Spike: Provide better solution for query/mutation templates and separate variables from queries/mutations
h4. Motivation
Currently users who are building resolvers for their schema have no default and documented way to prevent from various security issues related with using raw strings from clients.
This issues could include:
- sql injection,
- script injection etc.
This epic will focus on allowing users to build their own resolvers with helpers. We will investigate the best way to build resolvers within the scope.
h4. Some suggestions
- Investigate how to add helpers to handlebars based templates or replace that with more feature full solution that has predefined helpers. [1]
- Create abstract resolvers that can work as semi ORM system. [2] |
|
