Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Apollo-client dependency version #436

Closed
miiihi opened this issue Jul 11, 2019 · 15 comments
Closed

Apollo-client dependency version #436

miiihi opened this issue Jul 11, 2019 · 15 comments
Labels
Apollo feature-request Have an idea, share it with us!

Comments

@miiihi
Copy link

miiihi commented Jul 11, 2019

Latest aws-appsync is using apollo-client@2.4.6, which is more than 9 months old and has at least one serious bug (solved already, see apollographql/apollo-client#4352).
Are there any obstacles to update to latest versions of dependant libraries? And plans about that?

Thanks, miiihi
@jimmyn
Copy link

jimmyn commented Jul 20, 2019

Please upgrade apollo-client, it is very much needed for hooks support

@jimmyn
Copy link

jimmyn commented Aug 5, 2019

Any updates here? this is very much needed.

@beezeebly
Copy link

beezeebly commented Aug 6, 2019
edited
Loading

Hi @jimmyn, I followed the comment here to update the Apollo Client to 2.6.3 in order to use "@apollo/react-hooks".

If you're using Yarn, force AppSync to resolve to Apollo Client 2.6.3 by adding the following to your package.json:

"resolutions": {
    "apollo-client": "2.6.3"
  }

@ryanwalters
Copy link

@apollo/react-hooks is out of beta, hopefully this gets a little more attention from the AppSync team now.

"React Apollo 3 uses hooks behind the scenes for everything, including the graphql HOC and render prop components." — Apollo Docs

@tjhowe
Copy link

tjhowe commented Aug 7, 2019

@beezeebly Have you had any issues with the fixing the apollo client?

Also hopeful that the apollo client can be bumped. Mainly for a resolution to the bug @miiihi 's pointed out, but also the new @apollo/react-hooks lib.

@psiqueir
Copy link

Any news on this from the AppSync team?

@vicary vicary mentioned this issue Aug 30, 2019
Open
@matthamil matthamil mentioned this issue Sep 8, 2019
Closed
@nathanbirrell
Copy link

nathanbirrell commented Oct 1, 2019
edited
Loading

This really needs attention.

We've addressed this by using Yarn's resolutions option in the package.json:

  "resolutions": {
    "apollo-client": "2.6.3"
  }

@undefobj
Copy link
Contributor

undefobj commented Oct 11, 2019
edited
Loading

Hello everyone - I want to reply and assure you that we have not abandoned support of this project. Per my earlier comment, this is a complex process and to be completely transparent there are things in the Apollo library that are out of our control and there have also been breaking changes in Apollo versions which we're trying to account for, which is also why we pinned the version. We've been spending many hours trying to account for this but it's not simple to solve. After putting more thought into this we've got some initial solutions that I hope will unblock many of you. What we've done is packaged two of the "Links" which are part of the SDK - the Auth and Subscription Links - and published them to NPM. This will allow you to include them in the newer Apollo versions if you wish to use the newer features. This does not include the "Offline Link" for offline support which is more complex to solve and we're looking into for the future.

Installation of the links:

npm install aws-appsync-auth-link aws-appsync-subscription-link

Usage:
https://github.com/awslabs/aws-mobile-appsync-sdk-js#using-authorization-and-subscription-links-with-apollo-client-no-offline-support

With is I would then give the following recommendations for choosing your client strategy:

  1. If you do not have offline use cases, you can either use the Auth & Subscription Links above with the latest Apollo client or alternatively use the Amplify GraphQL client instead of Apollo:https://aws-amplify.github.io/docs/js/api#amplify-graphql-client
  2. If you do have offline use cases please use the current version as-is with the older Apollo version. We're still working on a future strategy for the Offline Link.

Please let us know if you have any trouble using these links or if there is a scenario which we haven't accounted for here.

@pickfire
Copy link

pickfire commented Dec 9, 2019

apollo-link-http also needs to be updated, codegen depends on the newer versions.

@royalaid
Copy link

I don't want to pile on to the issue that will already be a ton of work but merely want to point out that Apollo 3.0 is coming

@elorzafe elorzafe added Apollo feature-request Have an idea, share it with us! labels Apr 15, 2020
@BenoitDel
Copy link

Is there any roadmap for apollo-client 3.0 support ?

@ianmartorell
Copy link

ianmartorell commented Jul 31, 2020
edited
Loading

I was looking to use Amplify and AppSync with @apollo/react-hooks and realized it's not working. It's been almost a year since your last comment @undefobj, are there any updates you can share? Thanks!

EDIT: I see there's more info in #448

@BenoitDel BenoitDel mentioned this issue Aug 3, 2020
Closed
@hutber
Copy link

hutber commented Sep 24, 2020

Ye, it very much seems this project has been abandoned now sadly. @ianmartorell I think the only solution for us (me) to write my own client which shouldn't be too hard in theory I believe.

Still a shame though

@manueliglesias
Copy link
Contributor

Hi,

If you have a need for just Apollo 3 support without offline, we just published updated versions of the links

See: #561 (comment)

If you need offline support, we recommend you use Amplify DataStore

@treyspiva
Copy link

treyspiva commented Oct 6, 2020
edited
Loading

If you need offline support, we recommend you use Amplify DataStore

Does this mean you have given up implementing offline support? The DataStore is not good if you want to use a query and get relationships. You have to make multiple queries. It is more like using an ORM in your frontend code. Which defeats a big part of the benefit of using GraphQL. This is more like going back to a REST API.

To follow relationships DataStore uses the following code:

const post = await DataStore.query(Post, "123");
const comments = (await DataStore.query(Comment)).filter(c => c.postID === post.id);

This means that it first retrieves all of the comments then filters them on the client based on the post id. This is only reasonable for a small dataset. Not to mention, dynamodb has a restriction of only 1MB. So, how are you going to page all of the objects to filter out the unwanted comments? This is also not secure in a multi-tenant environment. How can this be the suggested solution except for small applications?

There is also this approach to query the data:

const posts = await DataStore.query(Post, c =>
  c.rating("gt", 4).status("eq", PostStatus.PUBLISHED)
);

This is making the UI call the database directly. No possibility to implement some real security checks. It would also open you API up to attack. . A hacker can just open up the console, and start calling your API with whatever conditions they want. So, they can start to query data for more than a single customer. If your permission model (multi-tenant) does not support being able to add trivial aws user id to the API. In the case of the multi-tenant a user can belong to more then one tenant. You have to check if the user has access to the tenant that owns the resource. Since the user can belong to more than one tenant the cognito mappings suggested do not work either. So, you have to do the work in the resolvers.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Apollo feature-request Have an idea, share it with us!
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests