discours.io/core
5
0
Fork 0
Code Pull Requests Actions Projects Activity
Files
752e2dcbdc5645ce4ff8e09d57f861ebf24a837c
core/panel/graphql/mutations.ts
Untone 752e2dcbdc
All checks were successful
Deploy on push / deploy (push) Successful in 2m46s
Details
[0.9.28] - 2025-09-28 
### 🍪 CRITICAL Cross-Origin Auth
- **🔧 SESSION_COOKIE_DOMAIN**: Добавлена поддержка поддоменов `.discours.io` для cross-origin cookies
- **🌐 Cross-Origin SSE**: Исправлена работа Server-Sent Events с httpOnly cookies между поддоменами
- **🔐 Unified Auth**: Унифицированы настройки cookies для OAuth, login, refresh, logout операций
- **📝 MyPy Compliance**: Исправлена типизация `SESSION_COOKIE_SAMESITE` с использованием `cast()`

### 🛠️ Technical Changes
- **settings.py**: Добавлен `SESSION_COOKIE_DOMAIN` с типобезопасной настройкой SameSite
- **auth/oauth.py**: Обновлены все `set_cookie` вызовы с `domain` параметром
- **auth/middleware.py**: Добавлена поддержка `SESSION_COOKIE_DOMAIN` в logout операциях
- **resolvers/auth.py**: Унифицированы cookie настройки в login/refresh/logout resolvers
- **auth/__init__.py**: Обновлены cookie операции с domain поддержкой

### 📚 Documentation
- **docs/auth/sse-httponly-integration.md**: Новая документация по SSE + httpOnly cookies интеграции
- **docs/auth/architecture.md**: Обновлены диаграммы для unified httpOnly cookie архитектуры

### 🎯 Impact
-  **GraphQL API** (`v3.discours.io`) теперь работает с httpOnly cookies cross-origin
-  **SSE сервер** (`connect.discours.io`) работает с теми же cookies
-  **Безопасность**: httpOnly cookies защищают от XSS атак
-  **UX**: Автоматическая аутентификация без управления токенами в JavaScript
2025-09-28 13:06:03 +03:00

249 lines
4.9 KiB
TypeScript
Raw Blame History

export const ADMIN_LOGIN_MUTATION = `
mutation AdminLogin($email: String!, $password: String!) {
login(email: $email, password: $password) {
success
author {
id
name
email
slug
roles
}
error
}
}
`
export const ADMIN_LOGOUT_MUTATION = `
mutation AdminLogout {
logout {
success
}
}
`
export const ADMIN_UPDATE_USER_MUTATION = `
mutation AdminUpdateUser($user: AdminUserUpdateInput!) {
adminUpdateUser(user: $user) {
success
error
}
}
`
export const ADMIN_UPDATE_ENV_VARIABLE_MUTATION = `
mutation AdminUpdateEnvVariable($key: String!, $value: String!) {
updateEnvVariable(key: $key, value: $value)
}
`
export const CREATE_TOPIC_MUTATION = `
mutation CreateTopic($topic_input: TopicInput!) {
create_topic(topic_input: $topic_input) {
error
}
}
`
export const UPDATE_TOPIC_MUTATION = `
mutation UpdateTopic($topic_input: TopicInput!) {
update_topic(topic_input: $topic_input) {
error
}
}
`
export const DELETE_TOPIC_MUTATION = `
mutation DeleteTopic($id: Int!) {
delete_topic_by_id(id: $id) {
error
}
}
`
export const CREATE_COMMUNITY_MUTATION = `
mutation CreateCommunity($community_input: CommunityInput!) {
create_community(community_input: $community_input) {
error
}
}
`
export const UPDATE_COMMUNITY_MUTATION = `
mutation UpdateCommunity($community_input: CommunityInput!) {
update_community(community_input: $community_input) {
error
}
}
`
export const DELETE_COMMUNITY_MUTATION = `
mutation DeleteCommunity($slug: String!) {
delete_community(slug: $slug) {
success
error
}
}
`
export const CREATE_COLLECTION_MUTATION = `
mutation CreateCollection($collection_input: CollectionInput!) {
create_collection(collection_input: $collection_input) {
error
}
}
`
export const UPDATE_COLLECTION_MUTATION = `
mutation UpdateCollection($collection_input: CollectionInput!) {
update_collection(collection_input: $collection_input) {
error
}
}
`
export const DELETE_COLLECTION_MUTATION = `
mutation DeleteCollection($slug: String!) {
delete_collection(slug: $slug) {
error
}
}
`
export const ADMIN_CREATE_INVITE_MUTATION = `
mutation AdminCreateInvite($invite: AdminInviteUpdateInput!) {
adminCreateInvite(invite: $invite) {
success
error
}
}
`
export const ADMIN_UPDATE_INVITE_MUTATION = `
mutation AdminUpdateInvite($invite: AdminInviteUpdateInput!) {
adminUpdateInvite(invite: $invite) {
success
error
}
}
`
export const ADMIN_DELETE_INVITE_MUTATION = `
mutation AdminDeleteInvite($inviter_id: Int!, $author_id: Int!, $shout_id: Int!) {
adminDeleteInvite(inviter_id: $inviter_id, author_id: $author_id, shout_id: $shout_id) {
success
error
}
}
`
export const ADMIN_DELETE_INVITES_BATCH_MUTATION = `
mutation AdminDeleteInvitesBatch($invites: [AdminInviteIdInput!]!) {
adminDeleteInvitesBatch(invites: $invites) {
success
error
}
}
`
export const MERGE_TOPICS_MUTATION = `
mutation MergeTopics($merge_input: TopicMergeInput!) {
merge_topics(merge_input: $merge_input) {
error
message
topic {
id
title
slug
}
stats
}
}
`
export const SET_TOPIC_PARENT_MUTATION = `
mutation SetTopicParent($topic_id: Int!, $parent_id: Int) {
set_topic_parent(topic_id: $topic_id, parent_id: $parent_id) {
error
message
topic {
id
title
slug
parent_ids
}
}
}
`
export const ADMIN_UPDATE_TOPIC_MUTATION = `
mutation AdminUpdateTopic($topic: AdminTopicInput!) {
adminUpdateTopic(topic: $topic) {
success
error
topic {
id
title
slug
body
community
parent_ids
}
}
}
`
export const ADMIN_UPDATE_REACTION_MUTATION = `
mutation AdminUpdateReaction($reaction: AdminReactionUpdateInput!) {
adminUpdateReaction(reaction: $reaction) {
success
error
}
}
`
export const ADMIN_DELETE_REACTION_MUTATION = `
mutation AdminDeleteReaction($reaction_id: Int!) {
adminDeleteReaction(reaction_id: $reaction_id) {
success
error
}
}
`
export const ADMIN_RESTORE_REACTION_MUTATION = `
mutation AdminRestoreReaction($reaction_id: Int!) {
adminRestoreReaction(reaction_id: $reaction_id) {
success
error
}
}
`
export const ADMIN_CREATE_TOPIC_MUTATION = `
mutation AdminCreateTopic($topic: AdminTopicInput!) {
adminCreateTopic(topic: $topic) {
success
error
topic {
id
title
slug
body
community
parent_ids
}
}
}
`
export const ADMIN_UPDATE_PERMISSIONS_MUTATION = `
mutation AdminUpdatePermissions {
adminUpdatePermissions {
success
error
message
}
}
`
View Git Blame Copy Permalink