Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
M
M
mschekotov2021-03-16 13:53:23
Access rights
mschekotov, 2021-03-16 13:53:23

How to delimit access to type fields in GraphQL API?

There is a GraphQL API with a specific set of types, queries and mutations.
There is authentication: clients from different user groups work with the API.
There is authorization: each group has restrictions on the types of fields they can read (for example, administrators can read all fields of the User type, moderators can read email and nickname, and ordinary users can only read nickname).

What is the "best" way to implement these restrictions according to the GraphQL ideology?

Give different groups different API schemes with different sets of fields in types?
To keep the uniform scheme, but at performance of requests to give in inaccessible fields null'y?
Introduce separate types with their own fields for each group?

The question is more theoretical; I wonder who does what, what are the advantages and pitfalls.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
T
topoleva2018-10-26 20:21:31
How to rename/create a file in Ubunru 18.04 LTS via right mouse button? 1Reply
N
nibbl2018-11-01 17:05:27
Why are the rights not applied? 2Reply
S
Stanislav Nekrasov2020-09-15 14:50:00
Why do many programs stop working properly without administrator rights? 1Reply
T
The Anonymous2014-04-27 09:20:48
How to elevate administrator rights have a regular user account? 3Reply
E
Egor2016-06-25 18:57:46
How to let Apache write to the root? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question