Implementing a federated graph
Putting the pieces together
An Apollo Federation architecture consists of:
- A collection of implementing services that each define a distinct GraphQL schema
- A gateway that composes the distinct schemas into a federated data graph and executes queries across that graph
Each of these components can be implemented in any language and framework.
To be part of a federated graph, an implementing service must conform to the Apollo Federation specification, which exposes the service's capabilities to the gateway, as well as to tools like Apollo Graph Manager. A service can extend GraphQL types that are defined by other services, and it can define types for other services to extend. An implementing service can be written in any language.
Let's look at how to get a federated graph up and running. We'll start by preparing an existing implementing service for federation, and then we'll set up a gateway in front of it.
Defining a federated service
Converting an existing schema into a federated service is the first step in building a federated graph. To do this, we'll use the buildFederatedSchema() function from the @apollo/federation package.
To start, here's a non-federated Apollo Server setup:
const { ApolloServer, gql } = require('apollo-server');
const typeDefs = gql`
type Query {
me: User
}
type User {
id: ID!
username: String
}
`;
const resolvers = {
Query: {
me() {
return { id: "1", username: "@ava" }
}
}
};
const server = new ApolloServer({
typeDefs,
resolvers,
});
server.listen(4001).then(({ url }) => {
console.log(`🚀 Server ready at ${url}`);
});This should look familiar if you've set up Apollo Server before. If it doesn't, we recommend you familiarize yourself with the basics before jumping into federation.
Now, let's convert this to a federated service. The first step is to install the @apollo/federation package in our project:
npm install @apollo/federationIn our federated server definition, we want other services to be able to extend the
User type we define. To enable this, we add the @key directive to the
User type's definition to make it an entity:
const { ApolloServer, gql } = require('apollo-server');
const { buildFederatedSchema } = require('@apollo/federation');
const typeDefs = gql`
type Query {
me: User
}
type User @key(fields: "id") {
id: ID!
username: String
}
`;The @key directive tells other services which field(s) of the User type to use
to uniquely identify a particular instance. In this case, services should use the
single field id. You can even include nested fields in this directive, as shown in
Compound and nested keys.
Next, we add a reference resolver for the User type. A reference resolver tells the gateway how to fetch an entity by its @key fields:
const resolvers = {
Query: {
me() {
return { id: "1", username: "@ava" }
}
},
User: {
__resolveReference(user, { fetchUserById }){
return fetchUserById(user.id)
}
}
};We would then define the fetchUserById function to obtain the appropriate User
from our backing data store.
Finally, we use the buildFederatedSchema function to augment our schema definition
with federation support. We provide the result of this function to the
ApolloServer constructor:
const server = new ApolloServer({
schema: buildFederatedSchema([{ typeDefs, resolvers }])
});
server.listen(4001).then(({ url }) => {
console.log(`🚀 Server ready at ${url}`);
});The server is now ready to be added to a federated data graph!
Here are the snippets above combined (again, note that for this sample to be complete,
you must define the fetchUserById function for your data source):
const { ApolloServer, gql } = require('apollo-server');
const { buildFederatedSchema } = require('@apollo/federation');
const typeDefs = gql`
type Query {
me: User
}
type User @key(fields: "id") {
id: ID!
username: String
}
`;
const resolvers = {
Query: {
me() {
return { id: "1", username: "@ava" }
}
},
User: {
__resolveReference(user, { fetchUserById }){
return fetchUserById(user.id)
}
}
}
const server = new ApolloServer({
schema: buildFederatedSchema([{ typeDefs, resolvers }])
});
server.listen(4001).then(({ url }) => {
console.log(`🚀 Server ready at ${url}`);
});Running a gateway
Now that we have a federation-ready service, we can set up a federated gateway to sit in front of it. First, let's install the necessary packages:
npm install @apollo/gateway apollo-server graphqlNow we can set up an ApolloServer instance that acts as a gateway to our underlying
implementing services:
const { ApolloServer } = require('apollo-server');
const { ApolloGateway } = require("@apollo/gateway");
// Initialize an ApolloGateway instance and pass it an array of implementing
// service names and URLs
const gateway = new ApolloGateway({
serviceList: [
{ name: 'accounts', url: 'http://localhost:4001' },
// more services
],
});
// Pass the ApolloGateway to the ApolloServer constructor
const server = new ApolloServer({
gateway,
// Disable subscriptions (not currently supported with ApolloGateway)
subscriptions: false,
});
server.listen().then(({ url }) => {
console.log(`🚀 Server ready at ${url}`);
});In the above example, we provide the serviceList configuration option to the
ApolloGateway constructor. This array specifies a name and url for each
of our implementing services. You can specify any string value for name, which
is used primarily for query planner output, error messages, and logging.
In production, we recommend configuring the gateway in a managed mode, which relies on static files rather than introspection. For details on how to use the Apollo schema registry to support this workflow, see the Graph Manager documentation.
On startup, the gateway fetches each implementing service's capabilities and composes a federated data graph. It accepts incoming requests and creates query plans that query the graph's implementing services.
If there are any composition errors, the
new ApolloServercall throws an exception with a list of validation errors.
Securing implementing services
Due to the power and flexibility of federation's _entities field, only the gateway should be accessible by GraphQL clients. Individual implementing services
should not be accessible. Make sure to implement firewall rules, access control
lists, or other measures to ensure that individual implementing services can
be accessed only via the gateway.
Sharing context across services
Customizing incoming requests
If you have an existing set of services, you've probably already
implemented some form of authentication to associate each request with a user, or
you require that some information be passed to each service via request headers. The @apollo/gateway package enables you to reuse Apollo Server's context feature to customize which information is sent to implementing services.
The following example demonstrates passing user information from the gateway
to each implementing service via the user-id HTTP header:
const { ApolloServer } = require('apollo-server');
const { ApolloGateway, RemoteGraphQLDataSource } = require('@apollo/gateway');
class AuthenticatedDataSource extends RemoteGraphQLDataSource { willSendRequest({ request, context }) { // pass the user's id from the context to underlying services // as a header called `user-id` request.http.headers.set('user-id', context.userId); }}
const gateway = new ApolloGateway({
serviceList: [
{ name: 'products', url: 'http://localhost:4001' },
// other services
],
buildService({ name, url }) { return new AuthenticatedDataSource({ url }); },});
const server = new ApolloServer({
gateway,
// Disable subscriptions (not currently supported with ApolloGateway)
subscriptions: false,
context: ({ req }) => {
// get the user token from the headers
const token = req.headers.authorization || '';
// try to retrieve a user with the token
const userId = getUserId(token);
// add the user to the context
return { userId };
},
});
server.listen().then(({ url }) => {
console.log(`🚀 Server ready at ${url}`);
});The buildService function enables us to customize the requests that are sent to our implementing services. In this example, we return a custom RemoteGraphQLDataSource. The datasource allows us to modify the outgoing request with information from the Apollo Server context before it's sent. Here, we add the user-id header to pass an authenticated user ID to downstream services.
Customizing outgoing responses
Similarly, the didReceiveResponse callback allows us to inspect an implementing
service's response in order to modify the context. The lifecycle of a request to
a federated server involves a number of responses, multiple of which might contain
headers that should be passed back to the client.
Suppose our implementing services all use the Server-Id header to uniquely
identify themselves in a response. We want the gateway's Server-Id header to include all of these returned values. In this case, we can tell the gateway to aggregate the various server IDs into a single, comma-separated list in its response:
To implement this behavior, we define a didReceiveResponse callback and an ApolloServerPlugin in our gateway:
const { ApolloServer } = require('apollo-server');
const { ApolloGateway, RemoteGraphQLDataSource } = require('@apollo/gateway');
class DataSourceWithServerId extends RemoteGraphQLDataSource {
async didReceiveResponse(response, request, context) { const body = await super.didReceiveResponse(response, request, context); // Parse the Server-Id header and add it to the array on context const serverId = response.headers.get('Server-Id'); if (serverId) { context.serverIds.push(serverId); } return body; }}
const gateway = new ApolloGateway({
serviceList: [
{ name: 'products', url: 'http://localhost:4001' }
// other services
],
buildService({ url }) { return new DataSourceWithServerId({ url }); }});
const server = new ApolloServer({
gateway,
subscriptions: false, // Must be disabled with the gateway; see above.
context() {
return { serverIds: [] };
},
plugins: [
{ requestDidStart() { return { willSendResponse({ context, response }) { // Append our final result to the outgoing response headers response.http.headers.append( 'Server-Id', context.serverIds.join(',') ); } }; } } ]
});
server.listen().then(({ url }) => {
console.log(`🚀 Server ready at ${url}`);
});To learn more about buildService and RemoteGraphQLDataSource, see the API docs.
Implementing custom directives
Note: Apollo Server does not currently support executable directives, however they are supported by the gateway.
The gateway currently provides limited support for custom, service-level directives. To use this feature, there are a few requirements that must be met in order to compose a valid graph:
-
Directives can only implement executable locations. Executable directive locations are documented in the spec.
The following locations are considered valid to the gateway: QUERY, MUTATION, SUBSCRIPTION, FIELD, FRAGMENT_DEFINITION, FRAGMENT_SPREAD, INLINE_FRAGMENT
- Directives must be implemented by every service that's part of the graph. It's acceptable for a service to do nothing with a particular directive, but a directive definition must exist within every service's schema.
- Directive definitions must be identical across all services. A directive definition is identical if its name, arguments and their types, and locations are all the same.
Managing a federated graph
With Apollo Federation, teams are able to move quickly as they build out their GraphQL services. However, distributed systems introduce complexities which require special tooling and coordination across teams to safely rollout changes. The Apollo Graph Manager provides solutions to problems like schema change validation, graph update coordination, and metrics collection. For more information on the value of Graph Manager, read our article on managed federation.