Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying GraphQL Best Practices
  • Table Of Contents Toc
  • Feedback & Rating feedback
GraphQL Best Practices

GraphQL Best Practices

By : Artur Czemiel
Buy this Book
close
close
GraphQL Best Practices

GraphQL Best Practices

By: Artur Czemiel
Buy this Book

Overview of this book

In the ever-evolving landscape of web development, GraphQL has emerged as a powerful query language that addresses the limitations of traditional REST APIs. This guide delves deep into GraphQL, starting with its foundational principles and swiftly advancing to complex topics that will equip you with the skills you need to understand this technology. As you progress, you’ll cover advanced concepts such as schema design, security enhancements, and error handling. You'll also explore essential topics such as federation and the transition from REST to GraphQL, gaining a comprehensive understanding of these critical areas. The book helps you learn through practical examples in TypeScript, guiding you through building scalable and secure GraphQL backends. Additionally, you’ll get up to speed with the intricacies of frontend integration. By the end of this book, you’ll have the skills you need to implement real-world GraphQL solutions, creating efficient and robust applications that meet modern web development demands.
Table of Contents (23 chapters)
close
close
close
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
Free Chapter
1
Part 1 - Why GraphQL?
Part 1 - Why GraphQL?
2
Chapter 1: Unveiling the Holy Grail of Communication – GraphQL
Chapter 1: Unveiling the Holy Grail of Communication – GraphQL
Technical requirements
Understanding the advantage of built-in introspection
Working with GraphQL as a source of truth
Creating self-documenting schemas
Understanding the GraphQL query language
Mocking GraphQL responses
Summary
3
Chapter 2: Applying an AI-Friendly Approach to GraphQL
Chapter 2: Applying an AI-Friendly Approach to GraphQL
Technical requirements
Understanding GraphQL AI Friendliness
Navigating the OpenAI playground
Generating documentation with AI
Generating real-life mocks
Writing GraphQL queries with AI
Creating whole schemas with AI
Summary
4
Part 2 - Schema-First Design Patterns
Part 2 - Schema-First Design Patterns
5
Chapter 3: Crafting Effective GraphQL Schemas
Chapter 3: Crafting Effective GraphQL Schemas
Technical requirements
Understanding the basics of schema design
Harnessing the power of interfaces
Adding well-documented custom scalars
Learning about directives
Summary
6
Chapter 4: Building Pipes
Chapter 4: Building Pipes
Technical requirements
Introducing pipes
Logical pipes
Access pipes
Ownership pipes
Summary
7
Part 3 - Exploring Possible Ways to Use GraphQL
Part 3 - Exploring Possible Ways to Use GraphQL
8
Chapter 5: Transitioning from REST to GraphQL
Chapter 5: Transitioning from REST to GraphQL
Technical requirements
Why transition to GraphQL?
Transforming a REST to-do list into GraphQL
Passing headers
Understanding response types
Reviewing the disadvantages of GraphQL
Summary
9
Chapter 6: Defining GraphQL Transformers
Chapter 6: Defining GraphQL Transformers
Technical requirements
Understanding how transformers work
Creating your own transformer
The rise and fall of transformers
Summary
10
Chapter 7: Understanding GraphQL Federation
Chapter 7: Understanding GraphQL Federation
Technical requirements
Why do we need federation?
Understanding the basic rules of federation
Merging schemas for federation
Federating schemas in a to-do list service
Meeting the need for GraphQL Federation
Summary
11
Part 4 - Advanced GraphQL
Part 4 - Advanced GraphQL
12
Chapter 8: Executing Schema-First Systems
Chapter 8: Executing Schema-First Systems
Technical requirements
Setting up our project
Creating the schema
Connecting the schema, database, and type system
Handling user authorization and authentication
Adding question and answer types
Bringing the resolvers together
Summary
13
Chapter 9: Working on the Frontend with GraphQL
Chapter 9: Working on the Frontend with GraphQL
Technical requirements
Setting up our project
Preparing our GraphQL Layer
Creating the system’s frontend
Creating authentication pages
Crafting the post question page
Implementing the questions page
Summary
14
Chapter 10: Keeping Data Secure
chevron up
Chapter 10: Keeping Data Secure
Technical requirements
Preventing denial-of-service attacks
Preventing injection attacks
Understanding the query cost calculation
Summary
15
Chapter 11: Describing Errors in GraphQL
Chapter 11: Describing Errors in GraphQL
Technical requirements
Understanding how should we throw errors in GraphQL-based servers
Using enums for error codes
Treating errors as data
Treating responses as unions
Understanding error masking
Summary
16
Chapter 12: Documenting your Schema
Chapter 12: Documenting your Schema
Technical requirements
Writing documentation for GraphQL interfaces and types
Crafting Markdown documentation for root queries and mutations
Summary
17
Chapter 13: Tackling Schemas with Visualization
Chapter 13: Tackling Schemas with Visualization
Technical requirements
Onboarding to the schema
Improving existing schemas using the visual environment
Using GraphiQL’s navigation pane
Summary
18
Part 5 - From an Idea to a Working Project
Part 5 - From an Idea to a Working Project
19
Chapter 14: From an Idea to a Working Project – Backend Development with GraphQL and TypeScript
Chapter 14: From an Idea to a Working Project – Backend Development with GraphQL and TypeScript
Technical requirements
Creating a system concept and schema
Implementing the application’s backend
Writing integration tests
Summary
20
Chapter 15: From an Idea to a Working Project – Frontend Integration with GraphQL and TypeScript
Chapter 15: From an Idea to a Working Project – Frontend Integration with GraphQL and TypeScript
Technical requirements
Setting up the project
Preparing the GraphQL layer
Creating our app’s frontend
Summary
21
Index
Index
Why subscribe?
22
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

Summary

In this chapter, we have learned about some of the possible attacks on GraphQL servers. In our analysis, we looked at DoS attacks in GraphQL and how to prevent them, including establishing a depth limit for queries and implementing a rate limit for our server. Furthermore, we delved into the mechanisms behind batching attacks and the potential risks associated with injection attacks.

To further enhance our understanding, we also covered the concept of calculating the cost of a query using GraphQL directives. By comprehensively studying these various aspects, we aim to strengthen the security measures and overall resilience of our GraphQL implementation.

In the next chapter, we will look at how to handle GraphQL errors properly.

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
End of Chapter 14
Next Chapter
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY