How to get createdAt, updatedAt and owner fields from AWS Amplify generated GraphQL documents?

Question

I used AWS Amplify to create an GraphQL API. In DynamoDB the fields createdAt, updatedAt and owner are created automatically. Out of the box I have no way of getting the values for this fields. Now when I add those fields to the annotated schema, I will be able to get the values but the everybody with write-permissions can just overwrite them which is annoying for the time fields and a security risk for the owner field.

So how do I get those values?

This is an AWS-Amplify specific question. It's not about how to do this with generic GraphQL. It's very specifically about how to do this with AWS-Amplify's API module and their (sadly very limited) directives (https://aws-amplify.github.io/docs/js/api#using-graphql-transformers).

Wouldn't this help if you moved your input into an input type? Being able to query should not result in modify in graphql. — None of your Beez Wax, Jan 03 '19 at 19:49

score 4 · Answer 1 · edited Jun 20 '20 at 09:12

You should override create resolver like this:

Instead of:

## [Start] Prepare DynamoDB PutItem Request. **
$util.qr($context.args.input.put("createdAt", $util.defaultIfNull($ctx.args.input.createdAt, $util.time.nowISO8601())))
$util.qr($context.args.input.put("updatedAt", $util.defaultIfNull($ctx.args.input.updatedAt, $util.time.nowISO8601())))

You should:

## [Start] Prepare DynamoDB PutItem Request. **
$util.qr($context.args.input.put("createdAt", $util.time.nowISO8601()))
$util.qr($context.args.input.put("updatedAt", $util.time.nowISO8601()))

In update resolver

Instead of:

## Automatically set the updatedAt timestamp. **
$util.qr($context.args.input.put("updatedAt", $util.defaultIfNull($ctx.args.input.updatedAt, $util.time.nowISO8601())))

You should:

## Automatically set the updatedAt timestamp. **
$util.qr($context.args.input.put("updatedAt", $util.time.nowISO8601()))

aws-amplify-overriding-auto-generated

P.S. Place the new resolvers in /resolvers folder. Not in /build/resolvers

score 0 · Answer 2 · answered Jan 04 '19 at 22:52

In order to get this data you would have to have some sort of corresponding type & query in the Schema.

I know you mentioned you would not like to have them in the Schema for reasons like a security risk but in reality any field you have available in your schema is open for editing for anyone with access to the API.

My suggestion would be to let your developers working on the project use a new environment using the new Multi Environment support from the Amplify CLI in order to have a separate API that is not exposed in production to prevent issues with breaking changes to your main Schema.

score -1 · Answer 3 · answered Jan 03 '19 at 21:55

-1

Create two graphql interfaces, one is public and exposes just the queries, mutations, and subscriptions you want to expose to the app/users. This is where all your business logic goes, written into the resolvers to ensure fields such as timestamps are not overwritten.

The second is more comprehensive and is only exposed to and only used by your public graphql interface.

This is how Yoga/Prisma work together.

answered Jan 03 '19 at 21:55

Chris Geirman

9,474
5
37
70

1

Again, I'm not sure how to do this with amplify. Maybe I should stress this more in the question. – Philip Claren Jan 04 '19 at 10:03
Ok, got it. I'm not that familiar with Amplify, but I'll see if I can get Nader to look at your question. He works on the Amplify team – Chris Geirman Jan 04 '19 at 14:17

How to get createdAt, updatedAt and owner fields from AWS Amplify generated GraphQL documents?

3 Answers3