Apollo Accounts Password—Client 
Client side of Apollo Accounts Password, a full-stack JS accounts system for Apollo and MongoDB.
Usage
npm install apollo-accounts-password-client
const apolloClient = uri: 'http://localhost:4000/graphql' const Accounts = apolloClient Accounts(You'll also need to set up a server at localhost:4000/graphql that uses apollo-accounts-password-server.)
Demo
See flyblackbird/apollo-accounts
API
Below we list all the methods of ApolloAccounts. Most methods return a promise that resolves when the response is received from the server. If you need other methods that are supported by accounts-js, you can access them through:
Accounts.accountsGraphQL: an instance of aGraphQLClientfrom@accounts/graphql-clientAccounts.accountsClient: an instance ofAccountsClientfrom@accounts/clientAccounts.accountsPassword: an instance ofAccountsClientPasswordfrom@accounts/client-password
Constructor
new ApolloAccounts(apolloClientInstance,accountsClientOptions)
Usually accountsClientOptions is left out, unless you're in React Native:
const Accounts = apolloClient tokenStorage: AsyncStoragecreateUser
createUser({ email, password })
createUser({ username, password })
Argument may contain a profile property object with arbitrary data.
createUser() does not automatically log the user in.
login
login(loginInfo)
loginInfo:useran object of the form{ email: 'a@b.c' }or{ username: 'loren' }passwordcodeif you're using 2fa
AccountsrefreshSession
const { accessToken, refreshToken } = Accounts.refreshSession()
Gets the login tokens from LocalStorage, or if the accessToken is expired, refreshes it (i.e. gets a new accessToken from the server using the refreshToken).
If it returns null, either:
- The
refreshTokenis expired, and the user must login again. - There are no tokens, either because no one has logged in from this client, or they've cleared their LocalStorage.
If you'd like to be able to determine who last logged in to a particular client on page load, you can, during a previous session, save whatever part of the user data (from getUser()) you want in LocalStorage.
logout
logout()
Tells the server to invalidate the tokens and clears them from memory on the client.
getUser
const user = AccountsFetches the currently logged-in user record.
sendVerificationEmail
sendVerificationEmail(emailAddress)
Sends an email which contains a link to this app with a secret token in the URL.
verifyEmail
verifyEmail(token)
token: retrieved from the URL (the link clicked in the verification email)
requestPasswordReset
requestPasswordReset(emailAddress)
Sends an email which contains a link to this app with a secret token in the URL.
resetPassword
resetPassword(token, newPassword)
token: retrieved from the URL (the link clicked in the reset password email)
changePassword
changePassword(old, new)
getTwoFactorSecret
const secret = Accounts.getTwoFactorSecret()
secret:base32: backup code for user to write down if they'd likeotpauth_url: a QR code to be displayed, for instance withqrcode.react:<QRCode value={secret.otpauth_url} />
twoFactorSet
twoFactorSet(secret, oneTimeCode)
secretobtained fromgetTwoFactorSecretoneTimeCodeentered by the user after they use an app like Authy to scan the QR code.
impersonate
impersonate(user)
user:{ userId }or{ username }or{ email }
If the current user has the correct authorization (see options.impersonationAuthorize), this fetches and saves the target user's tokens.
stopImpersonation
stopImpersonation()
Deletes the impersonated user's tokens and restores the original user's tokens.
Eject
This package is like Apollo Boost—if at some point you need more configuration options than this package exposes, you can eject by directly installing the below accounts-js packages and configuring them yourself:
npm install @accounts/client @accounts/client-password @accounts/graphql-client
const apolloClient = ... const accountsGraphQL = graphQLClient: apolloClient const accountsClient = accountsClientOptions accountsGraphQLconst accountsPassword = accountsClient