Auth rules for @lamdba queries/mutations

rcbevans · August 24, 2021, 6:10am

Is it possible to define auth rules for a lambda query/mutation in the GraphQL schema being sent to Dgraph?

Something like

Query
{
    myAdminOnlyQuery(...): [MyResultType] @auth(...) @lamdba
}

If it’s not possible to define the auth rule in the GraphQL schema, is it possible to access JWT information inside the lambda body to perform custom auth checks there?

kolmez · September 29, 2021, 11:01am

Hi, You can access the JWT token inside your lambda from authHeader.

As of today it is not possible to use @auth directive on @lambdas, there is however a WIP to add @auth rules to @custom DQL directives (unfortunately not yet for @lambdas). see WIP: Auth rules custom DQL query

I believe the support for @auth rules on @custom directive is not yet shipped on the latest stable release (v21.03), but apparently it is merged on the main dgraph branch (don’t quote me on this).

Topic		Replies	Views
JWT Doesn't seem to be passed into Lambda graphql() query for lambda mutations Dgraph Cloud / Slash GraphQL auth , lambda	6	1086	March 11, 2021
Lambda Server on Dgraph Cloud needs update! Dgraph Cloud / Slash GraphQL kind:bug , lambda	11	753	May 6, 2023
Slash DGraph Lambdas Feature Requests / Small Change Dgraph Cloud / Slash GraphQL slash-graphql , dgraph , kind:feature	5	1370	March 22, 2021
Remote Authorization Hooks GraphQL community	8	1172	October 7, 2021
Is it possible to allow certain graphql mutations to only be executed by a lambda? GraphQL kind:question , lambda	4	1194	August 8, 2021

Auth rules for @lamdba queries/mutations

Related topics