Accepting the none algorithm in dgraph graphql auth

What you wanted to do

I wanted to use my firebase emulator authentication with my local dgraph development environment.
But the firebase emulator generates a unsigned token with the “none” algorithm for the JWT. Which dgraph graphql auth does not support yet

What you did

I created a pull request to resolve this issue (https://github.com/dgraph-io/dgraph/pull/8066).
But I am not sure if a PR without a forum post get a review so that’s why I am also writing this little forum post about it.

The PR adds the JWT none signing algorithm to the dgraph graphql auth environment and enforces that the VerificationKey has to be set the specific security string found in the JWT go library (https://github.com/dgrijalva/jwt-go/blob/master/none.go#L27)

1 Like