Authentication - Slash graphql

hyprnick · February 17, 2021, 10:33pm

My use case is this - I have a backend API that will only access the database. We may move from Slash hosting to on prem in the future but for now we are using slash. I don’t want to deal with ACLs just yet as that seems very nice but will slow us down in the beginning.

I’m confused by the multiple layers of authentication:

Slash API Key generated from the website
JWT based authentication defined in the schema (e.g. Auth0)

Are these two completely separate? I would like to only access the database using the Slash API token and not use JWT if possible. Is there a way to do just that?

I have this piece in my schema (with sensitive info removed) which seems to at least require the JWT however I would like it to only require the token.
Dgraph.Authorization {"ClosedByDefault":true}

Thank you!
Nick

Topic		Replies	Views
Slash API Keys Admin vs. Client Dgraph Cloud kind:question	4	973	September 10, 2020
Client Side Token Dgraph Cloud / Slash GraphQL auth	1	507	November 22, 2020
Issue with Slash GraphQL Authentication Dgraph Cloud / Slash GraphQL	5	1005	March 9, 2021
CLI slash-graphql: Creating API tokens Dgraph Cloud / Slash GraphQL status:accepted , kind:feature , ticket:created	1	434	October 20, 2020
Putting it All Together - Dgraph Authentication, Authorization, and Granular Access Control (PART 3) - Dgraph Blog Blog	0	795	October 9, 2020

Authentication - Slash graphql

Related topics