conradwt

What's the recommended approach for securing GraphQL APIs?

Hi, I’m building an application that will have support for both the web and mobile. At this time, I’m using PhxGenAuth for authentication on the web. However, it appears that there’s no out-of-the-box support for API authentication.

Thus, I was wondering, what’s the recommended approach for securing GraphQL APIs these days? From the book “Craft GraphQL APIs in Elixir with Absinthe”, it appears that JWTs is a good solution to go with for now.

Finally, are there any recommended Hex authentication packages that support both session and API authentication?

1 comment

#community /phoenix /book-craft-graphql-apis-in-elixir-with-absinthe #graphql

6 1369 1

2022-04-04 15:35:09 UTC

Most Liked

OvermindDL1

A header token or a token passed in the message directly are the two ways I most often see.

Post #3

Where Next?

View thread on forum

View Craft Graphql Apis In Elixir With Absinthe's book portal

Post errata for this book

Post a suggestion for this book

Post a question about this book

Post a review about this book

phoenix

community

graphql

Home Backend>Questions

#community /phoenix /book-craft-graphql-apis-in-elixir-with-absinthe #graphql

6 1369 1

Last post

Popular Backend topics

Backend>Questions

Do you recommend AWS Amplify for a small scale Uber clone?

Cross posting from HashNode. A friend of mine is creating Uber-like app for a small company with 200 to 1000 cars. The app will operate ...

#aws-amplify

13 1803 6

2022-01-21 13:35:49 UTC

New

Backend>Questions

I'm curious if I can have a feature like Elixir/Phoenix umbrella project when using Ruby On Rails

Following on an old discussion I started on Elixir Forum here, I finally made my mind to learn Ruby on Rails in addition to Elixir/Phoen...

/elixir /ruby /rails /phoenix

20 1995 9

2020-09-10 12:35:30 UTC

New

Backend>Questions

Programming Elixir or Elixir in Action?

Reading Programming Elixir 1.6 book, I’ve completed part 1 of the book. Now I’m thinking of reading Elixir in Action. What do you all sug...

/elixir

34 2021 8

2021-06-08 01:20:47 UTC

New

Backend>Questions

How to have custom enconding for struct using Jason?

Background I am trying to encode a structure into json format using the Jason library. However, this is not working as expected. Code L...

/elixir #json

6 2879 1

2022-03-15 08:19:56 UTC

New

Backend>Questions

Is there a UI for Ora2Pg?

Wanted to check if there is a UI available to use Ora2pg tool.

#postgres /postgresql #ora2pg

2 1524 2

2022-07-21 17:38:48 UTC

New

Backend>Questions

How to typespec guards in a human friendly way?

Background I am a fan of dialyzer and friends (looking at Gradient) and I try to have sepcs in my code as much as I can. To this end, I a...

/elixir #types #dialyzer

3 1103 1

2023-02-10 13:29:04 UTC

New

Backend>Questions

isReachable in Java throws an IOException

If isReachable throws an IOException in Java, what is the right step to do and why? The application, I believe, should halt the process ...

/java

1 893 0

2023-02-09 08:40:04 UTC

New

Backend>Questions

Selection Sort Program In C

I received this error for a binary search programme in C, despite the fact that it requested for inputs and produced the right output. Th...

1 881 0

2023-03-27 08:32:03 UTC

New

Backend>Questions

(ArgumentError) unknown application: :bakeware

Background When trying to execute mix release on a Windows 11 machine for a Phoenix project I get the following error: * assembling mark...

/elixir #deployments

2 746 1

2023-10-13 11:03:44 UTC

New

Backend>Questions

Psql: error: connection to server on socket "/tmp/.s.PGSQL.5432" failed: No such file or directory

If you’re getting errors like this: psql: error: connection to server on socket “/tmp/.s.PGSQL.5432” failed: No such file or directory ...

#macos /rails /postgresql

1 5553 1

2024-10-17 02:03:48 UTC

New

Other popular topics

Backend>Chat

What is the reason behind Rust’s web framework, Rocket, not performing as well as expected in the Techempower benchmarks?

I know that these benchmarks might not be the exact picture of real-world scenario, but still I expect a Rust web framework performing a ...

#web-frameworks /rust

36 7463 11

2020-06-21 10:50:02 UTC

New

General Dev>Dev Chat

Standing Desks

No chair. I have a standing desk. This post was split into a dedicated thread from our thread about chairs :slight_smile:

#workspace #opinions

177 9554 77

2022-09-27 18:40:05 UTC

New

General Dev>Hardware

GMK Serika Keycaps - Serika 2 available to order now!

I have seen the keycaps I want - they are due for a group-buy this week but won’t be delivered until October next year!!! :rofl: The Ser...

/keyboards #keycaps #mechanical-keyboards

9 5097 7

2020-12-05 21:32:30 UTC

New

General Dev>Hardware

BIIP MT3 Extended 2048 Custom Keycap Set (Drop)

This looks like a stunning keycap set :orange_heart: A LEGENDARY KEYBOARD LIVES ON When you bought an Apple Macintosh computer in the e...

/keyboards #apple #keycaps #mechanical-keyboards

14 6713 7

2020-12-12 19:58:26 UTC

New

General Dev>Dev Chat

How fast do you type? Check your WPM here!

Do the test and post your score :nerd_face: :keyboard: If possible, please add info such as the keyboard you’re using, the layout (Qw...

typing-speed-test.aoeu.eu

/keyboards

82 7682 31

2021-07-10 05:52:20 UTC

New

Linux>Chat

RancherOS is in end of life

Oh just spent so much time on this to discover now that RancherOS is in end of life but Rancher is refusing to mark the Github repo as su...

#linux #rancheros

10 6358 6

2021-01-30 21:04:03 UTC

New

Backend>Chat

Rails console using 100% CPU in dev (fix)

If you are experiencing Rails console using 100% CPU on your dev machine, then updating your development and test gems might fix the issu...

/ruby /rails

3 4188 3

2021-02-04 07:08:45 UTC

New

Frontend>Chat

Online Hand to eye coordination test

Was just curious to see if any were around, found this one: I got 51/100: Not sure if it was meant to buy I am sure at times the b...

#online-tools

4 4562 1

2022-03-27 10:53:45 UTC

New

Community>In The Spotlight

AMA with: Mark Volkmann (codebar Winter Lit Fest)

Ask Me Anything with Mark Volkmann @mvolkmann On February 24 and 25, we are giving you a chance to ask questions of PragProg author M...

/book-server-driven-web-apps-with-htmx #codebar-spotlight

37 3100 20

2025-02-26 21:39:39 UTC

New

Backend>Learning Resources

Simplicity

Fight complexity and reclaim the original spirit of agility by learning to simplify how you develop software. The result: a more humane a...

pragprog.com

#pragprog #published-book /book-simplicity

10 6553 8

2025-03-14 21:53:12 UTC

New

What's the recommended approach for securing GraphQL APIs?

conradwt

What's the recommended approach for securing GraphQL APIs?

Most Liked

OvermindDL1

Where Next?

Popular Backend topics

Do you recommend AWS Amplify for a small scale Uber clone?

I'm curious if I can have a feature like Elixir/Phoenix umbrella project when using Ruby On Rails

Programming Elixir or Elixir in Action?

How to have custom enconding for struct using Jason?

Is there a UI for Ora2Pg?

How to typespec guards in a human friendly way?

isReachable in Java throws an IOException

Selection Sort Program In C

(ArgumentError) unknown application: :bakeware

Psql: error: connection to server on socket "/tmp/.s.PGSQL.5432" failed: No such file or directory

Other popular topics

What is the reason behind Rust’s web framework, Rocket, not performing as well as expected in the Techempower benchmarks?

Standing Desks

GMK Serika Keycaps - Serika 2 available to order now!

BIIP MT3 Extended 2048 Custom Keycap Set (Drop)

How fast do you type? Check your WPM here!

RancherOS is in end of life

Rails console using 100% CPU in dev (fix)

Online Hand to eye coordination test

AMA with: Mark Volkmann (codebar Winter Lit Fest)

Simplicity

Latest in Craft GraphQL APIs in Elixir with Absinthe

Latest in Phoenix

Backend>Questions

Latest on Devtalk

We ❤️ helpful members!

Categories:

Sub Categories:

Popular Portals

We're in Beta

What's the recommended approach for securing GraphQL APIs?

conradwt

What's the recommended approach for securing GraphQL APIs?

Most Liked

OvermindDL1

Where Next?

Popular Backend topics

Do you recommend AWS Amplify for a small scale Uber clone?

I'm curious if I can have a feature like Elixir/Phoenix umbrella project when using Ruby On Rails

Programming Elixir or Elixir in Action?

How to have custom enconding for struct using Jason?

Is there a UI for Ora2Pg?

How to typespec guards in a human friendly way?

isReachable in Java throws an IOException

Selection Sort Program In C

(ArgumentError) unknown application: :bakeware

Psql: error: connection to server on socket "/tmp/.s.PGSQL.5432" failed: No such file or directory

Other popular topics

What is the reason behind Rust’s web framework, Rocket, not performing as well as expected in the Techempower benchmarks?

Standing Desks

GMK Serika Keycaps - Serika 2 available to order now!

BIIP MT3 Extended 2048 Custom Keycap Set (Drop)

How fast do you type? Check your WPM here!

RancherOS is in end of life

Rails console using 100% CPU in dev (fix)

Online Hand to eye coordination test

AMA with: Mark Volkmann (codebar Winter Lit Fest)

Simplicity

Sponsor Spotlight

Latest in Craft GraphQL APIs in Elixir with Absinthe

Latest in Phoenix

Backend>Questions

Latest on Devtalk

We ❤️ helpful members!

Devtalk Sponsors

Categories:

Sub Categories:

Popular Portals

Devtalk Sponsors

We're in Beta