 2021-07-12 18:22:16 +00:00			`}`

feat:allow signup without verification (#39) * fix: add disable basic auth check in resolvers * feat: allow signup without email verification Resolves #32 2021-07-28 10:13:08 +00:00			`type AuthResponse {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`message: String!`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`access_token: String`
			`expires_at: Int64`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`user: User`
add signup resolver 2021-07-12 18:22:16 +00:00			`}`

Add logout resolver Resolves #8 2021-07-15 09:43:00 +00:00			`type Response {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`message: String!`
Add logout resolver Resolves #8 2021-07-15 09:43:00 +00:00			`}`

feat(server): add is_valid_jwt query 2022-01-23 19:02:06 +00:00			`type ValidJWTResponse {`
			`valid: Boolean!`
			`message: String!`
			`}`

fix(server): rename config -> env 2022-01-17 07:42:46 +00:00			`type Env {`
feat: add _update_config mutation 2021-12-31 11:33:37 +00:00			`ADMIN_SECRET: String`
fix: env to return custom access token script 2022-01-24 04:52:55 +00:00			`DATABASE_NAME: String`
			`DATABASE_URL: String`
			`DATABASE_TYPE: String`
			`CUSTOM_ACCESS_TOKEN_SCRIPT: String`
feat: add _update_config mutation 2021-12-31 11:33:37 +00:00			`SMTP_HOST: String`
			`SMTP_PORT: String`
Merge branch 'main' of https://github.com/authorizerdev/authorizer into feat/dashboard 2022-01-08 06:13:12 +00:00			`SMTP_USERNAME: String`
			`SMTP_PASSWORD: String`
feat: add _update_config mutation 2021-12-31 11:33:37 +00:00			`SENDER_EMAIL: String`
			`JWT_TYPE: String`
			`JWT_SECRET: String`
			`ALLOWED_ORIGINS: [String!]`
			`AUTHORIZER_URL: String`
			`APP_URL: String`
			`REDIS_URL: String`
			`COOKIE_NAME: String`
			`RESET_PASSWORD_URL: String`
			`DISABLE_EMAIL_VERIFICATION: Boolean`
			`DISABLE_BASIC_AUTHENTICATION: Boolean`
			`DISABLE_MAGIC_LINK_LOGIN: Boolean`
			`DISABLE_LOGIN_PAGE: Boolean`
			`ROLES: [String!]`
			`PROTECTED_ROLES: [String!]`
			`DEFAULT_ROLES: [String!]`
			`JWT_ROLE_CLAIM: String`
			`GOOGLE_CLIENT_ID: String`
			`GOOGLE_CLIENT_SECRET: String`
			`GITHUB_CLIENT_ID: String`
			`GITHUB_CLIENT_SECRET: String`
			`FACEBOOK_CLIENT_ID: String`
			`FACEBOOK_CLIENT_SECRET: String`
			`ORGANIZATION_NAME: String`
			`ORGANIZATION_LOGO: String`
			`}`

fix(server): rename config -> env 2022-01-17 07:42:46 +00:00			`input UpdateEnvInput {`
feat: add _update_config mutation 2021-12-31 11:33:37 +00:00			`ADMIN_SECRET: String`
fix: env to return custom access token script 2022-01-24 04:52:55 +00:00			`CUSTOM_ACCESS_TOKEN_SCRIPT: String`
fix(server): add old secret check for admin secret update 2022-01-17 07:50:32 +00:00			`OLD_ADMIN_SECRET: String`
feat: add _update_config mutation 2021-12-31 11:33:37 +00:00			`SMTP_HOST: String`
			`SMTP_PORT: String`
Fix SMTP fields for update env mutation 2022-01-24 15:46:29 +00:00			`SMTP_USERNAME: String`
			`SMTP_PASSWORD: String`
feat: add _update_config mutation 2021-12-31 11:33:37 +00:00			`SENDER_EMAIL: String`
			`JWT_TYPE: String`
			`JWT_SECRET: String`
			`ALLOWED_ORIGINS: [String!]`
			`AUTHORIZER_URL: String`
			`APP_URL: String`
			`REDIS_URL: String`
			`COOKIE_NAME: String`
			`RESET_PASSWORD_URL: String`
			`DISABLE_EMAIL_VERIFICATION: Boolean`
			`DISABLE_BASIC_AUTHENTICATION: Boolean`
			`DISABLE_MAGIC_LINK_LOGIN: Boolean`
			`DISABLE_LOGIN_PAGE: Boolean`
			`ROLES: [String!]`
			`PROTECTED_ROLES: [String!]`
			`DEFAULT_ROLES: [String!]`
			`JWT_ROLE_CLAIM: String`
			`GOOGLE_CLIENT_ID: String`
			`GOOGLE_CLIENT_SECRET: String`
			`GITHUB_CLIENT_ID: String`
			`GITHUB_CLIENT_SECRET: String`
			`FACEBOOK_CLIENT_ID: String`
			`FACEBOOK_CLIENT_SECRET: String`
			`ORGANIZATION_NAME: String`
			`ORGANIZATION_LOGO: String`
			`}`

feat: add api for admin login 2021-12-30 04:31:51 +00:00			`input AdminLoginInput {`
			`admin_secret: String!`
			`}`

Update response + input types for admin apis 2022-01-09 13:10:30 +00:00			`input AdminSignupInput {`
			`admin_secret: String!`
			`}`

Add logout resolver Resolves #8 2021-07-15 09:43:00 +00:00			`input SignUpInput {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`email: String!`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`given_name: String`
			`family_name: String`
			`middle_name: String`
			`nickname: String`
			`gender: String`
			`birthdate: String`
			`phone_number: String`
			`picture: String`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`password: String!`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`confirm_password: String!`
feat: use multi roles login (#60) * feat: use multi roles login - add support for protected roles - refactor oauth code * fix: adminUpdate role validation * fix: update app 2021-10-13 16:41:41 +00:00			`roles: [String!]`
add signup resolver 2021-07-12 18:22:16 +00:00			`}`

Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`input LoginInput {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`email: String!`
			`password: String!`
feat: use multi roles login (#60) * feat: use multi roles login - add support for protected roles - refactor oauth code * fix: adminUpdate role validation * fix: update app 2021-10-13 16:41:41 +00:00			`roles: [String!]`
update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00			`}`

Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`input VerifyEmailInput {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`token: String!`
feat: add resolver for token verification Resolves #6 2021-07-13 20:06:11 +00:00			`}`

Add resolver to resend verify email link Resolves #20 2021-07-18 07:26:17 +00:00			`input ResendVerifyEmailInput {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`email: String!`
feat: add integration tests for signup, login, reset_password, forgot_password, verify_email 2021-12-23 05:01:52 +00:00			`identifier: String!`
Add resolver to resend verify email link Resolves #20 2021-07-18 07:26:17 +00:00			`}`

Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`input UpdateProfileInput {`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`old_password: String`
			`new_password: String`
			`confirm_new_password: String`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`email: String`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`given_name: String`
			`family_name: String`
			`middle_name: String`
			`nickname: String`
			`gender: String`
			`birthdate: String`
			`phone_number: String`
			`picture: String`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`}`

fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`input UpdateUserInput {`
feat: use multi roles login (#60) * feat: use multi roles login - add support for protected roles - refactor oauth code * fix: adminUpdate role validation * fix: update app 2021-10-13 16:41:41 +00:00			`id: ID!`
			`email: String`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`email_verified: Boolean`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`given_name: String`
			`family_name: String`
			`middle_name: String`
			`nickname: String`
			`gender: String`
			`birthdate: String`
			`phone_number: String`
			`picture: String`
feat: use multi roles login (#60) * feat: use multi roles login - add support for protected roles - refactor oauth code * fix: adminUpdate role validation * fix: update app 2021-10-13 16:41:41 +00:00			`roles: [String]`
feat: allow admin to user profile (#51) Resolves #49 2021-09-21 02:53:40 +00:00			`}`

fix: get token logic, add buffer time fix typos 2021-07-21 08:06:26 +00:00			`input ForgotPasswordInput {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`email: String!`
Add forgot password resolver Resolves #10 2021-07-18 09:56:29 +00:00			`}`

fix: typos 2021-08-07 08:41:26 +00:00			`input ResetPasswordInput {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`token: String!`
			`password: String!`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`confirm_password: String!`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`}`

			`input DeleteUserInput {`
			`email: String!`
Add forgot password resolver Resolves #10 2021-07-18 09:56:29 +00:00			`}`

fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`input MagicLinkLoginInput {`
feat: add support for magic link login (#65) * feat: add support for magic link login * update readme 2021-11-11 23:52:03 +00:00			`email: String!`
			`roles: [String!]`
			`}`

feat(server): add is_valid_jwt query 2022-01-23 19:02:06 +00:00			`input SessionQueryInput {`
			`roles: [String!]`
			`}`

			`input IsValidJWTQueryInput {`
fix: allow using cookie and header in case of validating jwt 2022-01-24 04:26:12 +00:00			`jwt: String`
feat(server): add is_valid_jwt query 2022-01-23 19:02:06 +00:00			`roles: [String!]`
			`}`

update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00			`type Mutation {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`signup(params: SignUpInput!): AuthResponse!`
			`login(params: LoginInput!): AuthResponse!`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`magic_link_login(params: MagicLinkLoginInput!): Response!`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`logout: Response!`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`update_profile(params: UpdateProfileInput!): Response!`
			`verify_email(params: VerifyEmailInput!): AuthResponse!`
			`resend_verify_email(params: ResendVerifyEmailInput!): Response!`
			`forgot_password(params: ForgotPasswordInput!): Response!`
			`reset_password(params: ResetPasswordInput!): Response!`
			`# admin only apis`
			`_delete_user(params: DeleteUserInput!): Response!`
			`_update_user(params: UpdateUserInput!): User!`
Update response + input types for admin apis 2022-01-09 13:10:30 +00:00			`_admin_signup(params: AdminSignupInput!): Response!`
			`_admin_login(params: AdminLoginInput!): Response!`
feat: add admin logout 2021-12-31 17:36:06 +00:00			`_admin_logout: Response!`
fix(server): rename config -> env 2022-01-17 07:42:46 +00:00			`_update_env(params: UpdateEnvInput!): Response!`
Implement login resolver (#15) * add sign_up_method to users table * add session store * implement login resolver 2021-07-14 18:43:19 +00:00			`}`

			`type Query {`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`meta: Meta!`
feat(server): add is_valid_jwt query 2022-01-23 19:02:06 +00:00			`session(params: SessionQueryInput): AuthResponse!`
			`is_valid_jwt(params: IsValidJWTQueryInput): ValidJWTResponse!`
feat: add resolver to delete user 2021-08-06 13:47:52 +00:00			`profile: User!`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`# admin only apis`
			`_users: [User!]!`
			`_verification_requests: [VerificationRequest!]!`
Update response + input types for admin apis 2022-01-09 13:10:30 +00:00			`_admin_session: Response!`
fix(server): rename config -> env 2022-01-17 07:42:46 +00:00			`_env: Env!`
add signup resolver 2021-07-12 18:22:16 +00:00			`}`