Odyssey

Learn at Summit

GraphQL: everything, in one queryWrite better queries & mutationsThe future of GraphQL routingIs GraphQL a trap?The Root of Auth ThingsWayfair's secret to snappier appsWalmart's GraphQL JourneyNetflix: Avoid these GraphQL pitfallsHow GraphQL & Apollo help drive Reddit's missionFine-tuning Apollo Client's normalized cacheApollo's GraphQL tooling in RustEscape the GraphQL MonolithReady for Summit 2024!
5. The Root of Auth Things
7m

The Root of Auth Things

Don't miss GraphQL Summit Virtual on November 7. Register for free!

In this video, Ashley Narcisse discusses the aspect of authorization in GraphQL and how it can be enforced through the use of directives on the schema.

We learn about the importance of context in authorization (GBAC, RBAC, ABAC, PBAC, and ReBAC), consistently enforcing authorization throughout the system.

Previous
Next
              GraphQL

              An open-source query language and specification for APIs that enables clients to request specific data, promoting efficiency and flexibility in data retrieval.

              directives

              A GraphQL annotation for a schema or operation that customizes request execution. Prefixed with @ and may include arguments. For example, the @lowerCase directive below can define logic to return the username field in lowercase:

              type User {
              username: String! @lowerCase
              }

              NEW COURSE ALERT

              Introducing Apollo Connectors

              Connectors are the new and easy way to get started with GraphQL, using existing REST APIs.

              Say goodbye to GraphQL servers and resolvers—now, everything happens in the schema!

              Take the course