Skip to content

Fix: GraphQL input names, JWT type, and product count query #29

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
a-jay262 wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Fix: GraphQL input names, JWT type, and product count query #29

a-jay262 wants to merge 1 commit into from

Conversation

@a-jay262
Copy link

@a-jay262 a-jay262 commented Dec 4, 2025

🚀 Backend Stability & Type Safety Enhancements (Authentication, Data Access)

This pull request introduces several crucial fixes to improve the type safety, schema adherence, and overall reliability of the e-commerce GraphQL backend, particularly within the authentication and data access layers.

🔒 Authentication Layer Refinement

1. GraphQL Input Schema Compliance

The register and login mutations have been updated to correctly use structured GraphQL Input Types (Input!), resolving runtime issues and ensuring strict adherence to the defined schema. This provides a smoother developer experience when testing in tools like GraphQL Playground.

Mutation Old Input (Runtime Error) New Input (Schema Compliant)
register (email: String!, password: String!, name: String!) (input: RegisterInput!)
login (email: String!, password: String!) (input: LoginInput!)

2. New Validation Constraint

A crucial validation step has been implemented to control input size:

⚠️ Password Validation Required The registration/login process includes a check to ensure the input password length is less than 10 characters which the Readme demo query were not following.

3. Type-Safe JWT Payload Correction

In auth.service.ts, the construction of the JSON Web Token (JWT) payload was corrected to resolve type errors and guarantee successful token signing/decoding.

  • Fix: The payload passed to jwtService.sign() is now explicitly constructed as a type-safe object ({ userId, email }), ensuring the generated tokens contain the expected claims in the correct structure.
  • Benefit: Resolves TypeScript errors and guarantees that the generated tokens are correctly structured and verifiable across the application.

💾 Data Access Layer (Mongoose)

4. Mongoose Deprecation Fix in product.repo.ts

The method used to retrieve the total product count was updated to address Mongoose deprecation warnings and improve performance for count operations.

  • Old Method (Deprecated): .find().count()
  • New Method (Idiomatic & Performant): .countDocuments()

This update resolves associated warnings and future-proofs the data repository against upcoming Mongoose library changes.

✅ Summary of Key Changes

  • Enforced Schema: Switched to Input! types for all auth mutations.
  • Enhanced Security: Added a password length constraint.
  • Resolved Errors: Fixed type-safety issues in JWT payload generation.
  • Optimized Performance: Updated product count method to use .countDocuments().

@BaseMax
Copy link
Owner

BaseMax commented Dec 4, 2025

Many thanks please fully test and review your PR before pushing and ping me again here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@a-jay262 @BaseMax