HI All,

When i load the API using http://localhost:8080/ URL it gives me "502 Bad Gateway". Could anyone please guide me what is the issue and how to fix this.

Thanks in Advance.

Hello.

I'm struggling with docker in AP 2.2.0. When I run docker-compose up -d, everythings seems to work.

docker-compose up -d --build

...

Successfully built d04505723c6d
Creating apiplatform220_admin_1       ... done
Creating apiplatform220_php_1         ... done
Creating apiplatform220_client_1      ... done
Creating apiplatform220_api_1         ... done
Creating apiplatform220_admin_1       ...
Creating apiplatform220_cache-proxy_1 ... done
Creating apiplatform220_cache-proxy_1 ...
Creating apiplatform220_h2-proxy_1    ... done

But when I try to open https://localhost I'm having an exception ERR_CONNECTION_REFUSED.

My logs :

docker-compose logs -f
Attaching to apiplatform220_h2-proxy_1, apiplatform220_cache-proxy_1, apiplatform220_api_1, apiplatform220_admin_1, apiplatform220_client_1, apiplatform220_php_1, apiplatform220_db_1
h2-proxy_1     | 2018/02/16 21:26:45 [emerg] 1#1: host not found in upstream "client" in /etc/nginx/conf.d/default.conf:9
api_1          | 2018/02/16 21:26:19 [emerg] 1#1: host not found in upstream "php" in /etc/nginx/conf.d/default.conf:11
h2-proxy_1     | nginx: [emerg] host not found in upstream "client" in /etc/nginx/conf.d/default.conf:9
api_1          | nginx: [emerg] host not found in upstream "php" in /etc/nginx/conf.d/default.conf:11
cache-proxy_1  | + varnishd -a :80 -f /etc/varnish/default.vcl -s malloc,256m
php_1          | Composer could not find a composer.json file in /srv/api
admin_1        | yarn run v1.3.2
client_1       | yarn run v1.3.2
cache-proxy_1  | Error: Cannot read -f file '/etc/varnish/default.vcl' (No such file or directory)
php_1          | To initialize a project, please create a composer.json file as described in the https://getcomposer.org/ "Getting Started" section
admin_1        | info Visit https://yarnpkg.com/en/docs/cli/run for documentation about this command.
db_1           | LOG:  database system was shut down at 2018-02-16 21:07:03 UTC
client_1       | error Couldn't find a package.json file in "/usr/src/client"
cache-proxy_1  | (-? gives usage)
admin_1        | error Couldn't find a package.json file in "/usr/src/admin"
db_1           | LOG:  MultiXact member wraparound protections are now enabled
client_1       | info Visit https://yarnpkg.com/en/docs/cli/run for documentation about this command.
db_1           | LOG:  database system is ready to accept connections
db_1           | LOG:  autovacuum launcher started
db_1           | LOG:  database system was interrupted; last known up at 2018-02-16 21:08:05 UTC
db_1           | LOG:  database system was not properly shut down; automatic recovery in progress
db_1           | LOG:  invalid record length at 0/14EE8E0: wanted 24, got 0
db_1           | LOG:  redo is not required
db_1           | LOG:  MultiXact member wraparound protections are now enabled
db_1           | LOG:  database system is ready to accept connections
db_1           | LOG:  autovacuum launcher started
apiplatform220_h2-proxy_1 exited with code 1
apiplatform220_api_1 exited with code 1
apiplatform220_client_1 exited with code 1
apiplatform220_php_1 exited with code 1
apiplatform220_cache-proxy_1 exited with code 255
apiplatform220_admin_1 exited with code 1

Anyone can help me ?

Additional notes

OS : Windows

docker -v
Docker version 17.12.0-ce, build c97c6d6

docker-compose ps
            Name                          Command               State             Ports
------------------------------------------------------------------------------------------------
apiplatform220_admin_1         /bin/sh -c yarn start           Exit 1
apiplatform220_api_1           nginx -g daemon off;            Up         0.0.0.0:8080->80/tcp
apiplatform220_cache-proxy_1   docker-app-start                Exit 255
apiplatform220_client_1        /bin/sh -c yarn start           Exit 1
apiplatform220_db_1            docker-entrypoint.sh postgres   Up         0.0.0.0:5433->5432/tcp
apiplatform220_h2-proxy_1      nginx -g daemon off;            Exit 1
apiplatform220_php_1           docker-entrypoint php-fpm       Exit 1

I would like to send generated ID from UI to API but right now it is not possible. API is trying to do update, response is "Method is not allowed" So right now i'm sending it as uuid and then in the event doing extraction from request setting to entity.

It will be great to allow send ID param to POST and to have "optional" parameter for writing. What do you think?

API Platform version(s) affected: 2.6.4 Everything ok when you downgrade to 2.6.3

Description
ApiResource parameters denormalizationContext and normalizationContext doesn't affect.

How to reproduce
In version 2.6.4 - swagger shows all fields and ignores denormalizationContext and normalizationContext But In versions before that, for example 2.6.3 - everything is ok. Swagger shows considering denormalizationContext and normalizationContext goups

How swagger looks with ApiPlatform version 2.6.3

Same code with 2.6.4

Original file is there: https://github.com/kadirov/api-starter-kit/blob/master/src/Entity/User.php

#[ApiResource(
    collectionOperations: [
        'get'                => [
            'security'              => "is_granted('ROLE_ADMIN')",
            'normalization_context' => ['groups' => ['users:read']],
        ],
        'post'               => [
            'controller' => UserCreateAction::class,
        ],
        'aboutMe'            => [
            'controller'      => UserAboutMeAction::class,
            'method'          => 'get',
            'path'            => 'users/about_me',
            'openapi_context' => [
                'summary'    => 'Shows info about the authenticated user',
            ],
        ],
        'auth'               => [
            'controller'      => UserAuthAction::class,
            'method'          => 'post',
            'path'            => 'users/auth',
            'openapi_context' => ['summary' => 'Authorization'],
        ],
        'authByRefreshToken' => [
            'controller'      => UserAuthByRefreshTokenAction::class,
            'method'          => 'post',
            'path'            => 'users/auth/refreshToken',
            'openapi_context' => ['summary' => 'Authorization by refreshToken'],
            'input'           => RefreshTokenRequestDto::class,
        ],
        'isUniqueEmail'      => [
            'controller'              => UserIsUniqueEmailAction::class,
            'method'                  => 'post',
            'path'                    => 'users/is_unique_email',
            'openapi_context'         => ['summary' => 'Checks email for uniqueness'],
            'denormalization_context' => ['groups' => ['user:isUniqueEmail:write']],
        ],
    ],
    itemOperations: [
        'changePassword' => [
            'controller'              => UserChangePasswordAction::class,
            'method'                  => 'put',
            'path'                    => 'users/{id}/password',
            'security'                => "object == user || is_granted('ROLE_ADMIN')",
            'openapi_context'         => ['summary' => 'Changes password'],
            'denormalization_context' => ['groups' => ['user:changePassword:write']],
        ],
        'delete'         => [
            'controller' => DeleteAction::class,
            'security'   => "object == user || is_granted('ROLE_ADMIN')",
        ],
        'get'            => [
            'security' => "object == user || is_granted('ROLE_ADMIN')",
        ],
        'put'            => [
            'security'                => "object == user || is_granted('ROLE_ADMIN')",
            'denormalization_context' => ['groups' => ['user:put:write']],
        ],
    ],
    denormalizationContext: ['groups' => ['user:write']],
    normalizationContext: ['groups' => ['user:read', 'users:read']],
)]
#[ApiFilter(OrderFilter::class, properties: ['id', 'createdAt', 'updatedAt', 'email'])]
#[ApiFilter(SearchFilter::class, properties: ['id' => 'exact', 'email' => 'partial'])]
#[UniqueEntity('email', message: 'This email is already used')]

/**
 * @ORM\Entity(repositoryClass=UserRepository::class)
 */
class User implements
    UserInterface,
    UpdatedAtSettableInterface,
    CreatedAtSettableInterface,
    IsDeletedSettableInterface
{
    /**
     * @ORM\Id
     * @ORM\GeneratedValue
     * @ORM\Column(type="integer")
     */
    #[Groups(['users:read'])]
    private $id;

    /**
     * @ORM\Column(type="string", length=255)
     */
    #[Assert\Email]
    #[Groups(['users:read', 'user:write', 'user:put:write', 'user:isUniqueEmail:write'])]
    private $email;

    /**
     * @ORM\Column(type="string", length=255)
     */
    #[Groups(['user:write', 'user:changePassword:write'])]
    private $password;

    /**
     * @ORM\Column(type="array")
     */
    #[Groups(['user:read'])]
    private $roles = [];

    /**
     * @ORM\Column(type="datetime")
     */
    #[Groups(['user:read'])]
    private $createdAt;

    /**
     * @ORM\Column(type="datetime", nullable=true)
     * @Groups({"user:read"})
     */
    #[Groups(['user:read'])]
    private $updatedAt;

    /**
     * @ORM\Column(type="boolean")
     */
    private $isDeleted = false;

   // here getter and setter methods...
}

Possible Solution
Downgrade to 2.6.3

Additional Context
Symfony version 5.2.6 PHP version 8.0.3 OS: tested on windows 10, Fedora 33, docker with Debian 10

I need for a ressource to add an absolute link that is generated when the user asks a resource, so it can't be used in the Entity but in a Service or maybe an Event.

It seems that there is no documentation about it. Is it possible to add virtual properties ?

Do you have any example ?

Thanks

So as I'm researching methods of maintaining API's and so on, I stumbled upon GraphQL.

Have you checked it out? Is this something that Api-Platform would be interested in supporting? I think it fits along most of your goals. Obviously not REST. ;)

https://facebook.github.io/react/blog/2015/05/01/graphql-introduction.html

Interested in your thoughts? Jarvis

Firstable, let me thank you for this impressive work!

As written in the subject, would be nice to have an example which makes use of external services wirhout relying to Doctrine, for example the case of a middleware/broker API.

Thanks!

Hello,

i've got 502 errors on some routes of my api on my dev machine running api-platform on docker.

The logs shows this :

api     | 2018/11/12 13:14:09 [error] 7#7: *6 upstream sent too big header while reading response header from upstream, client: 172.18.0.2, server: , request: "GET /v2/contact_functions HTTP/1.1", upstream: "fastcgi://172.19.0.4:9000", host: "api.test:8000", referrer: "http://api.test:8000/"
api     | 172.18.0.2 - - [12/Nov/2018:13:14:09 +0000] "GET /v2/contact_functions HTTP/1.1" 502 559 "http://api.test:8000/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" "172.18.0.1"

I'm not sure I get what's wrong, it looks like it's an nginx error. Can we add configs (it looks like fastcgi_buffers / fastcgi_buffer_size could help). Or is there a way to control these headers ?

On some other working routes, I can see a lot of informations under Cache-Tags Headers, could it be the problem ? Again, can I do something on these headers ?

I'm trying to create a custom action which could be called at GET /me.

I implemented JWT token and now I want to get the user data thanks to the security storage or something else (by Bearer or something else).

My problem is that I can't create a custom action to get just one item but without giving an ID. It seems ApiPlatform is built to always listen ID parameter for item action, when we use _api_item_operation_name.

Action :

<?php

namespace AppBundle\Action;

use AppBundle\Repository\UserRepository;
use Sensio\Bundle\FrameworkExtraBundle\Configuration\Method;
use Symfony\Component\Config\Definition\Exception\Exception;
use Symfony\Component\Routing\Annotation\Route;
use AppBundle\Entity\User;
use Doctrine\Common\Persistence\ManagerRegistry;
use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorage;

class UserMe
{
    /**
     * @var UserRepository
     */
    private $repository;

    /**
     * UserMe constructor.
     *
     * @param UserRepository $repository
     */
    public function __construct(UserRepository $repository)
    {
        $this->repository= $repository;
    }

    /**
     * @Route(
     *     name="api_users_me",
     *     path="/me",
     *     defaults={"_api_resource_class"=User::class, "_api_item_operation_name"="user_me"}
     * )
     * @Method("GET")
     */
    public function __invoke($data)
    {
        // hard retrieve of an existing user in database to test
        return $this->repository->find(5);
    }
}

Result :

{
    "@context": "/app_dev.php/contexts/Error",
    "@type": "hydra:Error",
    "hydra:title": "An error occurred",
    "hydra:description": "Invalid identifier \"\", \"id\" has not been found.",
    ...
}

If you see, I don't need to specify an "id" for my action, but API Plateform is expecting an identifier "id".

Here my User entity :

<?php

namespace AppBundle\Entity;

use Doctrine\ORM\Mapping as ORM;
use Symfony\Component\Security\Core\User\AdvancedUserInterface;
use ApiPlatform\Core\Annotation\ApiResource;
use Symfony\Component\Serializer\Annotation\Groups;

/**
 * User
 *
 * @ApiResource(
 *     collectionOperations={
 *         "get"={
 *             "method"="GET",
 *             "normalization_context"={"groups"={"get_collection"}}
 *         },
 *     },
 *     itemOperations={
 *         "get"={
 *             "method"="GET",
 *             "normalization_context"={"groups"={"get_item"}}
 *         },
 *         "user_me"={
 *             "route_name"="api_users_me"
 *         },
 *     }
 * )
 * @ORM\Table(name="user")
 * @ORM\Entity(repositoryClass="AppBundle\Repository\UserRepository")
 */
class User implements AdvancedUserInterface
{
    // ...
}

In addition, here a router debug:

------------------------------------------- -------- -------- ------ ---------------------------------------
  Name                                        Method   Scheme   Host   Path
 ------------------------------------------- -------- -------- ------ ---------------------------------------
  _wdt                                        ANY      ANY      ANY    /_wdt/{token}
  _profiler_home                              ANY      ANY      ANY    /_profiler/
  _profiler_search                            ANY      ANY      ANY    /_profiler/search
  _profiler_search_bar                        ANY      ANY      ANY    /_profiler/search_bar
  _profiler_info                              ANY      ANY      ANY    /_profiler/info/{about}
  _profiler_phpinfo                           ANY      ANY      ANY    /_profiler/phpinfo
  _profiler_search_results                    ANY      ANY      ANY    /_profiler/{token}/search/results
  _profiler_open_file                         ANY      ANY      ANY    /_profiler/open
  _profiler                                   ANY      ANY      ANY    /_profiler/{token}
  _profiler_router                            ANY      ANY      ANY    /_profiler/{token}/router
  _profiler_exception                         ANY      ANY      ANY    /_profiler/{token}/exception
  _profiler_exception_css                     ANY      ANY      ANY    /_profiler/{token}/exception.css
  _twig_error_test                            ANY      ANY      ANY    /_error/{code}.{_format}
  api_entrypoint                              ANY      ANY      ANY    /{index}.{_format}
  api_doc                                     ANY      ANY      ANY    /docs.{_format}
  api_jsonld_context                          ANY      ANY      ANY    /contexts/{shortName}.{_format}
  api_bookmakers_get_collection               GET      ANY      ANY    /bookmakers.{_format}
  api_bookmakers_get_item                     GET      ANY      ANY    /bookmakers/{id}.{_format}
  api_categories_get_collection               GET      ANY      ANY    /categories.{_format}
  api_categories_get_item                     GET      ANY      ANY    /categories/{id}.{_format}
  api_comments_get_collection                 GET      ANY      ANY    /comments.{_format}
  api_comments_post_collection                POST     ANY      ANY    /comments.{_format}
  api_comments_get_item                       GET      ANY      ANY    /comments/{id}.{_format}
  api_feed_items_get_collection               GET      ANY      ANY    /feed_items.{_format}
  api_feed_items_post_collection              POST     ANY      ANY    /feed_items.{_format}
  api_feed_items_get_item                     GET      ANY      ANY    /feed_items/{id}.{_format}
  api_feed_items_put_item                     PUT      ANY      ANY    /feed_items/{id}.{_format}
  api_follows_get_collection                  GET      ANY      ANY    /follows.{_format}
  api_follows_post_collection                 POST     ANY      ANY    /follows.{_format}
  api_follows_get_item                        GET      ANY      ANY    /follows/{id}.{_format}
  api_follows_delete_item                     DELETE   ANY      ANY    /follows/{id}.{_format}
  api_moderation_cards_get_collection         GET      ANY      ANY    /moderation_cards.{_format}
  api_moderation_cards_get_item               GET      ANY      ANY    /moderation_cards/{id}.{_format}
  api_picks_get_collection                    GET      ANY      ANY    /picks.{_format}
  api_picks_post_collection                   POST     ANY      ANY    /picks.{_format}
  api_picks_get_item                          GET      ANY      ANY    /picks/{id}.{_format}
  api_picks_put_item                          PUT      ANY      ANY    /picks/{id}.{_format}
  api_report_picks_post_collection            POST     ANY      ANY    /report_picks.{_format}
  api_subpicks_get_collection                 GET      ANY      ANY    /subpicks.{_format}
  api_subpicks_post_collection                POST     ANY      ANY    /subpicks.{_format}
  api_subpicks_get_item                       GET      ANY      ANY    /subpicks/{id}.{_format}
  api_subpicks_put_item                       PUT      ANY      ANY    /subpicks/{id}.{_format}
  api_subpick_type_events_get_item            GET      ANY      ANY    /subpick_type_events/{id}.{_format}
  api_subpick_type_frees_get_item             GET      ANY      ANY    /subpick_type_frees/{id}.{_format}
  api_subscribed_bookmakers_get_collection    GET      ANY      ANY    /subscribed_bookmakers.{_format}
  api_subscribed_bookmakers_post_collection   POST     ANY      ANY    /subscribed_bookmakers.{_format}
  api_subscribed_bookmakers_get_item          GET      ANY      ANY    /subscribed_bookmakers/{id}.{_format}
  api_subscribed_bookmakers_delete_item       DELETE   ANY      ANY    /subscribed_bookmakers/{id}.{_format}
  api_users_get_collection                    GET      ANY      ANY    /users.{_format}
  api_users_post_collection                   POST     ANY      ANY    /users.{_format}
  api_users_get_item                          GET      ANY      ANY    /users/{id}.{_format}
  api_users_put_item                          PUT      ANY      ANY    /users/{id}.{_format}
  api_user_likes_get_collection               GET      ANY      ANY    /user_likes.{_format}
  api_user_likes_post_collection              POST     ANY      ANY    /user_likes.{_format}
  api_user_likes_get_item                     GET      ANY      ANY    /user_likes/{id}.{_format}
  api_user_likes_delete_item                  DELETE   ANY      ANY    /user_likes/{id}.{_format}
  api_login_check                             ANY      ANY      ANY    /login_check
  api_jwt_refresh_token                       ANY      ANY      ANY    /token/refresh
  api_users_me                                GET      ANY      ANY    /me
 ------------------------------------------- -------- -------- ------ ---------------------------------------

The route is here.

Documentation also generate a required "id" field, while i don't want it :

I also tried to "cheat" by using "_api_collection_operation_name", and redapt User correctly, but i got an "Illegal offset" error even if i return an array containing the User in method __invoke($data)

Do you have a solution ? Anyway, thanks for this useful bundle !

Consider this scenario:

// src/AppBundle/Entity/Thing.php
namespace AppBundle\Entity;

use Doctrine\Common\Collections\Collection;
use Doctrine\ORM\Mapping as ORM;
use Dunglas\ApiBundle\Annotation\Iri;

/**
 * The most generic type of item.
 *
 * @see http://schema.org/Thing Documentation on Schema.org
 *
 * @ORM\MappedSuperclass
 * @Iri("http://schema.org/Thing")
 */
abstract class Thing
{
    /**
     * @var Collection<ImageObject> An image of the item. This can be a [URL](http://schema.org/URL) or a fully described [ImageObject](http://schema.org/ImageObject).
     *
     * @ORM\ManyToMany(targetEntity="ImageObject")
     * @Iri("http://schema.org/image")
     */
    private $image;
}

// src/AppBundle/Entity/ImageObject.php
namespace AppBundle\Entity;

use Doctrine\ORM\Mapping as ORM;
use Dunglas\ApiBundle\Annotation\Iri;

/**
 * An image file.
 *
 * @see http://schema.org/ImageObject Documentation on Schema.org
 *
 * @ORM\Entity
 * @Iri("http://schema.org/ImageObject")
 */
class ImageObject extends MediaObject
{
}

(CreativeWork and MediaObject omitted for brevity)

This breaks down whenever there's more than one entity extending from Thing (well, of course...)

Hello,

this question is worrying me since days and I can't find the answer: as Api platform depends on React and as React is not using a real "open source" license, what are the risks to use Api Platform or any-dependent project using React?

I'm pretty sure the actual MIT license can't be applied because the Patents claimed by Facebook can't be canceled, to be more precise this part of MIT license can't be applied as it to deal in the Software without restriction.

Should we notice the developer, the end users? Should we use the BSD + patents license like Facebook did?

Mickaël

API Platform version(s) affected: 3.0.8

Description

new Get(security: '(is_granted("ROLE_USER") and object.customer == user) or is_granted("ROLE_ADMIN")')

#[Orm\ManyToOne(targetEntity: Customer::class, cascade: ['persist'], inversedBy: 'appointments')]
#[JoinColumn(name: "app_cr", referencedColumnName: "cr_id")]
public ?Customer $customer = null;

For some hours everything runs fine. But then I'm getting 403 - Forbidden error (user/customer is correctly correctly authenticated). When I clear the cache (php bin/console cache:clear), everything runs again without any other changes for some hours.

Using only security: 'is_granted("ROLE_USER")' works fine as well.

The Customer Entity has the following security setting:

security: '(is_granted("ROLE_USER") and object == user) or is_granted("ROLE_ADMIN")'

And I can GET the Customer data without problem, but the call to the endpoint mentioned above fails.

How to reproduce

Possible Solution

Additional Context

System  Linux dd19338 5.15.0-52-generic #58~20.04.1-Ubuntu SMP Thu Oct 13 13:09:46 UTC 2022 x86_64
Build Date  Nov 28 2022 09:57:52
Build System    Linux
Server API  FPM/FastCGI
Virtual Directory Support   disabled
Configuration File (php.ini) Path   /etc/php81/fpm
Loaded Configuration File   /etc/php81/fpm/php.ini
Scan this dir for additional .ini files     /etc/php81/cgi/conf.d


This program makes use of the Zend Scripting Language Engine:
Zend Engine v4.1.13, Copyright (c) Zend Technologies
with Zend OPcache v8.1.13, Copyright (c), by Zend Technologies

framework:
    cache:
        app: cache.adapter.apcu

 -------------------- ------------------------------------------- 
  Symfony                                                         
 -------------------- ------------------------------------------- 
  Version              6.2.2                                      
  Long-Term Support    No                                         
  End of maintenance   07/2023 (in +214 days)                     
  End of life          07/2023 (in +214 days)                     
 -------------------- ------------------------------------------- 
  Kernel                                                          
 -------------------- ------------------------------------------- 
  Type                 App\Kernel                                 
  Environment          prod                                       
  Debug                false                                      
  Charset              UTF-8                                      
  Cache directory      ./var/cache/prod (7.8 MiB)                 
  Build directory      ./var/cache/prod (7.8 MiB)                 
  Log directory        ./var/log (0 B)                            
 -------------------- ------------------------------------------- 
  PHP                                                             
 -------------------- ------------------------------------------- 
  Version              8.1.13                                     
  Architecture         64 bits                                    
  Intl locale          de_DE                                      
  Timezone             Europe/Berlin (2022-12-29T15:08:00+01:00)  
  OPcache              true                                       
  APCu                 true                                       
  Xdebug               false                                      
 -------------------- -------------------------------------------

What can cause the problem?

API Platform version(s) affected: 3.0.8

Description

$ docker-compose up ERROR: The Compose file './docker-compose.override.yml' is invalid because: services.pwa.environment.WATCHPACK_POLLING contains true, which is an invalid type, it should be a string, number, or a null

How to reproduce

• Create a new github workspace
• git clone --depth 1 --branch v3.0.8 https://github.com/api-platform/api-platform.git
• docker-compose up or docker-compose build and then up

Possible Solution

Additional Context

API Platform version(s) affected: latest(?)

It's reproducible in the demo application.

Description
hydra:previous is not present for the first page of resource collections.

hydra:next is not present for the last page of resource collections.

Thus both properties have to be declared as nullable, which they are not.

How to reproduce

• Open https://demo.api-platform.com/docs.json
• Find hydra:previous and hydra:next properties declaration.
• Notice that they are not declared as nullable.

Possible Solution
Declare hydra:previous and hydra:next properties as nullable.

Additional Context
This is important for a correct client auto-generation based on the API specification.

API Platform version(s) affected: 3.0.1

Description
I have been unable to get the GroupSequence validation to work in my code 3.0.7

How to reproduce
Using the API-Platform demo I modified MySequencedGroup.php such that it triggered the Default group for Book as 'first' and 'second' are not defined on Book.

public function __invoke() { // return new GroupSequence(['first', 'second']); // now, no matter which is first in the class declaration, it will be tested in this order. return new GroupSequence(['Book']); }

I invoked a POST for Book and the Default validation is not triggered

The documentation for services.yml is also incorrect

api/config/services.yaml

services: App\Validator\MySequencedGroup: ~ public: true

I believe it should be

api/config/services.yaml

services: App\Validator\MySequencedGroup: public: true

Hi iam using api/platform 3.0.7 and i want to modify graphql operations with yaml.

My yaml looks like this:

REST: i want only GET method GRAPHQL: i want enable only Query and Create mutation

Namespace\To\Entity:
    operations:
        ApiPlatform\Metadata\GetCollection: ~
        ApiPlatform\Metadata\Get: ~
    graphQlOperations:
        ApiPlatform\Metadata\GraphQl\Query: ~
        ApiPlatform\Metadata\GraphQl\Mutation:
            name: create

with REST ("operation" namespace) it works fine and i can see only GET methods. But with graphql i still can do collenctionQuery and all other mutations.

What am i doing wrong?

Thx for answer

API Platform version(s) affected: 2.7.*

Description

The api:graphql:export command generates wrong schema for embedded Relation Input

input AuthorNestedInput {
  id: ID
  title: String!
  _id: Int! // <-- Required
}

How to reproduce

https://api-platform.com/docs/core/graphql/#embedded-relation-input-creation-of-relation-in-mutation

Possible Solution

Additional Context