I have figured out a solution in my case (I use Dgraph in combination with Auth0).
I have created an M2M login flow in Auth0 and attach an API Key to the token claim which I can then use in my @auth rules.
I have written a longer article about this here
Hope this helps!