In this workshop we'll learn how to build cloud-enabled web applications with React, AppSync, GraphQL, & AWS Amplify.
- GraphQL API with AWS AppSync
- Mocking and Testing
- Authentication
- Adding Authorization to the AWS AppSync API
- Lambda Resolvers
- Deploying the Services
- Hosting with the Amplify Console
- Deleting the resources
- Visit the AWS Console.
- In the top right corner, click on My Account.
- In the left menu, click Credits.
To get started, we first need to create a new React project using the Create React App CLI.
npm install -g create-react-app
create-react-app my-amplify-app
Or use npx (npm 5.2 & later) to create a new app:
npx create-react-app my-amplify-app
Now change into the new app directory & install the AWS Amplify, AWS Amplify React, & uuid libraries:
cd my-amplify-app
npm install --save aws-amplify aws-amplify-react uuid
# or
yarn add aws-amplify aws-amplify-react uuid
Next, we'll install the AWS Amplify CLI:
npm install -g @aws-amplify/cli
Now we need to configure the CLI with our credentials:
amplify configure
If you'd like to see a video walkthrough of this configuration process, click here.
Here we'll walk through the amplify configure
setup. Once you've signed in to the AWS console, continue:
- Specify the AWS Region: us-east-1 || us-west-2 || eu-central-1
- Specify the username of the new IAM user: amplify-workshop-user
In the AWS Console, click Next: Permissions, Next: Tags, Next: Review, & Create User to create the new IAM user. Then, return to the command line & press Enter.
- Enter the access key of the newly created user:
? accessKeyId: (<YOUR_ACCESS_KEY_ID>)
? secretAccessKey: (<YOUR_SECRET_ACCESS_KEY>) - Profile Name: amplify-workshop-user
amplify init
- Enter a name for the project: amplifyreactapp
- Enter a name for the environment: dev
- Choose your default editor: Visual Studio Code (or your default editor)
- Please choose the type of app that you're building javascript
- What javascript framework are you using react
- Source Directory Path: src
- Distribution Directory Path: build
- Build Command: npm run-script build
- Start Command: npm run-script start
- Do you want to use an AWS profile? Y
- Please choose the profile you want to use: amplify-workshop-user
Now, the AWS Amplify CLI has iniatilized a new project & you will see a new folder: amplify & a new file called aws-exports.js
in the src directory. These files hold your project configuration.
To view the status of the amplify project at any time, you can run the Amplify status
command:
amplify status
Now, our resources are created & we can start using them!
The first thing we need to do is to configure our React application to be aware of our new AWS Amplify project. We can do this by referencing the auto-generated aws-exports.js
file that is now in our src folder.
To configure the app, open src/index.js and add the following code below the last import:
import Amplify from 'aws-amplify'
import config from './aws-exports'
Amplify.configure(config)
Now, our app is ready to start using our AWS services.
To add a GraphQL API, we can use the following command:
amplify add api
? Please select from one of the above mentioned services: GraphQL
? Provide API name: ConferenceAPI
? Choose an authorization type for the API: API key
? Do you have an annotated GraphQL schema? N
? Do you want a guided schema creation? Y
? What best describes your project: Single object with fields
? Do you want to edit the schema now? (Y/n) Y
When prompted, update the schema to the following:
type Talk @model {
id: ID!
clientId: ID
name: String!
description: String!
speakerName: String!
speakerBio: String!
}
To mock and test the API locally, you can run the mock
command:
amplify mock api
? Choose the code generation language target: javascript
? Enter the file name pattern of graphql queries, mutations and subscriptions: src/graphql/**/*.js
? Do you want to generate/update all possible GraphQL operations - queries, mutations and subscriptions: Y
? Enter maximum statement depth [increase from default if your schema is deeply nested]: 2
This should open up the local GraphiQL editor.
From here, we can now test the API.
Execute the following mutation to create a new talk in the API:
mutation createTalk {
createTalk(input: {
name: "Full Stack React"
description: "Using React to build Full Stack Apps with GraphQL"
speakerName: "Jennifer"
speakerBio: "Software Engineer"
}) {
id name description speakerName speakerBio
}
}
Now, let's query for the talks:
query listTalks {
listTalks {
items {
id
name
description
speakerName
speakerBio
}
}
}
We can even add search / filter capabilities when querying:
query listTalksWithFilter {
listTalks(filter: {
description: {
contains: "React"
}
}) {
items {
id
name
description
speakerName
speakerBio
}
}
}
Now that the GraphQL API server is running we can begin interacting with it!
The first thing we'll do is perform a query to fetch data from our API.
To do so, we need to define the query, execute the query, store the data in our state, then list the items in our UI.
// src/App.js
import React, { useEffect, useState } from 'react'
// import query definition
import { listTalks as ListTalks } from './graphql/queries'
// imports from Amplify library
import { API, graphqlOperation } from 'aws-amplify'
function App() {
const [talks, updateTalks] = useState([])
useEffect(() => {
getData()
}, [])
async function getData() {
try {
const talkData = await API.graphql(graphqlOperation(ListTalks))
console.log('talkData:', talkData)
updateTalks(talkData.data.listTalks.items)
} catch (err) {
console.log('error fetching talks...', err)
}
}
return (
<div>
{
talks.map((talk, index) => (
<div key={index}>
<h3>{talk.speakerName}</h3>
<h5>{talk.name}</h5>
<p>{talk.description}</p>
</div>
))
}
</div>
)
}
export default App
Now, let's look at how we can create mutations.
To do so, we'll refactor our state in to a reducer by using the useReducer hook. We do this because our state is beginning to grow and we can minimize our code by using useReducer
.
We'll also be using the API
class from amplify again, but now will be passing a second argument to graphqlOperation
in order to pass in variables: API.graphql(graphqlOperation(CreateTalk, { input: talk }))
.
import React, { useEffect, useReducer } from 'react'
import { API, graphqlOperation } from 'aws-amplify'
// import uuid to create a unique client ID
import uuid from 'uuid/v4'
// import the mutation and query
import { createTalk as CreateTalk } from './graphql/mutations'
import { listTalks as ListTalks } from './graphql/queries'
const CLIENT_ID = uuid()
// create initial state
const initialState = {
name: '', description: '', speakerName: '', speakerBio: '', talks: []
}
// create reducer to update state
function reducer(state, action) {
switch(action.type) {
case 'SET_TALKS':
return { ...state, talks: action.talks }
case 'SET_INPUT':
return { ...state, [action.key]: action.value }
case 'CLEAR_INPUT':
return { ...initialState, talks: state.talks }
default:
return state
}
}
function App() {
const [state, dispatch] = useReducer(reducer, initialState)
useEffect(() => {
getData()
}, [])
async function getData() {
try {
const talkData = await API.graphql(graphqlOperation(ListTalks))
console.log('data from API: ', talkData)
dispatch({ type: 'SET_TALKS', talks: talkData.data.listTalks.items})
} catch (err) {
console.log('error fetching data..', err)
}
}
async function createTalk() {
const { name, description, speakerBio, speakerName } = state
if (name === '' || description === '' ||
speakerBio === '' || speakerName === '') return
const talk = { name, description, speakerBio, speakerName, clientId: CLIENT_ID }
const talks = [...state.talks, talk]
dispatch({ type: 'SET_TALKS', talks })
dispatch({ type: 'CLEAR_INPUT' })
try {
await API.graphql(graphqlOperation(CreateTalk, { input: talk }))
console.log('item created!')
} catch (err) {
console.log('error creating talk...', err)
}
}
// change state then user types into input
function onChange(e) {
dispatch({ type: 'SET_INPUT', key: e.target.name, value: e.target.value })
}
// add UI with event handlers to manage user input
return (
<div>
<input
name='name'
onChange={onChange}
value={state.name}
placeholder='name'
/>
<input
name='description'
onChange={onChange}
value={state.description}
placeholder='description'
/>
<input
name='speakerName'
onChange={onChange}
value={state.speakerName}
placeholder='speakerName'
/>
<input
name='speakerBio'
onChange={onChange}
value={state.speakerBio}
placeholder='speakerBio'
/>
<button onClick={createTalk}>Create Talk</button>
<div>
{
state.talks.map((talk, index) => (
<div key={index}>
<h3>{talk.speakerName}</h3>
<h5>{talk.name}</h5>
<p>{talk.description}</p>
</div>
))
}
</div>
</div>
)
}
export default App
Next, let's see how we can create a subscription to subscribe to changes of data in our API.
To do so, we need to define the subscription, listen for the subscription, & update the state whenever a new piece of data comes in through the subscription.
// import the subscription
import { onCreateTalk as OnCreateTalk } from './graphql/subscriptions'
// update reducer
function reducer(state, action) {
switch(action.type) {
case 'SET_TALKS':
return { ...state, talks: action.talks }
case 'SET_INPUT':
return { ...state, [action.key]: action.value }
case 'CLEAR_INPUT':
return { ...initialState, talks: state.talks }
// new π
case 'ADD_TALK':
return { ...state, talks: [...state.talks, action.talk] }
default:
return state
}
}
// subscribe in useEffect
useEffect(() => {
const subscription = API.graphql(graphqlOperation(OnCreateTalk)).subscribe({
next: (eventData) => {
const talk = eventData.value.data.onCreateTalk
if (talk.clientId === CLIENT_ID) return
dispatch({ type: 'ADD_TALK', talk })
}
})
return () => subscription.unsubscribe()
}, [])
To add authentication, we can use the following command:
amplify add auth
? Do you want to use default authentication and security configuration? Default configuration
? How do you want users to be able to sign in when using your Cognito User Pool? Username
? Do you want to configure advanced settings? No, I am done.
To add authentication in the React app, we'll go into src/App.js and first import the withAuthenticator
HOC (Higher Order Component) from aws-amplify-react
:
// src/App.js
import { withAuthenticator } from 'aws-amplify-react'
Next, we'll wrap our default export (the App component) with the withAuthenticator
HOC:
// src/App.js
export default withAuthenticator(App, { includeGreetings: true })
To deploy the authentication service and mock and test the app locally, you can run the mock
command:
amplify mock
Now, we can run the app and see that an Authentication flow has been added in front of our App component. This flow gives users the ability to sign up & sign in.
We can access the user's info now that they are signed in by calling Auth.currentAuthenticatedUser()
.
import React, { useEffect } from 'react'
import {API, graphqlOperation, /* new π */ Auth} from 'aws-amplify'
useEffect(() => {
Auth.currentAuthenticatedUser()
.then(user => console.log('user info: ', user))
.catch(err => console.log('error finding user: ', err))
}, [])
Next we need to update the AppSync API to now use the newly created Cognito Authentication service as the authentication type.
To do so, we'll reconfigure the API:
amplify configure api
? Please select from one of the below mentioned services: GraphQL
? Choose an authorization type for the API: Amazon Cognito User Pool
Next, we'll test out the API with authentication enabled:
amplify mock
Now, we can only access the API with a logged in user.
You'll also notice a new auth button in the GraphiQL explorer that will allow you to update the simulated user.
Next, let's add a field that can only be accessed by the user who created it.
To do so, we'll update the schema to add the speakerPhone field. Here we attach the @auth
directive to the speakerPhone field in the schema:
type Talk @model {
id: ID!
clientId: ID
name: String!
description: String!
speakerName: String!
speakerBio: String!
speakerPhone: String @auth(rules: [{allow: owner}])
}
allow:owner - This sets a field to only be readable or updatable by the creator.
Next, we'll test out the updated API:
amplify mock
Now, the speakerPhone field will only be accessible by the creator of the item.
To test it out, try creating a new user & accessing a talk from a different user.
You'll notice that the query returns an error if we request the speakerPhone
field.
You'll also notice that the React app fails because the query for listTalks
asks for the speakerPhone
field. To fix this, remove the speakerPhone
field from the listTalks
query in 'src/graphql/queries`.
What if you'd like to have a Comment
type that could only be updated or deleted by the creator of the Comment
but can be read by anyone?
We could use the following type:
type Comment @model @auth(rules: [{ allow: owner, queries: null, ownerField: "createdBy" }]) {
id: ID!
message: String
createdBy: String
}
queries: null - This removes any authorization rules for queries, allowing anyone to query for talks.
ownerField:createdBy - This sets the createdBy field as the currently signed in user.
This would allow us to create comments that only the creator of the Comment could delete, but anyone could read.
What if we wanted to create a relationship between the Comment and the Talk? That's pretty easy. We can use the @connection
directive:
type Talk @model {
id: ID!
clientId: ID
name: String!
description: String!
speakerName: String!
speakerBio: String!
speakerPhone: String @auth(rules: [{allow: owner}])
comments: [Comment] @connection(name: "TalkComments")
}
type Comment @model @auth(rules: [{ allow: owner, queries: null, ownerField: "createdBy" }]) {
id: ID!
message: String
createdBy: String
talk: Talk @connection(name: "TalkComments")
}
Because we're updating the way our database is configued by adding relationships which requires a global secondary index, we need to delete the old database:
rm -r amplify/mock-data
Now, restart the server:
amplify mock
Now, we can create relationships between talks and comments. Let's test this out with the following operations:
mutation createTalk {
createTalk(input: {
id: "test-id-talk-1"
name: "Talk 1"
description: "Cool talk"
speakerBio: "Cool gal"
speakerName: "Jennifer"
}) {
id
name
description
}
}
mutation createComment {
createComment(input: {
commentTalkId: "test-id-talk-1"
message: "Great talk"
}) {
id message
}
}
query listTalks {
listTalks {
items {
id
name
description
comments {
items {
message
}
}
}
}
}
If you'd like to read more about the @auth
directive, check out the documentation here.
The last problem we are facing is that anyone signed in can create a new talk. Let's add authorization that only allows users that are in an Admin group to create and update talks.
type Talk @model @auth(rules: [{ allow: groups, groups: ["Admin"], queries: null }]) {
id: ID!
clientId: ID
name: String!
description: String!
speakerName: String!
speakerBio: String!
speakerPhone: String @auth(rules: [{allow: owner}])
comments: [Comment] @connection(name: "TalkComments")
}
type Comment @model @auth(rules: [{ allow: owner, queries: null, ownerField: "createdBy" }]) {
id: ID!
message: String
createdBy: String
talk: Talk @connection(name: "TalkComments")
}
Run the server:
amplify mock
Click on the auth button and add Admin the user's groups.
Now, you'll notice that only users in the Admin group can create, update, or delete a talk, but anyone can read it.
Next, let's have a look at how to deploy a serverless function and use it as a GraphQL resolver.
The use case we will work with is fetching data from another HTTP API and returning the response via GraphQL. To do this, we'll use a serverless function.
The API we will be working with is the CoinLore API that will allow us to query for cryptocurrency data.
To get started, we'll create the new function:
amplify add function
? Provide a friendly name for your resource to be used as a label for this category in the project: currencyfunction
? Provide the AWS Lambda function name: currencyfunction
? Choose the function template that you want to use: Hello world function
? Do you want to access other resources created in this project from your Lambda function? N
? Do you want to edit the local lambda function now? Y
Update the function with the following code:
// amplify/backend/function/currencyfunction/src/index.js
const axios = require('axios')
exports.handler = function (event, _, callback) {
let apiUrl = `https://api.coinlore.com/api/tickers/?start=1&limit=10`
if (event.arguments) {
const { start = 0, limit = 10 } = event.arguments
apiUrl = `https://api.coinlore.com/api/tickers/?start=${start}&limit=${limit}`
}
axios.get(apiUrl)
.then(response => callback(null, response.data.data))
.catch(err => callback(err))
}
In the above function we've used the axios library to call another API. In order to use axios, we need to install it in the function folder:
cd amplify/backend/function/currencyfunction/src
npm install axios
cd ../../../../../
Next, we'll update the GraphQL schema to add a new type and query. In amplify/backend/api/ConferenceAPI/schema.graphql, update the schema with the following new types:
type Coin {
id: String!
name: String!
symbol: String!
price_usd: String!
}
type Query {
getCoins(limit: Int start: Int): [Coin] @function(name: "currencyfunction-${env}")
}
Now the schema has been updated and the Lambda function has been created. To test it out, you can run the mock command:
amplify mock
In the query editor, run the following queries:
# basic request
query listCoins {
getCoins {
price_usd
name
id
symbol
}
}
# request with arguments
query listCoinsWithArgs {
getCoins(limit:3 start: 10) {
price_usd
name
id
symbol
}
}
This query should return an array of cryptocurrency information.
Next, let's deploy the AppSync GraphQL API and the Lambda function:
amplify push
? Do you want to generate code for your newly created GraphQL API? Y
? Choose the code generation language target: javascript
? Enter the file name pattern of graphql queries, mutations and subscriptions: src/graphql/**/*.js
? Do you want to generate/update all possible GraphQL operations - queries, mutations and subscriptions? Y
? Enter maximum statement depth [increase from default if your schema is deeply nested] 2
To view the new AWS AppSync API at any time after its creation, run the following command:
amplify console api
To view the Cognito User Pool at any time after its creation, run the following command:
amplify console auth
To test an authenticated API out in the AWS AppSync console, it will ask for you to Login with User Pools. The form will ask you for a ClientId. This ClientId is located in src/aws-exports.js in the aws_user_pools_web_client_id
field.
The Amplify Console is a hosting service with continuous integration and continuous deployment.
The first thing we need to do is create a new GitHub repo for this project. Once we've created the repo, we'll copy the URL for the project to the clipboard & initialize git in our local project:
git init
git remote add origin [email protected]:username/project-name.git
git add .
git commit -m 'initial commit'
git push origin master
Next we'll visit the Amplify Console in our AWS account at https://us-east-1.console.aws.amazon.com/amplify/home.
Here, we'll click Get Started to create a new deployment. Next, authorize Github as the repository service.
Next, we'll choose the new repository & branch for the project we just created & click Next.
In the next screen, we'll create a new role & use this role to allow the Amplify Console to deploy these resources & click Next.
Finally, we can click Save and Deploy to deploy our application!
Now, we can push updates to Master to update our application.
If at any time, or at the end of this workshop, you would like to delete a service from your project & your account, you can do this by running the amplify remove
command:
amplify remove auth
amplify push
If you are unsure of what services you have enabled at any time, you can run the amplify status
command:
amplify status
amplify status
will give you the list of resources that are currently enabled in your app.
If you'd like to delete the entire project, you can run the delete
command:
amplify delete