--------------------------------------------------------------------------------
/docs/app-management/analytics.md:
--------------------------------------------------------------------------------
1 | # Analytics
2 |
3 | Scaphold comes full circle with a comprehensive analytics dashboard so you can always get the latest updates on the performance, growth, and usage of your app in production.
4 |
5 | Name | Description
6 | -------------- | --------------
7 | Request Counts | Total number of requests broken down by hour
8 | Average Response Time | Measures latency (in seconds) in your API broken down by hour
9 | User Growth | Tracks the number of new users that are signing up for your app
10 | Data Throughput | Amount of data (in MB) that's being transmitted over the wire to your client apps
11 | Resolvers by Type | Sorts your GraphQL requests by the associated type to help break down which part of your API is being used the most
12 | Error Counts | Total number of errors broken down by hour
13 | Application Logs | Table of all the latest logs for your API
14 |
15 | Our goal is to give you as much transparency as we can into your GraphQL API, so you can make the best app possible. Please email us at [support@scaphold.io](mailto:support@scaphold.io)
16 | if you have any requests for metrics you would like to see that would help you better measure and analyze the success of your app.
--------------------------------------------------------------------------------
/docs/app-management/export-schema.md:
--------------------------------------------------------------------------------
1 | # Export Schema
2 |
3 | Exporting your schema can be useful if you want to see what the raw JSON version of your data model looks like.
4 |
5 | Scaphold manages two versions of your schema:
6 |
7 | 1. **Standard GraphQL**: Download a standard version of your GraphQL schema that you can use with any GraphQL server.
8 |
9 | 2. **Scaphold Schema**: Save a copy of your up-to-date GraphQL schema that you can use to create an app on Scaphold.
--------------------------------------------------------------------------------
/docs/app-management/fork-app.md:
--------------------------------------------------------------------------------
1 | # Fork App
2 |
3 | Forking an app will make an exact copy of the app in a new environment. That means the new app will automatically configure itself to be identical to the
4 | source but it will have its own data, schema, and API. This is useful for testing schema changes before making any migrations to your production applications.
5 | Once you have tested your changes and manually merged them into your production app you can safely remove the fork.
6 |
7 | You can fork an app in 2 ways:
8 |
9 | 1. **Apps Page > Underneath each API link** for each app panel (top-right)
10 |
11 | 2. **Settings Page > Advanced**
--------------------------------------------------------------------------------
/docs/app-management/multi-region.md:
--------------------------------------------------------------------------------
1 | # Regions
2 |
3 | Scaphold is now deployed in multiple regions and counting! With growing demand for Scaphold's service by developers around the world, we're always open to setting up new infrastructure
4 | so that your data lives closer to you.
5 |
6 | Currently, we're deployed in...
7 |
8 | 1. US West (Oregon)
9 |
10 | 2. EU West (Ireland)
11 |
12 | 3. More to come. If you wish to have Scaphold deployed on a data center in your region, please contact us at [support@scaphold.io](mailto:support@scaphold.io).
13 |
14 | To switch between regions, select the region you wish to use in the **header bar of the Scaphold dashboard**.
15 |
16 | 
17 |
18 |
--------------------------------------------------------------------------------
/docs/app-management/teams.md:
--------------------------------------------------------------------------------
1 | # Teams
2 |
3 | App development is always more fun and faster in teams! Which is why we've provided you the ability to collaborate with others on apps.
4 |
5 | There are two ways to add a teammate:
6 |
7 | 1. **Bottom left of the left side panel** in the app-view.
8 |
9 | 
10 |
11 | 2. **Settings Page > Team**
12 |
13 | 
14 |
15 | In addition to adding a teammate, you may also want to remove a teammate. To do so, navigate to the **Settings Page > Team**, click on the bubble under **Teammates**
16 | that designates the user you wish to remove from this app, and a dropdown will appear that will allow you to remove that user.
17 |
18 |
--------------------------------------------------------------------------------
/docs/app-management/token-expiration.md:
--------------------------------------------------------------------------------
1 | # Token Expiration
2 |
3 | Scaphold gives you full control over how your tokens are managed for authentication. As such, we provide the ability to control the expiration of the JsonWebToken (JWT) measured in seconds
4 | from when it was issued. This refers to the token issued during mutation calls such as `loginUser`, or any social auth flow.
5 |
6 | To configure the token expiration time, please navigate to **Settings Page > Advanced**
7 |
8 | !!! note
9 |
10 | The default value is 1,296,000 seconds (i.e. 15 days, or ~2 weeks).
--------------------------------------------------------------------------------
/docs/authentication/change-password.md:
--------------------------------------------------------------------------------
1 | # Change Password
2 |
3 | There are two ways to change a user's password:
4 |
5 | 1. **Reset password**
6 |
7 | Use the `updateUser` mutation to update a user's password given a user's `id`, and new `password`. Note here that no server-side validation for the old password.
8 |
9 | 2. **Forgot password**
10 |
11 | Use the `changeUserPassword` mutation to update a user's password given a user's `id`, `oldPassword`, and `newPassword`.
--------------------------------------------------------------------------------
/docs/authentication/permissions.md:
--------------------------------------------------------------------------------
1 | ## Permissions (Authorization)
2 |
3 | !!! note "Important"
4 |
5 | If a type has no permissions then anyone can perform any operations on it so make sure you add them before launching!
6 |
7 | Scaphold implements a permissions system that allows you to define powerful access control rules by leveraging a combination of features from role-based access control systems (RBAC) as well as the connections in your API's graph to define what users can access what information.
8 |
9 | Each type and field in your schema has an optional set of permissions applied to it. When a user tries to complete an operation, your API checks the type- and field-level permissions and validates that the user is authorized to complete that operation. When you login to the Scaphold portal, you are logged in as an admin user and will have complete access to your application.
10 |
11 | To add a permission, click on the `+` sign in the top right for the panel of the type you wish to add a permission to. There you can add a permission for all of the fields of a particular type or only specific fields on that type.
12 |
13 | 
14 |
15 | The following sections delineate the various types of permissioning that you can apply to your data.
16 |
17 |
20 |
21 | ### Everyone
22 |
23 | `Everyone` scoped permissions are the loosest available. Everyone can access the type. No login required.
24 |
25 | ### Authenticated
26 |
27 | `Authenticated` scoped permissions required a valid auth token to be present in the request headers (See [authentication](#token-auth) for more details). Scaphold provides a number of authentication mechanisms that all work seamlessly with your permissions.
28 |
29 | ### Roles
30 |
31 | GraphQL types used in role-based permissioning to manage roles, members, and access levels.
32 |
33 | ```graphql
34 | type User {
35 | id: ID!
36 | username: String
37 | password: Secret
38 | credentials: CredentialConnection
39 | lastLogin: DateTime
40 | roles: RoleConnection
41 | createdAt: DateTime
42 | modifiedAt: DateTime
43 | }
44 |
45 | type Role {
46 | id: ID
47 | name: String
48 | members: UserConnection
49 | createdAt: DateTime
50 | modifiedAt: DateTime
51 | }
52 |
53 | type UserRoles {
54 | accessLevel: AccessLevel
55 | createdAt: DateTime
56 | modifiedAt: DateTime
57 | }
58 |
59 | enum AccessLevel {
60 | admin
61 | readwrite
62 | readonly
63 | }
64 | ```
65 |
66 | `Role` permissions allow you to layer more generic role-based authentication methods on top of the connection and user-based permissions you already have. We have added a few queries and mutations that make it easy to manage your new roles and permissions.
67 |
68 | In particular, you role-based permissioning is concerned with 3 object types: `User`, `Role`, and a through type called `UserRoles`. In addition, we use the enum `AcessLevel` to manage how much access we should provide a particular instance of a `UserRole`.
69 |
70 | Name | Inputs | Description
71 | -------------- | -------------- | --------------
72 | getRole | `id: ID!` | Get objects of type Role by id.
73 | createRole | `name: String!` | Creates a new role and enrolls the creator as a role admin.
74 | updateRole | `id: ID!`, `name: String` | Update an existing role.
75 | deleteRole | `id: ID!` | Delete an existing role. Only role admins can delete roles.
76 | addToUserRolesConnection | `userId: ID!`, `roleID: ID!`, `accessLevel: AccessLevel` | Enrolls a user as a member of a role. Only admins can create other admins and you must be an admin to enroll another user.
77 | updateUserRolesConnection | `userId: ID!`, `roleID: ID!`, `accessLevel: AccessLevel` | Updates a connection between an object of type `User` and an object of type `Role`.
78 | removeFromUserRolesConnection | `userId: ID!`, `roleId: ID!` | Removes a user from a role. Anyone can disenroll themself and admins can disenroll anyone.
79 |
80 | By default, we create a special `admin` role for each of your apps. Users that are enrolled into the `admin` role are given full access to your GraphQL API without having to specify any custom permissions.
81 |
82 | !!! note
83 |
84 | `Role` scoped permissions can be used alongside existing `Relation` scoped permissions to easily create complex access control rules. Let's take an example where we would like to have a **set of notes** that only executives of my company can see.
85 | Part of our schema might look something like this:
86 |
87 | ```graphql
88 | // Schema
89 | type User {
90 | id: ID!
91 | username: String!
92 | authoredExecNotes: ExecutiveNoteConnection
93 | }
94 |
95 | type ExecutiveNote {
96 | id: ID!
97 | author: User
98 | content: String
99 | }
100 |
101 | // Permissions
102 | [{
103 | scope: "ROLE",
104 | roles: ["Executives"],
105 | read: true,
106 | create: true
107 | }
108 | {
109 | scope: "RELATION",
110 | userFields: ["author"],
111 | update: true,
112 | delete: true
113 | }]
114 | ```
115 |
116 | ### Relation
117 |
118 | Example of `Relation` permission
119 |
120 | !!! quote ""
121 |
122 | In Slack, a user should only be able to view messages that belong to a channel that you're a member of. Looking at the example to the right, if you wanted to add this permission, you would add a `Relation` scoped permission to the `Message` type with the user fields `channel.members`.
123 |
124 | 
125 |
126 | ```graphql
127 | # Simple Slack schema
128 |
129 | type Channel {
130 | id: ID!
131 | messages: [Message]
132 | members: [User]
133 | }
134 |
135 | type Message {
136 | id: ID!
137 | body: String!
138 | channel: Channel
139 | }
140 | ```
141 |
142 | `Relation` scoped permissions use the connections in your data's graph to authorize behaviors. When you add a `Relation` permission, you can specify a path in your data graph that from the type you're adding the permission
143 | to back to the authenticated user.
144 |
145 | In our example, you would have to use the query like this:
146 |
147 | ```graphql
148 | {
149 | viewer {
150 | user {
151 | channels {
152 | messages {
153 | body
154 | }
155 | }
156 | }
157 | }
158 | }
159 | ```
160 |
161 | !!! warning ""
162 |
163 | Querying through `viewer.allMessages` would throw a permissioning error.
164 |
165 | In order to keep queries that are protected by `Relation` scoped permissions performant, you must query through `viewer.user`. This allows us to trace the user field's path to ensure that you're only accessing objects
166 | related to the logged in user.
--------------------------------------------------------------------------------
/docs/authentication/social.md:
--------------------------------------------------------------------------------
1 | ## Social
2 |
3 | For social authentication, Scaphold has a solution for that as well! Integrating with OAuth providers like Facebook, Google, and Twitter has never been easier with Scaphold's Auth0 integration.
4 |
5 | Find out how to [integrate social authentication](/integrations/social/setup/) or [integrate passwordless authentication](/integrations/passwordless/).
6 |
--------------------------------------------------------------------------------
/docs/authentication/super-users.md:
--------------------------------------------------------------------------------
1 | ## Super Users
2 |
3 | Scaphold provides the ability for you to generate an admin token that gives you super user access that supercedes all permission rules and access controls.
4 | This is a great tool for importing or exporting data, any one-off data management tasks that need to be done, or scheduled jobs.
5 |
6 | Please refer to the [Admin Token section](/app-management/admin-tokens/) under App Management for more details.
--------------------------------------------------------------------------------
/docs/authentication/tokens.md:
--------------------------------------------------------------------------------
1 | Scaphold seamlessly handles user authentication for you. Each Scaphold application comes with a default User model which includes a `username` and `password` that are used to authenticate your users.
2 | We securely encrypt and store each user's password as well as ensure that they are not readable.
3 |
4 | ## Token
5 |
6 | Logging in a user is simple. Use the `loginUser` mutation we provide you and we will return a JSON Web Token (JWT) if the credentials match. To authenticate a user, you simply set the `Authorization` HTTP header of your request with the format `Bearer {TOKEN_FROM_LOGIN_USER}`.
7 |
8 | This token informs your API what user is logged in at any given time and enables our permissions system to layer access control rules on your data.
9 |
10 | !!! tip ""
11 |
12 | Example `loginUser` query
13 |
14 | ```shell
15 | curl -X POST https://us-west-2.api.scaphold.io/graphql/scaphold-graphql \
16 | -H "Content-Type: application/json" \
17 | -d '{"query": "mutation LoginUserQuery ($input: LoginUserInput!) { loginUser(input: $input) { token user { id username createdAt } } }",
18 | "variables": { "input": { "username": "elon@tesla.com", "password": "SuperSecretPassword" } } }'
19 | ```
20 |
21 | ```javascript
22 | import request from 'request';
23 |
24 | const data = {
25 | "query": `mutation LoginUserQuery ($input: LoginUserInput!) {
26 | loginUser(input: $input) {
27 | token
28 | user {
29 | id
30 | username
31 | createdAt
32 | }
33 | }
34 | }`,
35 | "variables": {
36 | "input": {
37 | "username": "elon@tesla.com",
38 | "password": "SuperSecretPassword"
39 | }
40 | }
41 | };
42 |
43 | request({
44 | url: "https://us-west-2.api.scaphold.io/graphql/scaphold-graphql",
45 | method: "POST",
46 | json: true,
47 | headers: {
48 | "content-type": "application/json",
49 | },
50 | body: data
51 | }, (error, response, body) => {
52 | if (!error && response.statusCode == 200) {
53 | console.log(JSON.stringify(body, null, 2));
54 | } else {
55 | console.log(error);
56 | console.log(response.statusCode);
57 | }
58 | });
59 | ```
60 |
61 | The above command returns an object structured like this:
62 |
63 | ```json
64 | {
65 | "data": {
66 | "loginUser": {
67 | "token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE0ODI4ODI0ODgsImlhdCI6MTQ4MTU4NjQ4OCwiYXVkIjoiNDRiZTA4NmYtYmYzMy00OTk3LTgxMzYtOWMwMWQ5OWE4OGM0IiwiaXNzIjoiaHR0cHM6Ly9zY2FwaG9sZC5pbyIsInN1YiI6IjcifQ.TDRtD5vD7MIVrViDgVMThhzOzE_teufTo51a4GZ3aGA",
68 | "user": {
69 | "id": "VXNlcjo3",
70 | "username": "elon@tesla.com",
71 | "createdAt": "2016-12-08T20:43:14.000Z"
72 | }
73 | }
74 | }
75 | }
76 | ```
77 |
78 | !!! note "**Important**: Use the `token` in the response in the header of future requests as:"
79 |
80 | `Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE0ODI4ODI0ODgsImlhdCI6MTQ4MTU4NjQ4OCwiYXVkIjoiNDRiZTA4NmYtYmYzMy00OTk3LTgxMzYtOWMwMWQ5OWE4OGM0IiwiaXNzIjoiaHR0cHM6Ly9zY2FwaG9sZC5pbyIsInN1YiI6IjcifQ.TDRtD5vD7MIVrViDgVMThhzOzE_teufTo51a4GZ3aGA`
81 |
--------------------------------------------------------------------------------
/docs/changelog.md:
--------------------------------------------------------------------------------
1 | # Changelog
2 |
3 | ## May 7, 2017
4 |
5 | - Added ability to add connections in the "Add Type" and "Edit Type" side bars
6 |
7 | - Bug fixes:
8 | - Enums now allow single character values
9 | - Fix authentication error in Scaphold admin portal for expired or malformed tokens
10 |
11 | ## April 22, 2017
12 |
13 | - Added **new** [Hobby pricing tier](https://scaphold.io/pricing)
14 |
15 | - Algolia `query` input field is no longer mandatory
16 |
17 | - Bug fixes:
18 | - Fixed font-face for non-Mac environments
19 |
20 | ## April 12, 2017
21 |
22 | - Added [Algolia geo-search query parameters](/integrations/search/#geo-search)
23 |
24 | - Updated docs and layout
25 |
26 | ## April 3, 2017
27 |
28 | - Check expired and/or invalid token if `Authorization` header is provided
29 |
30 | - Authorization errors for invalid tokens now throw `401` error status codes instead of `403`
31 |
32 | - `401` errors are thrown if auth token is malformed now
33 |
34 | - Bug fixes:
35 | - Top-level error handling should not throw stack trace
36 |
37 | ## March 21, 2017
38 |
39 | - Upgraded subscriptions package to Apollo 1.0
40 |
41 | ## March 10, 2017
42 |
43 | - Added [AND & OR operators](/coredata/queries/#querying-with-and-or)
44 |
45 | - Allow enum connections
46 |
47 | - Bug fixes:
48 | - Algolia delete indexes after integration is deleted
49 | - Stripe integration via custom logic
50 | - Role scoped permissions update for admin user
51 |
52 | ## February 22, 2017
53 |
54 | - List of date errors
55 |
56 | - Bug fixes:
57 | - Updates with logic functions causing problems on return values.
58 |
59 | ## February 17, 2017
60 |
61 | - Added [persisted queries](/persisted-queries/)
62 |
63 | - Added `JSON` type for fields
64 |
65 | - Bug fixes:
66 | - Fix for iOS and Android push notifications
67 | - Return unmasked Stripe IDs
68 | - Apollo Optics bug to stop background tasks
69 |
70 | ## February 9, 2017
71 |
72 | - Deeply nested mutation permissions: you can now use deep `userFields` to authorize permissions for mutations multple models away.
73 |
74 | - `node` on `viewer` now returns app ID
75 |
76 | ## February 1, 2017
77 |
78 | - `self` option for permissions
79 |
80 | - Formatting for type descriptions
81 |
82 | - Custom payment plans now an option
83 |
84 | ## January 23, 2017
85 |
86 | - UTF8 databases
87 |
88 | - Bug fixes:
89 | - Fix for `_typename` in aggregations.
90 |
91 | ## January 17, 2017
92 |
93 | - Added [aggregations on connections](/aggregations/basics/)
94 |
95 | ## January 9, 2017
96 |
97 | - [Scaphold Community Page](https://scaphold.io/community/)! Find all the resources you need to launch a production app with GraphQL.
98 |
99 | - Bug fixes:
100 | - Subscriptions filter with ID now accepts opaque unique ID properly
101 |
102 | ## January 6, 2017
103 |
104 | - [Custom Logic](#custom-logic): Use Scaphold's powerful webhook system to define custom business logic for your apps.
105 |
106 | - Added enums as values to `orderBy` arguments on connections
107 |
108 | ## December 28, 2016
109 |
110 | - Extended ordering functionality on a connection to order by an enum field
111 |
112 | ## December 26, 2016
113 |
114 | - [New landing page](https://scaphold.io)!
115 |
116 | - [User authentication](#token):
117 | - Reset password
118 | - Forgot password
119 |
120 | - Better error handling:
121 | - JSON syntax errors in Query Variables (no need to input empty object literal anymore)
122 | - Accessing apps that don't exist or belong to you won't hang on loading page anymore
123 |
124 | - Updated [referral email](https://scaphold.io/referral)!
125 |
126 | - DateTime input form in Explorer page
127 |
128 | ## December 7, 2016
129 |
130 | - [Multiple Regions](#regions): We're launched to two regions now - US West (Oregon) and EU West (Ireland).
131 | Please message us if you have a need for a new data center in your region!
132 |
133 | - [Super Tokens](#super-tokens): Create a new super token with a click of a button. Use this for administrative tasks.
134 |
135 | - [Token Expiration](#token-expiration): Configure the expiration time of your JWT tokens for your users.
136 |
--------------------------------------------------------------------------------
/docs/community.md:
--------------------------------------------------------------------------------
1 | # [Community](https://scaphold.io/community/)
2 |
3 | ## [Slack](http://slack.scaphold.io)
4 |
5 | Join the Scaphold community Slack channel! This is where we all hang out :tada:
6 |
7 | ## [Featured](https://scaphold.io/community/projects/)
8 |
9 | Scaphold has featured projects that have been built from our community of amazing developers.
10 |
11 | ## [Learn](https://scaphold.io/community/learn/)
12 |
13 | Learn from a spectacular list of resources to get you ramped up on GraphQL, Raect, Apollo, and more. We aggregate articles from across entire
14 | GraphQL community to help you find the right learning experience for you.
15 |
16 | ## [Projects](https://scaphold.io/community/projects/)
17 |
18 | The Scaphold community builds new projects & starter kits all the time. Check them out on our
19 | community page! If you have a project you would like to feature let us know on our [Slack Community Channel](http://slack.scaphold.io).
20 |
21 | ## [Blog](https://scaphold.io/community/blog/)
22 |
23 | Follow our blog for the latest news on GraphQL, Scaphold, and more. We'll write about best practices, how to pair GraphQL with popular technologies that you might use already, and even what we're up to ourselves.
24 |
25 | ## [FAQ](https://scaphold.io/community/questions/)
26 |
27 | Have a question? It's probably been answered before! Make your way to Scaphold's FAQ to get quick answers on frequently asked questions.
--------------------------------------------------------------------------------
/docs/coredata/index.md:
--------------------------------------------------------------------------------
1 | # Core Data
2 |
3 | Scaphold's core data platform allows you to easily define complex data models that are instantly deployed
4 | to a production GraphQL API backed by a highly available SQL cluster. Core Data provides a great set of
5 | tools for powering core application logic.
6 |
7 | Every type in your schema that implements the `Node` interface is backed by core data. That means every
8 | type that implements `Node` maps to a single table and can be related to any other core data types via
9 | `Connection` fields. Each core data type `X` also receives a `createX`, `updateX`, and `deleteX` mutation as well
10 | as various ways to read the data with `getX`, `allX`, and through connections.
11 |
12 | Scaphold allows you to write GraphQL queries that are compiled down to SQL which means you get powerful
13 | filtering abilities with `WhereArgs` as well as compound `orderBy` expressions. We even expose the ability
14 | for you to index certain fields in your data so that you can optimize the queries that are important to your
15 | application.
--------------------------------------------------------------------------------
/docs/coredata/mutations.md:
--------------------------------------------------------------------------------
1 | ## Mutations
2 |
3 | A GraphQL mutation is a write followed by a fetch in one operation.
4 |
5 | Mutations are your means of modifying data in your API. Each core data type `X`, gets a `createX`, `updateX`, and `deleteX`
6 | mutation. Input arguments are automatically created to fit your schema and can be inspected from GraphiQL's Doc Explorer.
7 |
8 | Here's an example of each type of mutation:
9 |
10 | ### Create
11 |
12 | !!! tip ""
13 |
14 | Example request to create a user
15 |
16 | ```shell
17 | curl -X POST https://us-west-2.api.scaphold.io/graphql/scaphold-graphql \
18 | -H "Content-Type: application/json" \
19 | -d '{ "query": "mutation CreateUser($user: CreateUserInput!) { createUser(input: $user) { changedUser { id username } } }",
20 | "variables": { "user": { "username": "elon@tesla.com", "password": "SuperSecretPassword" } } }'
21 | ```
22 |
23 | ```javascript
24 | import request from 'request';
25 |
26 | const data = {
27 | "query": `
28 | mutation CreateUser($user: CreateUserInput!) {
29 | createUser(input: $user) {
30 | changedUser {
31 | id
32 | username
33 | }
34 | }
35 | }
36 | `,
37 | "variables": {
38 | "user": {
39 | "username": "elon@tesla.com",
40 | "password": "SuperSecretPassword"
41 | }
42 | }
43 | };
44 |
45 | request({
46 | url: "https://us-west-2.api.scaphold.io/graphql/scaphold-graphql",
47 | method: "POST",
48 | json: true,
49 | headers: {
50 | "content-type": "application/json",
51 | },
52 | body: data
53 | }, (error, response, body) => {
54 | if (!error && response.statusCode == 200) {
55 | console.log(JSON.stringify(body, null, 2));
56 | } else {
57 | console.log(error);
58 | console.log(response.statusCode);
59 | }
60 | });
61 | ```
62 |
63 | The above command returns an object structured like this:
64 |
65 | ```json
66 | {
67 | "data": {
68 | "createUser": {
69 | "changedUser": {
70 | "id": "VXNlcjo3",
71 | "username": "elon@tesla.com"
72 | }
73 | }
74 | }
75 | }
76 | ```
77 |
78 | !!! warning ""
79 |
80 | The request above may throw an error since there's a **uniqueness constrainst set automatically** on the User model's `username` field.
81 |
82 | In this request, JSON-formatted variables are used to send an object as part of the payload for the mutation request.
83 | The dollar sign ($) specifies a GraphQL variable, and the variable definition can be found in the variables section
84 | of the request. Another thing to note here is that when introducing variables in the mutation string,
85 | `$user: CreateUserInput!` means that that variable is of type `CreateUserInput!` and is required (!).
86 |
87 | ### Nested Create
88 |
89 | As an added convenience you are able to create objects and associate them in the same request.
90 |
91 | For example, let's say we were making an app to help friends manage group trips. For our app we would
92 | have a schema where `User`s have `Group`s and `Group`s have a `Trip`. If we were starting a new
93 | `Group` then we would likely want to start a new `Trip` at the same time. then you
94 | could create both a `Group` and a `Trip` as well as associate them in a connection with this query.
95 |
96 | !!! tip ""
97 |
98 | Example request to create a trip and group, then relate them simultaneously:
99 |
100 | ```graphql
101 | mutation CreateNested($input: CreateTripInput!) {
102 | createTrip(input: $input) {
103 | changedTrip {
104 | destination
105 | group {
106 | name
107 | }
108 | }
109 | }
110 | }
111 | ```
112 |
113 | Notice the nested `group` field in the input variable:
114 |
115 | ```
116 | {
117 | "trip": {
118 | "destination": "San Francisco",
119 | "group": {
120 | "name": "Seattlites"
121 | }
122 | }
123 | }
124 | ```
125 |
126 | !!! note ""
127 |
128 | If you provide an object id as well as a nested input argument, the object id will take precedence
129 | and the nested object will not be created. In the example above, there would also be a field
130 | `groupId` of type ID in the `CreateTripInput` type. If you were to provide both a `group` and `groupId`,
131 | the `groupId` would take precendence and the new trip would be associated with the existing group
132 | with that id instead of making a new group.
133 |
134 | ### Update
135 |
136 | You can also make a mutation to update data. The update operation performs a non-destructive update
137 | to an object in your dataset. I.E. Update only updates the fields that you include as part of the
138 | input. The object's `id` is required in every update mutation so that we can uniquely identify the
139 | object you would like to update. If you don't know it, you should perform a query operation to fetch
140 | the data first, or save it in your application's state after creating the object.
141 |
142 | !!! tip ""
143 |
144 | Example request to update a user
145 |
146 | ```shell
147 | curl -X POST https://us-west-2.api.scaphold.io/graphql/scaphold-graphql \
148 | -H "Content-Type: application/json" \
149 | -d '{ "query": "mutation UpdateUser($user: UpdateUserInput!) { updateUser(input: $user) { changedUser { id username biography } } }",
150 | "variables": { "user": { "id": "VXNlcjox", "biography": "Spends his days saving the world with renewable energy." } } }'
151 | ```
152 |
153 | ```javascript
154 | import request from 'request';
155 |
156 | const data = {
157 | "query": `
158 | mutation UpdateUser($user: UpdateUserInput!) {
159 | updateUser(input: $user) {
160 | changedUser {
161 | id
162 | username
163 | biography
164 | }
165 | }
166 | }
167 | `,
168 | "variables": {
169 | "user": {
170 | "id": "VXNlcjox",
171 | "biography": "Spends his days saving the world with renewable energy."
172 | }
173 | }
174 | };
175 |
176 | request({
177 | url: "https://us-west-2.api.scaphold.io/graphql/scaphold-graphql",
178 | method: "POST",
179 | json: true,
180 | headers: {
181 | "content-type": "application/json",
182 | },
183 | body: data
184 | }, (error, response, body) => {
185 | if (!error && response.statusCode == 200) {
186 | console.log(JSON.stringify(body, null, 2));
187 | } else {
188 | console.log(error);
189 | console.log(response.statusCode);
190 | }
191 | });
192 | ```
193 |
194 | The above command returns an object structured like this:
195 |
196 | ```json
197 | {
198 | "data": {
199 | "updateUser": {
200 | "changedUser": {
201 | "id": "VXNlcjox",
202 | "username": "Elon Musk",
203 | "biography": "Spends his days saving the world with renewable energy."
204 | }
205 | }
206 | }
207 | }
208 | ```
209 |
210 | !!! note "Managing Connection IDs"
211 |
212 | For connections, in order to update a connection field's ID to remove the connected object, you should set the related ID field to `""` (empty string, double quotes).
213 |
214 | ### Delete
215 |
216 | Use delete operations to delete data from your API. Delete requires the unique global identifier `id`
217 | of the piece of data that you wish to delete. Upon deleting data, you will receive the data back one
218 | last time in case you need it again, and to serve as confirmation that that particular object was removed.
219 |
220 | !!! tip ""
221 |
222 | Example request to delete a user
223 |
224 | ```shell
225 | curl -X POST https://us-west-2.api.scaphold.io/graphql/scaphold-graphql \
226 | -H "Content-Type: application/json" \
227 | -d '{ "query": "mutation DeleteUser($user: DeleteUserInput!) { deleteUser(input: $user) { changedUser { id username } } }",
228 | "variables": { "user": { "id": "VXNlcjo4" } } }'
229 | ```
230 |
231 | ```javascript
232 | import request from 'request';
233 |
234 | const data = {
235 | "query": `
236 | mutation DeleteUser($user: DeleteUserInput!) {
237 | deleteUser(input: $user) {
238 | changedUser {
239 | id
240 | username
241 | }
242 | }
243 | }
244 | `,
245 | "variables": {
246 | "user": {
247 | "id": "VXNlcjo4"
248 | }
249 | }
250 | };
251 |
252 | request({
253 | url: "https://us-west-2.api.scaphold.io/graphql/scaphold-graphql",
254 | method: "POST",
255 | json: true,
256 | headers: {
257 | "content-type": "application/json",
258 | },
259 | body: data
260 | }, (error, response, body) => {
261 | if (!error && response.statusCode == 200) {
262 | console.log(JSON.stringify(body, null, 2));
263 | } else {
264 | console.log(error);
265 | console.log(response.statusCode);
266 | }
267 | });
268 | ```
269 |
270 | The above command returns an object structured like this:
271 |
272 | ```json
273 | {
274 | "data": {
275 | "deleteUser": {
276 | "changedUser": {
277 | "id": "VXNlcjo4",
278 | "username": "elon@spacex.com"
279 | }
280 | }
281 | }
282 | }
283 | ```
284 |
285 | !!! warning ""
286 |
287 | The request above may return `null`. This is an indication that you tried to delete a piece of data
288 | that doesn't exist.
--------------------------------------------------------------------------------
/docs/coredata/schema.md:
--------------------------------------------------------------------------------
1 | ## The Schema
2 |
3 | Every application you build on Scaphold will have a schema. A schema consists of a set of types and a set of
4 | connections between those types. This connected web of types creates the 'graph' that will come to define your API.
5 |
6 | One of GraphQL's biggest benefits is that it provides a mechanism to express types at the API level. Types have
7 | existed in general purpose programming languages and other query languages like SQL for years so it's about
8 | time we brought it to APIs.
9 |
10 | There are **two main classes of types** that you need to be aware of on Scaphold.
11 |
12 | 1. Types that implement the `Node` interface.
13 | These are first-class entities in your Scaphold API. We will generate queries and mutations for them, you may create
14 | connections between them, and you may use them with event-based integrations.
15 |
16 | 2. Types that *don't* implement the `Node` interface.
17 | These are auxiliary structures in your GraphQL API and these objects are stored inline within other `Node` types.
18 | Scaphold will not create queries and mutations for non-node types nor can you use them to fire event-based integrations.
19 | You can, however, still relate them to other objects via the `List` type or as an inline object.
20 |
21 | Scaphold's [Schema Designer](https://scaphold.io/apps) allows you to define complex schemas in a fraction of the
22 | time while also offering you a convenient place to setup access control rules ([permissions](#permissions)) for your
23 | data. As you define the structure of your schema we'll generate the backend that will host your custom GraphQL API. By
24 | default we generate a `get`, `create`, `update`, and `delete` operation for each type in your schema. And to give you that
25 | extra boost, we also create mutations to handle user authentication, schema migration, and integration management.
26 |
27 | !!! tip ""
28 |
29 | Example schema
30 |
31 | ```graphql
32 | type ScapholdSchema {
33 | id: ID!
34 | name: String!
35 | description: String
36 | types: [ScapholdType]
37 | }
38 |
39 | type ScapholdType {
40 | id: ID!
41 | name: String!
42 | description: String
43 | kind: "OBJECT" | "ENUM" | "INTERFACE"
44 | values: [String] # if ENUM
45 | fields: [ScapholdField] # if INTERFACE or OBJECT
46 | interfaces: [String] # if OBJECT
47 | permissions: [ScapholdPermission]
48 | }
49 |
50 | type ScapholdField {
51 | name: String!
52 | description: String
53 | type: String!
54 | ofType: String
55 | nonNull: Boolean
56 | unique: Boolean
57 | reverseName: String
58 | }
59 |
60 | interface Node {
61 | id: ID!
62 | }
63 | ```
64 |
65 | ### Scalars
66 |
67 | Name | Description
68 | -------------- | --------------
69 | ID | The ID scalar type represents a unique identifier, often used to refetch an object or as the key for a cache. The ID type is serialized in the same way as a String; however, defining it as an `ID` signifies that it is not intended to be human‐readable.
70 | String | A UTF‐8 character sequence
71 | Text | Character sequence with unlimited length (cannot be indexed or have a default value)
72 | Int | A signed 32-bit integer
73 | Float | A signed double-precision floating-point value
74 | Boolean | `true` or `false`
75 | DateTime | Valid timestamp that can be converted to standard ISO 8601 date time format.
76 |
77 | ### Types
78 |
79 | Scaphold provides 3 objects types to start off with: User, Role, and File.
80 |
81 | ```graphql
82 | type User implements Node {
83 | id: ID!
84 | username: String!
85 | password: String!
86 | roles: RoleConnection
87 | createdAt: DateTime!
88 | modifiedAt: DateTime!
89 | lastLogin: DateTime!
90 | }
91 |
92 | type Role implements Node {
93 | id: ID!
94 | name: String!
95 | members: UserConnection
96 | createdAt: TimeStamp!
97 | modifiedAt: TimeStamp!
98 | }
99 |
100 | type File implements Node, Blob {
101 | id: ID!
102 | name: String
103 | blobUrl: String
104 | blobMimeType: String
105 | createdAt: DateTime!
106 | modifiedAt: DateTime!
107 | }
108 | ```
109 |
110 | Scaphold provides 3 interfaces to start off with: Node, Timestamped, and Blob.
111 |
112 | ```graphql
113 | interface Node {
114 | id: ID!
115 | }
116 |
117 | interface Timestamped {
118 | createdAt: DateTime!
119 | modifiedAt: DateTime!
120 | }
121 |
122 | interface Blob {
123 | blobUrl: String
124 | blobMimeType: String
125 | }
126 | ```
127 |
128 | Scaphold provides 1 enum off the bat called AccessLevel.
129 |
130 | ```graphql
131 | enum AccessLevel {
132 | readonly
133 | readwrite
134 | admin
135 | }
136 | ```
137 |
138 | Name | Description
139 | -------------- | --------------
140 | Object | These are the bread and butter of the GraphQL type system and schema. They are the model definitions of your data, telling the GraphQL server what types exist, the fields that belong to a type, and the complex relations between your data. GraphQL queries are validated against this type system. Scaphold allows you to easily define your types without having to write any server-side code, so you can leverage the benefits of GraphQL from your client side, without having to write this all yourself.
141 | Interface | An interface is an abstract type that must be implemented by a type. The fields belonging to an interface must also exist on the type that implements it.
142 | Enum | Enums are special scalar types that restrict values to a finite set of data.
143 |
144 | **Adding a Type**
145 |
146 | In the Schema Designer tab once you've created your app, click the dropdown on the top right to add a type.
147 |
148 | 
149 |
150 | ### Type Modifiers
151 |
152 | Name | Description
153 | -------------- | --------------
154 | List | A List indicates that this field will return an array of a particular type. This is denoted in GraphQL as `[ ... ]` surrounding the name of a type or scalar.
155 | Non-Null | The Non-Null type modifier can also be used when defining arguments for a field, which will cause the GraphQL server to return a validation error if a null value is passed as that argument, whether in the GraphQL string or in the variables. This is denoted in GraphQL as a `!` following the name of a type or scalar.
156 |
157 | ### Fields
158 |
159 | In GraphQL, like many other type systems, each type will have a set of fields associated with it. Fields are used to describe a particular type, and types in Scaphold will come by default
160 | with an `id`, `createdAt`, and `modifiedAt` fields as part of implementing the `Node` and `Timestamped` interfaces. These can be removed when creating a new type; however, a type must have at least one field.
161 |
162 | **Adding a Field**
163 |
164 | In the Schema Designer tab once you've created your type, click the dropdown on the top right of a Type panel.
165 |
166 | 
167 |
--------------------------------------------------------------------------------
/docs/coredata/subscriptions.md:
--------------------------------------------------------------------------------
1 | ## Subscriptions
2 |
3 | When Facebook open-sourced GraphQL, they described how applications can perform reads
4 | with queries, and writes with mutations. However, oftentimes clients want to get pushed
5 | updates from the server when data they care about changes. Enter Subscriptions. **Subscriptions
6 | make real-time functionality a first class citizen in GraphQL!**
7 |
8 | Subscriptions offer a clean and efficient way to get pushed updates in real-time. They act
9 | in parallel to mutations. Just like how mutations describe the set of actions you can
10 | take to change your data, subscriptions define the set of events that you can subscribe
11 | to when data changes. In fact, you can think of subscriptions as a way to react to
12 | mutations made elsewhere.
13 |
14 | For example, think about a chat application like **Slack**. To create a good user experience,
15 | our application needs to stay up to date at all times. I.E. when a co-worker sends me a message,
16 | I shouldn't have to refresh the page to see the message. A much better solution is to have the
17 | server push my chat client the message as soon as it is created. This is how subscriptions work.
18 | When someone creates a message (or in other words issues a mutation), the server immediately
19 | pushes the data to every client that is both subscribed to that event.
20 |
21 | !!! warning ""
22 |
23 | **GraphQL Subscriptions require a web socket connection.** This is client-specific. We use Apollo Client
24 | for our web apps as they have functionality to add a web socket handler to their base network interface.
25 |
26 | !!! tip ""
27 |
28 | Example request to subscribe and get a real-time feed of when any user logs in or is created
29 |
30 | > Query
31 |
32 | ```graphql
33 | subscription SubscribeToUser($user: [UserMutationEvent]!) {
34 | subscribeToUser(mutations: $user) {
35 | mutation
36 | value {
37 | id
38 | username
39 | }
40 | }
41 | }
42 | ```
43 |
44 | > Variables
45 |
46 | ```json
47 | {
48 | "user": [
49 | "loginUser",
50 | "createUser"
51 | ]
52 | }
53 | ```
54 |
55 | ### Subscriptions in GraphiQL
56 |
57 | > Query
58 |
59 | ```graphql
60 | subscription SubscribeToNewMessages($messageFilter:MessageSubscriptionFilter) {
61 | subscribeToMessage(mutations:[createMessage], filter:$messageFilter) {
62 | mutation
63 | value {
64 | id
65 | content
66 | channel {
67 | id
68 | name
69 | }
70 | createdAt
71 | }
72 | }
73 | }
74 | ```
75 |
76 | > Variables
77 |
78 | ```json
79 | {
80 | "messageFilter": {
81 | "content": {
82 | "matches": ".\*GraphQL.\*"
83 | },
84 | "channelId": {
85 | "eq": "SavedChannelId"
86 | }
87 | }
88 | }
89 | ```
90 |
91 | You can play around with Subscriptions in our GraphiQL page! It's hooked up to handle web socket connections, so Subscription
92 | requests will work immediately. Normal HTTP clients won't work with Subscriptions since it requires a web socket connection.
93 |
94 |
95 |
96 | This is what I'm doing:
97 |
98 | 1) I create a `Channel` object with name `GraphQL News!` and save its id.
99 |
100 | 2) By issuing the query to the right, I subscribe to all new messages that are created in the `GraphQL News!` channel
101 | and that have content matching the regex `.*GraphQL.*`
102 |
103 | 3) I send a `Message` with content `GraphQL is future!` to channel `GraphQLNews!` and see a message pushed into the Subscription stream.
104 |
105 | 4) I send a `Message` with content `REST is dead!` to channel `GraphQLNews!` and no message appears in the Subscription stream.
106 |
107 | 5) I send a `Message` with content `GraphQL Subscriptions are Awesome!` to channel `GraphQLNews!` and another message appears in the Subscription stream.
108 |
109 | 6) I close the Subscription by double-tapping the pulse icon in the subscription stream.
110 |
111 | Subscribing to changes to data in your API is that easy! There are a number of subscription filters you can use to
112 | fine tune your subscriptions and you can even filter on One-To-Many and One-to-One connections using the associated
113 | id filters.
114 |
115 | Our Subscription implementation works (*almost*) out of the box with Apollo Client. Follow these
116 | steps to make your app real-time!
117 |
118 | ### Subscription Filters
119 |
120 | Scaphold exposes `SubscriptionFilter` arguments to subscription calls in your API so you can specify
121 | fine-grained conditions for when your subscription should fire. There are a lot of options available
122 | for you to use in `SubscriptionFilters`
123 |
124 | You will get the following operators for each scalar field in the type you are subscribing to.
125 |
126 | ```graphql
127 | type XSubscriptionFilter {
128 | eq: String
129 | gt: String
130 | gte: String
131 | lt: String
132 | lte: String
133 | ne: String
134 | between: [String]
135 | notBetween: [String]
136 | in: [String]
137 | notIn: [String]
138 | like: String
139 | notLike: String
140 | matches: String
141 | notMatches: String
142 | isNull: Boolean
143 | }
144 | ```
145 |
146 | !!! note
147 |
148 | `like` and `notLike` accept SQL match syntax while `matches` and `notMatches` accepts JS Regex
149 | syntax.
150 |
151 | ### Subscribing to Connections
152 |
153 | Applications often need a way to subscribe to changes in objects that are somehow related to
154 | other objects in their API. For example, if you were building a chat application you might
155 | only want to subscribe to messages in a particular chat room or channel. Scaphold allows you to
156 | issue this type of subscription using a `SubscriptionFilter`.
157 |
158 | The example below shows how you can subscribe to all new messages for a particular channel
159 | in our [Slackr tutorial](https://scaphold.io/community/blog/2016-11-10-build-realtime-apps-with-subs/).
160 | Notice how we pass in a `MessageSubscriptionFilter` that contains a `channelId` field. These id based
161 | filters work with all One-To-Many and One-To-One connections in your GraphQL schema. As you add
162 | these connections in the Schema Designer, filter arguments will automatically appear in the relvant
163 | `SubscriptionFilter`.
164 |
165 | > Query
166 |
167 | ```graphql
168 | subscription SubscribeToNewMessages($messageFilter:MessageSubscriptionFilter) {
169 | subscribeToMessage(mutations:[createMessage], filter:$messageFilter) {
170 | mutation
171 | value {
172 | id
173 | content
174 | channel {
175 | id
176 | }
177 | createdAt
178 | }
179 | }
180 | }
181 | ```
182 |
183 | > Variables
184 |
185 | ```json
186 | {
187 | "messageFilter": {
188 | "channelId": {
189 | "eq": "MyBase64ChannelId"
190 | }
191 | }
192 | }
193 | ```
194 |
--------------------------------------------------------------------------------
/docs/css/base.css:
--------------------------------------------------------------------------------
1 | strong, b {
2 | font-family: Avenir-Heavy;
3 | }
4 |
5 | .md-typeset a, .md-nav__link.md-nav__link--active {
6 | color: #1DAAA0;
7 | }
8 |
9 | .md-typeset a:hover, .md-nav__link:hover {
10 | color: #50DDD3;
11 | }
12 |
13 | .md-typeset [id] .headerlink:focus, .md-typeset [id]:hover .headerlink:hover, .md-typeset [id]:target .headerlink {
14 | color: #50DDD3 !important;
15 | }
16 |
17 | .md-header {
18 | background-color: #1DAAA0;
19 | }
20 |
21 | .md-nav.md-nav--secondary {
22 | border-color: #1DAAA0;
23 | }
24 |
25 | .md-footer-nav, .md-footer-meta {
26 | background-color: #29324B;
27 | }
28 |
29 | .md-icon--home {
30 | background-image: url(/images/favicon.ico);
31 | }
32 |
33 | .md-sidebar__scrollwrap::-webkit-scrollbar-thumb:hover,
34 | .md-typeset .codehilite::-webkit-scrollbar-thumb:hover {
35 | background-color: #1DAAA0;
36 | }
37 |
38 | @media only screen and (max-width: 76.1875em) {
39 | html .md-nav--primary .md-nav__title--site {
40 | background-color: #1DAAA0;
41 | }
42 | }
43 |
44 | @media only screen and (max-width: 59.9375em) {
45 | .md-nav__source {
46 | background-color: #00776D;
47 | }
48 | }
49 |
50 | /*.md-content {
51 | margin-right: 0;
52 | }*/
53 |
54 | .video-container {
55 | box-shadow: 0 2px 2px 0 rgba(0,0,0,.14), 0 1px 5px 0 rgba(0,0,0,.12), 0 3px 1px -2px rgba(0,0,0,.2);
56 | position: relative;
57 | padding-top: 25px;
58 | padding-bottom: 56.25%;
59 | height: 0;
60 | }
61 | .video-container iframe {
62 | position: absolute;
63 | top: 0;
64 | left: 0;
65 | width: 100%;
66 | height: 100%;
67 | }
--------------------------------------------------------------------------------
/docs/css/styles.css:
--------------------------------------------------------------------------------
1 | .codehilite .hll { background-color: #ffffcc }
2 | .codehilite .c { color: #999988; font-style: italic } /* Comment */
3 | .codehilite .err { color: #a61717; background-color: #e3d2d2 } /* Error */
4 | .codehilite .k { font-weight: bold } /* Keyword */
5 | .codehilite .o { font-weight: bold } /* Operator */
6 | .codehilite .cm { color: #999988; font-style: italic } /* Comment.Multiline */
7 | .codehilite .cp { color: #999999; font-weight: bold } /* Comment.Preproc */
8 | .codehilite .c1 { color: #999988; font-style: italic } /* Comment.Single */
9 | .codehilite .cs { color: #999999; font-weight: bold; font-style: italic } /* Comment.Special */
10 | .codehilite .gd { color: #000000; background-color: #ffdddd } /* Generic.Deleted */
11 | .codehilite .ge { font-style: italic } /* Generic.Emph */
12 | .codehilite .gr { color: #aa0000 } /* Generic.Error */
13 | .codehilite .gh { color: #999999 } /* Generic.Heading */
14 | .codehilite .gi { color: #000000; background-color: #ddffdd } /* Generic.Inserted */
15 | .codehilite .go { color: #888888 } /* Generic.Output */
16 | .codehilite .gp { color: #555555 } /* Generic.Prompt */
17 | .codehilite .gs { font-weight: bold } /* Generic.Strong */
18 | .codehilite .gu { color: #aaaaaa } /* Generic.Subheading */
19 | .codehilite .gt { color: #aa0000 } /* Generic.Traceback */
20 | .codehilite .kc { font-weight: bold } /* Keyword.Constant */
21 | .codehilite .kd { font-weight: bold } /* Keyword.Declaration */
22 | .codehilite .kn { font-weight: bold } /* Keyword.Namespace */
23 | .codehilite .kp { font-weight: bold } /* Keyword.Pseudo */
24 | .codehilite .kr { font-weight: bold } /* Keyword.Reserved */
25 | .codehilite .kt { color: #445588; font-weight: bold } /* Keyword.Type */
26 | .codehilite .m { color: #009999 } /* Literal.Number */
27 | .codehilite .s { color: #bb8844 } /* Literal.String */
28 | .codehilite .na { color: #008080 } /* Name.Attribute */
29 | .codehilite .nb { color: #999999 } /* Name.Builtin */
30 | .codehilite .nc { color: #445588; font-weight: bold } /* Name.Class */
31 | .codehilite .no { color: #008080 } /* Name.Constant */
32 | .codehilite .ni { color: #800080 } /* Name.Entity */
33 | .codehilite .ne { color: #990000; font-weight: bold } /* Name.Exception */
34 | .codehilite .nf { color: #990000; font-weight: bold } /* Name.Function */
35 | .codehilite .nn { color: #555555 } /* Name.Namespace */
36 | .codehilite .nt { color: #000080 } /* Name.Tag */
37 | .codehilite .nv { color: #008080 } /* Name.Variable */
38 | .codehilite .ow { font-weight: bold } /* Operator.Word */
39 | .codehilite .w { color: #bbbbbb } /* Text.Whitespace */
40 | .codehilite .mf { color: #009999 } /* Literal.Number.Float */
41 | .codehilite .mh { color: #009999 } /* Literal.Number.Hex */
42 | .codehilite .mi { color: #009999 } /* Literal.Number.Integer */
43 | .codehilite .mo { color: #009999 } /* Literal.Number.Oct */
44 | .codehilite .sb { color: #bb8844 } /* Literal.String.Backtick */
45 | .codehilite .sc { color: #bb8844 } /* Literal.String.Char */
46 | .codehilite .sd { color: #bb8844 } /* Literal.String.Doc */
47 | .codehilite .s2 { color: #bb8844 } /* Literal.String.Double */
48 | .codehilite .se { color: #bb8844 } /* Literal.String.Escape */
49 | .codehilite .sh { color: #bb8844 } /* Literal.String.Heredoc */
50 | .codehilite .si { color: #bb8844 } /* Literal.String.Interpol */
51 | .codehilite .sx { color: #bb8844 } /* Literal.String.Other */
52 | .codehilite .sr { color: #808000 } /* Literal.String.Regex */
53 | .codehilite .s1 { color: #bb8844 } /* Literal.String.Single */
54 | .codehilite .ss { color: #bb8844 } /* Literal.String.Symbol */
55 | .codehilite .bp { color: #999999 } /* Name.Builtin.Pseudo */
56 | .codehilite .vc { color: #008080 } /* Name.Variable.Class */
57 | .codehilite .vg { color: #008080 } /* Name.Variable.Global */
58 | .codehilite .vi { color: #008080 } /* Name.Variable.Instance */
59 | .codehilite .il { color: #009999 } /* Literal.Number.Integer.Long */
--------------------------------------------------------------------------------
/docs/custom-logic/async-operations.md:
--------------------------------------------------------------------------------
1 | # Async Operations
2 |
3 | After the final post-operation function finishes, scaphold will immediately return the result to the client that made the request. This is great and keeps your APIs snappy for a friendly user experience. However, sometimes you have tasks that are either long-running or are completely independent of the client app. In our example, we wanted to send push notifications to everyone on the team as soon as the new member joins. This operation would involve paginating through a potentially long list of users and could take an indefinite amount of time.
4 |
5 | For these situations use async functions! Async functions behave exactly the same as post-operation functions except Scaphold will not wait for a result after calling out to them. This makes them ideal for long standing tasks and other actions like logging.
6 |
--------------------------------------------------------------------------------
/docs/custom-logic/composition.md:
--------------------------------------------------------------------------------
1 | # Function Composition
2 |
3 | Function composition is a technique that combines simple functions into more complicated ones. At Scaphold, we use function composition to create modular, testable, and maintainable GraphQL resolvers. Logic allows you to do the same.
4 |
5 | ---
6 |
7 | !!! tip "Example"
8 |
9 | Let's walk through an example of how you might build an app like slack. Let's say a new user was invited to create an account and to join a particular team. This would take a couple of steps.
10 |
11 | 1. A user signs up and includes the name of the team.
12 | 2. Before the user is created we validate the user's email then authorize that they can join the team.
13 | 3. The user object is persisted to your DB hosted on Scaphold.
14 | 4. After the user is created, we use the generated ID to add the user to the Many-To-Many connection with the team.
15 | 5. The new user is returned to the client along with the new connection to the team.
16 | 6. After the payload was delivered to the client, we asynchronously send push notifications to everyone in the team informing that a new user has joined.
17 |
18 | ---
19 |
20 | Complex workflows like this were exactly why we built Logic. Let's break down how we would use logic to build it.
--------------------------------------------------------------------------------
/docs/custom-logic/index.md:
--------------------------------------------------------------------------------
1 | # What is Logic?
2 |
3 | Logic enables you to extend your API with business logic hosted on your
4 | own infrastructure. Different apps have different workflows and logic lets you customize Scaphold to fit virtually any need. You can host your logic on-prem or in the cloud as long as its accessible over the internet and you can even authenticate requests with custom headers. If your looking for the quickest way to start, we recommend
5 | AWS Lambda,
6 | Azure Functions, or
7 | Webtask.io.
8 | 
16 | 
17 | 
18 | 
19 | 
20 |
16 |
17 |
18 |
19 |
20 | 
20 |
21 | !!! note ""
22 |
23 | We've built a little playground for you to test out passwordless auth using Twitter Digits in an iOS app.
24 |
25 | [View on GitHub](https://github.com/scaphold-io/ios-twitter-digits-playground)
26 |
27 | !!! note ""
28 |
29 | Please reference this example if you're unfamiliar with how to obtain OAuth Echo Headers.
30 |
31 | [Sample Code](https://fabric.io/kits/ios/digits/features)
--------------------------------------------------------------------------------
/docs/integrations/payments.md:
--------------------------------------------------------------------------------
1 | ## Payments
2 |
3 | Hook into **Stripe** to instantly add advanced payment methods to your application.
4 |
5 | The Stripe integration allows you to quickly and easily link your company's Stripe account with your Scaphold API.
6 |
7 | 1. Head to [Stripe](https://stripe.com/) and create a free account to get started.
8 | 2. Upload your secret key and publishable key via our [Integrations Portal](https://scaphold.io/apps).
9 | 3. Rejoice as we have just added tons of new payments functionality to your API.
--------------------------------------------------------------------------------
/docs/integrations/push.md:
--------------------------------------------------------------------------------
1 | ## Push Notifications
2 |
3 | ### Setup
4 |
5 | Add **iOS** or **Android** push notifications in an instant.
6 |
7 | 1. Follow these tutorials to get set up on each platform:
8 | - [iOS](https://scaphold.io/community/blog/iOS-push-notifications-with-graphql/)
9 | - [Android](https://scaphold.io/community/blog/android-push-notifications-with-graphql/)
10 | 2. Add the push integration for the platform of your choice and upload the appropriate keys through our Integrations Portal.
11 | 3. Immediately get access to iOS or Android push notifications via your app's GraphQL API.
12 |
13 | Once you've set up your integration, you can start managing device tokens across platforms and send push notification messages to valid device tokens and channels.
14 |
15 | ### Send Push Notification
16 |
17 | Follow along with [this guide on how to send push notifications with your GraphQL API](https://scaphold.io/community/blog/send-push-notifications-scaphold-graphql/)
18 | so you can start sending push notifications right away.
19 |
20 | ----
21 |
22 | We've also set up a couple boilerplates for you to help you get started on each platform:
23 |
24 | !!! tip "Boilerplates"
25 |
26 | - [iOS](https://github.com/scaphold-io/apple-ios-push-graphql-starter-kit)
27 |
28 | - [Android](https://github.com/scaphold-io/android-gcm-push-graphql-starter-kit)
--------------------------------------------------------------------------------
/docs/integrations/search.md:
--------------------------------------------------------------------------------
1 | ## Search
2 |
3 | !!! tip "Tutorial"
4 |
5 | Get started with the [full tutorial](https://scaphold.io/community/blog/algolia-powers-thousands-of-scaphold-apps/).
6 |
7 | ### Setup the Algolia Integration
8 |
9 | The Algolia integration lets you instantly add search capabilities to your API. As soon as you enable the integration and select the types
10 | that you would like indexed, we immediately push your data to Algolia. Scaphold will then make sure that your data held on our servers
11 | is kept in sync with your data on algolia.
12 |
13 | 1. Create a free [Algolia](https://www.algolia.com/) account. This will help you manage your search indices and monitor your usage. Once you've created your account, you'll receive an Application ID and an API Key.
14 |
15 | !!! note ""
16 |
17 | You can share a single algolia account for multiple apps. Each index we create for you is unique to the app and type being indexed.
18 |
19 | 2. Configure Algolia in Scaphold from the Integrations Portal and select the checkboxes in the popup to index data of that particular type.
20 |
21 | 
22 |
23 | 3. As soon as you enable search on a particular type, Scaphold will automatically index each object in your API
24 | as well as ensure that each create, update, and delete mutation is mirrored to Algolia. This makes id dead simple to combine
25 | the best of Algolia with the best of GraphQL and Scaphold.
26 |
27 | 4. You can use the Algolia portal to fine tune your indexes to improve the search experience for your apps.
28 |
29 | ### Full-Text Search
30 |
31 | Querying Algolia through your Scaphold API is super simple. For every type that you index you will receive a `searchAlgoliaX` query under the `viewer` in your API.
32 |
33 | For example, lets say we were building a note taking app like Evernote. A bare bones version of our app might include the types `User` and `Note`. In order to enable our users to search notes, we would turn on the Algolia integration and choose the `Note` type to be indexed. As soon as we turn on Algolia for the `Note` type we would be able to issue a query like that seen below.
34 |
35 | ```graphql
36 | query SearchNotes($searchTerm: String!) {
37 | viewer {
38 | searchAlgoliaNotes(query: $searchTerm, hitsPerPage: 10) {
39 | nbHits # how many hits
40 | nbPages # how many pages
41 | page # the current page
42 | hits {
43 | objectID
44 | _highlightResult # useful for clientside auto-suggest
45 | node { # the Note object.
46 | id
47 | content
48 | author { # we can still traverse connections
49 | id # even though `User` is not indexed.
50 | username
51 | }
52 | }
53 | }
54 | }
55 | }
56 | }
57 | ```
58 |
59 | !!! note ""
60 |
61 | Note how we are asking for the note's author despite not indexing our `User` type. When you let
62 | Scaphold manage your search data we are able to combine search with the connection in your GraphQL schema.
63 |
64 | These commands will be the same as before; however you now have a **new query for each indexed type under `Viewer`** that will allow you to search for query terms along with optional parameters.
65 |
66 | 
67 |
68 | ### Geo-Search
69 |
70 | Algolia helps us manage geo-indexes as well. Whenever you want to query data based on location, you can do so in multiple ways.
71 |
72 | !!! note "Example"
73 |
74 | Let's say we were trying to build Yelp and I wanted to find my nearby restaurants that are in a 5000 meter radius of Central Park in New York.
75 |
76 | #### Setup
77 |
78 | In order to set up a type for geo-indexing, there are two steps:
79 |
80 | 1. Add a field called `_geoloc` to the type `Restaurant` in the Schema Designer.
81 |
82 | 
83 |
84 | !!! note
85 |
86 | The `_geoloc` field can also be a list of `JSON` object types as well.
87 |
88 | 2. Index the type `Restaurant` as searchable in the Integrations Portal.
89 |
90 | 
91 |
92 | 3. Add a new restaurant.
93 |
94 | 
95 |
96 | !!! warning ""
97 |
98 | The `lat` and `lng` fields must be `Float` types (i.e. they should not be a `String`).
99 |
100 | #### Querying
101 |
102 | Given the previous example, we want to search for restaurants near Central Park called Chipotle in a 5000 meter radius.
103 |
104 | !!! note ""
105 |
106 | Central Park coordinates: `40.7829412, -73.9680322`
107 |
108 | 
109 |
110 | There are many other ways to query by geo-location with the Algolia integration. The following input parameters also work with Scaphold:
111 |
112 | Parameter | Description
113 | ------------ | ------------
114 | `aroundLatLng` | Search for entries around a given location.
115 | `aroundRadius` | Maximum radius for geo search (in meters).
116 | `aroundPrecision` | Precision of geo search (in meters).
117 | `minimumAroundRadius` | Minimum radius (in meters) used for a geo search when aroundRadius is not set.
118 | `insideBoundingBox` | Search inside a rectangular area (in geo coordinates).
119 | `insidePolygon` | Search inside a polygon (in geo coordinates).
120 |
121 | !!! success ""
122 |
123 | You can read more about how Algolia's geo-search works here:
124 |
125 | - [Algolia Native SDK Example](https://www.algolia.com/doc/guides/geo-search/geo-search-overview/)
126 |
127 | - [Geo-Search Inputs](https://www.algolia.com/doc/api-client/javascript/search/#geo-search)
--------------------------------------------------------------------------------
/docs/integrations/social/login-with-auth0.md:
--------------------------------------------------------------------------------
1 | # Login using Auth0 Lock
2 |
3 | If you'd like to use Auth0 Lock as a client-side SDK to manage your authentication, you can do so with the `loginUserWithAuth0` mutation. This accepts the idToken returned from a successful Auth0 Lock login in the profile variable. These work in sync with all other Scaphold basic and social authentication flows so you can manage your users the way you want.
4 |
5 | !!! note "Example"
6 |
7 | ```graphql
8 | mutation Login($token:LoginUserWithAuth0Input!) {
9 | loginUserWithAuth0(input:$token) {
10 | user {
11 | id
12 | username
13 | createdAt
14 | }
15 | }
16 | }
17 |
18 | # Variables. Pass in the idToken returned by Auth0 Lock.
19 | {
20 | "token": {
21 | "idToken": "
14 |
15 | 2. Configure Auth0 in Scaphold from the Integrations Portal to include the OAuth providers that you plan to use for your app. This will enable 3 new mutations `loginUserWithAuth0`, `loginWithAuth0Lock`, and `loginWithAuth0Social` that you can use to authenticate users.
16 |
17 | !!! warning ""
18 |
19 | If you are using Auth0 Lock then use `loginWithAuth0`, not `loginWithAuth0Lock`. `loginWithAuth0` is a simpler workflow and `loginWithAuth0Lock` only remains for backwards compatibility and will be deprecated.
20 |
21 | !!! note "Example"
22 |
23 | ```graphql
24 | # Use Auth0 Lock or native SDKs and an Auth0 client SDK to create an idToken.
25 | # Then use the loginWithAuth0 mutation to create/associate social tokens with scaphold users.
26 |
27 | mutation Login($token:LoginUserWithAuth0Input!) {
28 | loginUserWithAuth0(input:$token) {
29 | user {
30 | id
31 | username
32 | createdAt
33 | }
34 | }
35 | }
36 |
37 | # Variables
38 | {
39 | "token": {
40 | "idToken": "| Framework | 18 |Description | 19 |Starter Kits | 20 |
|---|---|---|
25 |
26 | React27 | |
28 |
29 | React is the hot topic in web development. It is a component based framework specifically designed to create powerful & performant user interfaces. It is supported by Facebook and is backed by a huge community. It also fits perfectly with GraphQL. 
30 | |
31 |
32 |
|
44 |
47 |
48 | Angular49 | |
50 | 51 | Angular is a web and mobile development framework that came out of Google. It promotes bi-directional 52 | data binding and is great for building real-time apps. Angular2 is brand new and ready for you 53 | to start building on. 54 | | 55 |
56 |
|
65 |
68 |
69 | Vue 270 | |
71 | 72 | Vue 2 is a *progressive* Javascript view framework that is designed to have a light footprint and be incrementally adoptable. Vue 2 combines templating (like Angular) with a reactive Virtual DOM rendering engine based on VDOM for amazing rendering performance (x2 React). 73 | | 74 |
75 |
|
87 |
90 |
91 | React Native92 | |
93 | 94 | React Native is the new way to build mobile apps. You write your code once with 95 | Javascript and your app is automatically converted to native code and deployed so you can create rich experiences on any platform. 96 | | 97 |
98 |
|
107 |
110 |
111 | iOS112 | |
113 | 114 | The GraphQL type system fits in perfectly with your swift projects. Its magic watching xcode 115 | autocomplete and type check your GraphQL queries. Apollo iOS is a great place to start. 116 | | 117 |
118 |
|
127 |
130 |
131 | Android132 | |
133 | 134 | GraphQL tooling on Android is young but is well on its way to being the best way to build Android apps. 135 | | 136 |
137 |
|
146 |
149 | 
150 | Cerebral151 | |
152 | 153 | Cerebral is a next-gen state controller with a built in debugger. It's an awesome tool. 154 | | 155 |
156 |
|
165 |
228 | 
41 | 
55 | 
61 | 
103 | 
123 | 
148 | 151 | Once the app is installed and run, you’ll get a notification that prompts the user to allow push notifications to be sent to the device. And surely, hit Allow. 152 |
153 |154 | Upon success, your device token will be issued by APNS and printed out in your Xcode console. 155 |
156 |177 | Join us on Slack 178 |
179 |
180 |
181 | 
182 |
183 |