def resolve(self, next, root, info, **kwargs): cookie = request.cookies.get('env') if cookie and helpers.decode_base64(cookie) == 'graphiql:enable': if info.context.json is not None: query = info.context.json.get('query', None) if security.on_denylist(query): raise werkzeug.exceptions.SecurityError( 'Query is Blacklisted') return next(root, info, **kwargs) raise werkzeug.exceptions.Unauthorized()
def resolve(self, next, root, info, **kwargs): if helpers.is_level_hard(): array_qry = [] if info.context.json is not None: if isinstance(info.context.json, dict): array_qry.append(info.context.json) for q in array_qry: query = q.get('query', None) if security.on_denylist(query): raise werkzeug.exceptions.SecurityError( 'Query is on the deny list.') return next(root, info, **kwargs)