feat: add AdminResolvers with loadFixtures mutation

- Add loadFixtures mutation in AdminResolvers
- Inside loadFixtures, verify the provided admin token
- Use public key from Auth0 Machine to Machine application for token verification
- On successful verification, proceed with loading the fixtures

Author: amalv

package-lock.json

@@ -21,6 +21,7 @@
     "drizzle-orm": "^0.29.3",
     "graphql": "^16.8.1",
     "jsonwebtoken": "^9.0.2",
+    "jwks-rsa": "^3.1.0",
     "pg": "^8.11.3",
     "pg-hstore": "^2.3.4",
     "reflect-metadata": "^0.1.13",

package.json

@@ -0,0 +1,78 @@
+import { client, db } from "../../db";
+import { book, favorite } from "../../schema";
+import booksData from "../../fixtures/raw/books.json";
+import { faker } from "@faker-js/faker";
+import jwt from "jsonwebtoken";
+import jwksClient from "jwks-rsa";
+
+const initializeBooks = async (bookData) => {
+  if (isNaN(Date.parse(bookData.publicationDate))) {
+    console.log(
+      `Skipping book with invalid publication date: ${bookData.title}`
+    );
+    return;
+  }
+
+  const bookValues = {
+    title: bookData.title,
+    author: bookData.author,
+    publicationDate: new Date(bookData.publicationDate).toISOString(),
+    image: bookData.image || faker.image.url({ width: 150, height: 150 }),
+    rating: bookData.rating,
+    ratingsCount: bookData.ratingsCount,
+  };
+
+  return db.insert(book).values(bookValues).returning();
+};
+
+export const loadFixtures = async () => {
+  console.log("Truncating the favorite and book tables...");
+  await db.delete(favorite);
+  await db.delete(book);
+
+  console.log("Inserting new books into the database...");
+  const books = await Promise.all(
+    booksData.map((bookData) => initializeBooks(bookData))
+  );
+  console.log(`Inserted ${books.length} books.`);
+  await client.end();
+};
+
+function getKey(header, callback) {
+  const client = jwksClient({
+    jwksUri: `https://dev-udel1dobwtbe8ips.us.auth0.com/.well-known/jwks.json`,
+  });
+  client.getSigningKey(header.kid, function (err, key) {
+    const signingKey = key.getPublicKey();
+    callback(null, signingKey);
+  });
+}
+
+export const AdminResolvers = {
+  Mutation: {
+    loadFixtures: async (_: any, args: { adminToken: string }) => {
+      try {
+        await new Promise((resolve, reject) => {
+          jwt.verify(
+            args.adminToken,
+            getKey,
+            { algorithms: ["RS256"] },
+            function (err, decoded) {
+              if (err) {
+                reject(new Error("Invalid admin token"));
+              } else {
+                resolve(decoded);
+              }
+            }
+          );
+        });
+
+        await loadFixtures();
+        return true;
+      } catch (error) {
+        console.error("Error:", error);
+        throw error;
+      }
+    },
+  },
+};

src/graphql/resolvers/Admin.ts

@@ -1,11 +1,13 @@
 import { BookResolvers } from "./Book";
 import { FavoriteResolvers } from "./Favorite";
+import { AdminResolvers } from "./Admin";
 
 export const resolvers = {
   Query: {
     ...BookResolvers.Query,
   },
   Mutation: {
     ...FavoriteResolvers.Mutation,
+    ...AdminResolvers.Mutation,
   },
 };

src/graphql/resolvers/resolvers.ts

@@ -16,4 +16,5 @@ export const typeDefs = `#graphql
   type Mutation {
     addFavorite(bookId: ID!): Favorite 
     removeFavorite(bookId: ID!): Boolean
+    loadFixtures(adminToken: String!): Boolean
   }`;

src/graphql/types/typeDefs.ts

@@ -36,7 +36,9 @@ const decodeToken = (token: string): string | undefined => {
     const jwtToken = token.slice(7, token.length).trimStart();
     try {
       const decoded = jwt.decode(jwtToken);
-      return decoded?.sub;
+      if (typeof decoded !== "string" && decoded?.sub) {
+        return decoded.sub;
+      }
     } catch (err) {
       logger.error("Invalid token");
     }