Techiio-author
Started by Natasha JonesSep 30, 2021

Open
Using Auth0 user ID in identity management for GraphQL

0 VIEWES 0 LIKES 0 DISLIKES SHARE
0 LIKES 0 DISLIKES 0 VIEWES SHARE

I have established a working flow in using Auth0 jwt to authenticate to my API. It currently follows a REST architecture. The Auth0 token is passed in a http-only cookie, and it provides an Auth user ID, which I have used to pull user-specific records from a database, as well as confirm the identity of the individual calling the API through the client.

My question is, how do I replicate this pattern in a graphQL architecture? I am currently using Postgraphile and Relay, however I am struggling to see how I can securely pass the Auth user ID in an HTTP only way to minimize vulnerabilities. Is there a way this can be done in a graphQL request?

0 Replies

You must be Logged in to reply
Trending Technologies
15
Software91
DevOps48
Frontend Development24
Backend Development20
Server Administration17
Linux Administration28
Data Center24
Sentry24
Terraform23
Ansible83
Docker70
Penetration Testing16
Kubernetes21
NGINX20
JenkinsX17
Techiio-logo

Techiio is on the journey to build an ocean of technical knowledge, scouring the emerging stars in process and proffering them to the corporate world.

Follow us on:

Subscribe to get latest updates

You can unsubscribe anytime from getting updates from us
Developed and maintained by Wikiance
Developed and maintained by Wikiance