A utility library on top of webonyx/graphql-php library.
Note: v1 and v2 of this library was built on top of youshido/graphql.
This library allows you to write your GraphQL queries in simple to write controllers:
use TheCodingMachine\GraphQL\Controllers\Annotations\Query;
use TheCodingMachine\GraphQL\Controllers\Annotations\Mutation;
class UserController
{
/**
* @Query
* @return User[]
*/
public function users(int $limit, int $offset): array
{
// Some code that returns an array of "users".
// This completely replaces the "resolve" method.
}
/**
* @Mutation
* @return User
*/
public function saveUser(UserInput $user): User
{
// Some code that saves a user.
// This completely replaces the "resolve" method.
}
}Your methods can type-hint against:
- int
- string
- bool
- float
- DateTimeImmutable or DateTimeInterface
- an array
- any object (if you provide a factory for the object type)
There is an additional support for authentication and authorization:
use TheCodingMachine\GraphQL\Controllers\Annotations\Query;
use TheCodingMachine\GraphQL\Controllers\Annotations\Mutation;
class UserController
{
/**
* @Query
* @Logged
* @Right("CAN_VIEW_USER_LIST")
* @return User[]
*/
public function users(int $limit, int $offset): array
{
//
}
}Note: when you use the @Logged or @Right annotation, the field will NOT be part of the GraphQL schema
if the current user is not logged or has not the requested right.
This is a good thing as unprivileged users will not even be aware of the existence of the fields they are not supposed to see. This can however be a problem with some GraphQL clients as the schema is changing from one user to another.
If you want to keep a constant schema, you can use the FailWith annotation that contains the value that
will be returned for user with insufficient rights.
class UserController
{
/**
* If a user is not logged or if the user has not the right "CAN_VIEW_USER_LIST",
* the value returned will be "null"
*
* @Query
* @Logged
* @Right("CAN_VIEW_USER_LIST")
* @FailWith(null)
* @return User[]
*/
public function users(int $limit, int $offset): array
{
//
}
}You can type-hint against arrays as long as you document the PHP-Doc correctly:
/**
* @Query
* @return User[] <=== we specify that the array is an array of User objects.
*/
public function users(int $limit, int $offset): array
{
// Some code that returns an array of "users".
// This completely replaces the "resolve" method.
}When you specify an object type-hint, graphql-controllers will delegate the object creation to an hydrator.
You must pass this hydrator in parameter when building the ControllerQueryProvider.
As an alternative, you can also manually specify the GraphqlType of your return type manually.
/**
* @Query(outputType="UserListType")
*/
public function users(int $limit, int $offset)
{
// Whatever the return type of the method, it will be managed as a GraphQL UserListType
// UserListType must extend Webonix's Type
}You can also specify the name of an entry in the container that resolves to the GraphQL type to be used.
/**
* @Query(outputType="userListType")
*/
public function users(int $limit, int $offset)
{
// The return type is fetched from the container. Expected name is "userListType"
}Note: for container discovery to work, you must pass the container when constructing the ControllerQueryProvider object.
You can create a GraphQL union type "on the fly", using the pipe (|) operator in the PHPDoc:
/**
* @Query
* @return Company|Contact <== can return a company OR a contact
*/
public function companyOrContact(int $id)
{
// Some code that returns a company or a contact.
}By default, the name of the query is the name of the method. You can override the name of the query by passing the "name" attribute to the @Query annotation:
/**
* @Query(name="my_query_name")
*/
public function someMethodName()
{
// The GraphQL query name will be "my_query_name", not "someMethodName"
}You can of course do the same thing with the "@Mutation" annotation.
$ composer require thecodingmachine/graphql-controllersThe package contains a PSR-15 compatible middleware: TheCodingMachine\GraphQL\Controllers\GraphQLMiddleware.
Put this middleware in your middleware pipe.
The middleware expects a GraphQL schema to be created. This package comes with a GraphQL schema compatible with Webonix schemas that will automatically be filled from the GraphQL controllers you will write.
Controllers will be fetched from the container (it must be PSR-11 compliant).
Pseudo-code to initialize the middleware looks like this:
$registry = new Registry(
$container, // The container containing the controllers (PSR-11 compliant),
$authorizationService // Object to manage authorization (the @Right annotation)
$authenticationService, // Object to manage authentication (the @Logged annotation)
$annotationReader, // A Doctrine annotation reader
$typeMapper, // Object used to map PHP classes to GraphQL types.
$hydrator, // Object used to create Objects from sent data (mostly for mutation)
);
$queryProvider = new AggregateControllerQueryProvider([
"myController1", // These are the name of entries in the container to fetch the GraphQL controllers
"myController2"
],
$registry
);Alternatively, you can use auto-discovery of the controllers if you put them in a common namespace:
$queryProvider = new GlobControllerQueryProvider('App\\GraphQL\\Controllers', $this->getRegistry(), $container, $cache, $cacheTtl);The application will look into the 'App\GraphQL\Controllers' namespace for GraphQL controllers. It assumes that the container contains an entry whose name is the fully qualified class name of the container. Note: $cache is a PSR-16 compatible cache.
When you use webonyx/graphql-php, you will typically extend the AbstractObjectType class to declare your GraphQL types.
Typical code looks like this:
class PostType extends AbstractObjectType
{
public function build($config)
{
// you can define fields in a single addFields call instead of chaining multiple addField()
$config->addFields([
'title' => [
'type' => new StringType(),
'args' => [
'truncate' => new BooleanType()
],
'resolve' => function (Post $source, $args) {
return (!empty($args['truncate'])) ? explode(' ', $source->getTitle())[0] . '...' : $source->getTitle();
}
]
]);
}
}In graphql-controllers, you can instead define a simple class with annotations:
/**
* @Type(class=Post::class)
*/
class PostType extends AbstractAnnotatedObjectType
{
/**
* @Field()
*/
public function customField(Post $source, bool $truncate = false): string
{
return (!empty($args['truncate'])) ? explode(' ', $source->getTitle())[0] . '...' : $source->getTitle();
}
}TODO: continue
When you use webonyx/graphql-php, you will typically extend the AbstractObjectType class to declare your GraphQL types.
Typical code looks like this:
class PostType extends AbstractObjectType
{
public function build($config)
{
// you can define fields in a single addFields call instead of chaining multiple addField()
$config->addFields([
'title' => [
'type' => new StringType(),
'args' => [
'truncate' => new BooleanType()
],
'resolve' => function (Post $source, $args) {
return (!empty($args['truncate'])) ? explode(' ', $source->getTitle())[0] . '...' : $source->getTitle();
}
]
]);
}
}You can replace the whole build method with methods with the @Field annotation:
class PostType extends AbstractAnnotatedObjectType
{
/**
* @Field()
*/
public function customField(Post $source, bool $truncate = false): string
{
return (!empty($args['truncate'])) ? explode(' ', $source->getTitle())[0] . '...' : $source->getTitle();
}
}You simply have to:
- extend the
AbstractAnnotatedObjectTypeclass - add the @Field annotation
- when constructing the object, you must pass the $registry object as the first argument:
$postType = new PostType($registry);
Please note that the first argument of the method is the object we are calling the field on. The remaining arguments are converted to GraphQL arguments of the field.
Just like the @Query and @Mutation annotations, the @Field annotation can be passed an optional "name" and "outputType" attribute:
class PostType extends AbstractAnnotatedObjectType
{
/**
* @Field(name="customField", outputType="myCustomField")
*/
public function getCustomField(Post $source, bool $truncate = false): CustomField
{
// ...
}
}If your object has a lot of getters, you might end up in your type class mapping a lot of redundant code:
class PostType extends AbstractAnnotatedObjectType
{
/**
* @Field(name="name")
*/
public function getName(Post $source): string
{
return $source->getName();
}
}GraphQL-controllers provides a shortcut for this:
/**
* @Type(class=Post::class)
* @SourceField(name="name")
*/
class PostType extends AbstractAnnotatedObjectType
{
}By putting the @SourceField in the class docblock, you let GraphQL-controllers know that the type exposes the
getName method of the underlying Post object (GraphQL-controllers will look for methods named name(), getName() and isName()).
For the @SourceField annotation to work, you need to add a @Type annotation that will let the GraphQL-controllers
library now the underlying type.
You can also check for logged users or users with a specific right using the logged and right properties of the annotation:
/**
* @Type(class=Post::class)
* @SourceField(name="name")
* @SourceField(name="status", logged=true, right=@Right(name="CAN_ACCESS_STATUS"))
*/
class PostType extends AbstractAnnotatedObjectType
{
}Just like the @Logged and @Right annotations for regular fields, you can define a default value to use
in case the user has insufficient permissions:
/**
* @SourceField(name="status", logged=true, right=@Right(name="CAN_ACCESS_STATUS"), failWith=null)
*/The failWith value will be returned in case of insufficient permissions. Note that if you do not put the
failWith attribute and if a user has insufficient permissions, then the field will not appear at all in the schema.
Querying this field will therefore result in an error.
In some very particular cases, you might not know exactly the list of @SourceField annotations at development time.
If you need to decide the list of @SourceField at runtime, you can implement the FromSourceFieldsInterface:
/**
* @Type(class=Post::class)
*/
class PostType implements FromSourceFieldsInterface
{
/**
* Dynamically returns the array of source fields to be fetched from the original object.
*
* @return SourceFieldInterface[]
*/
public function getSourceFields(): array
{
// You can want to enable fields conditionnaly based on feature flags...
if (ENABLE_STATUS_GLOBALLY) {
return [
new SourceField(['name'=>'status', 'logged'=>true]),
];
} else {
return [];
}
}
}Your PHP model extend each others. GraphQL-controllers will do its best to represent this hierarchy of objects in GraphQL using interfaces.
Let's say you have 2 classes: Contact and User (which extends Contact)
class Contact
{
// ...
}
class User extends Contact
{
// ...
}Let's say you create 2 types for those 2 classes:
/**
* @Type(class=Contact::class)
*/
class ContactType
{
// ...
}
/**
* @Type(class=User::class)
*/
class UserType
{
// ...
}Now, let's assume you have a query that returns a contact:
class ContactController
{
/**
* @Query()
*/
public function getContact(): Contact
{
// ...
}
}
When writing a GraphQL query, you can query using fragments:
getContact {
name
... User {
email
}
}Behind the scene, GraphQL-controllers will detect that the Contact class is extended by the User class. Because the
class is extended, a GraphQL ContactInterface interface is created dynamically. You don't have to do anything.
The GraphQL User type will automatically implement this ContactInterface. The interface contains all the fields
available in the Contact type.
Webonix's GraphQL library tends to use a very deep stack. This error does not necessarily mean your code is going into an infinite loop. Simply try to increase the maximum allowed nesting level in your XDebug conf:
xdebug.max_nesting_level=500