What's the recommended approach for securing GraphQL APIs?

conradwt
Backend Developer ForumQuestions/Help

What's the recommended approach for securing GraphQL APIs?

Hi, I’m building an application that will have support for both the web and mobile. At this time, I’m using PhxGenAuth for authentication on the web. However, it appears that there’s no out-of-the-box support for API authentication.

Thus, I was wondering, what’s the recommended approach for securing GraphQL APIs these days? From the book “Craft GraphQL APIs in Elixir with Absinthe”, it appears that JWTs is a good solution to go with for now.

Finally, are there any recommended Hex authentication packages that support both session and API authentication?

2 comments
#community/phoenix/book-craft-graphql-apis-in-elixir-with-absinthe#graphql
6 914 2

Popular Backend topics Top

PragmaticBookshelf
Backend Developer ForumLearning Resources

Build Chatbot Interactions
The next step in the evolution of user interfaces is here. Chatbots let your users interact with your service in their own natural langua...
/ruby#pragprog#published-book/book-build-chatbot-interactions
12 1464 6
New
PragmaticBookshelf
Backend Developer ForumLearning Resources

Craft GraphQL APIs in Elixir with Absinthe
Your domain is rich and interconnected, and your API should be, too. Upgrade your web API to GraphQL, using flexible queries to empower y...
/elixir#pragprog#published-book#api/book-craft-graphql-apis-in-elixir-with-absinthe
22 1733 10
New
PragmaticBookshelf
Backend Developer ForumLearning Resources

Testing Elixir
Write Elixir tests that you can be proud of. Dive into Elixir’s test philosophy and gain mastery over the terminology and concepts that u...
/elixir#pragprog#published-book/book-testing-elixir
33 2316 8
New
bot
Backend Developer ForumNews

Kotlin v1.4.0 released!
Kotlin v1.4.0 has been released. Link: Release Kotlin 1.4.0 · JetBrains/kotlin · GitHub
/kotlin#language-release-news
1 1340 0
New
DevotionGeo
Backend Developer ForumChat/Discussions

Mnesia vs (something like) Riak and CouchDB, differences, pros and cons, and what was your experience using them?
/erlang#riak#couchdb#mnesia
3 1587 2
New
OvermindDL1
Backend Developer ForumChat/Discussions

What's special about Rust's Rocket framework
Woooooooo! This is such a huge release for it, and 2 years incoming! In short, the library is now using an updated hyper backend (not j...
/rust/rocket#sticky
20 2653 6
New
DevotionGeo
Backend Developer ForumChat/Discussions

What do you use to read Erlang docs?
What do you people do for reading Erlang docs? Is there something like Ruby’s ri? I installed manual pages for Erlang under /usr/local/...
/erlang#opinions
35 1358 11
New
First poster: OvermindDL1
Backend Developer ForumNews

Announcing Axum - an easy to use, powerful, web framework for Tokio (Tokio is an asynchronous runtime for the Rust programming language)
Today we are happy to announce axum: An easy to use, yet powerful, web framework designed to take full advantage of the Tokio ecosystem. ...
tokio.rs
/rust#tokio#axum
13 1544 6
New
PragmaticBookshelf
Backend Developer ForumLearning Resources

Programming WebRTC
Use WebRTC to build web applications that stream media and data in real time directly from one user to another, all in the browser. ...
#pragprog#published-book/js#webrtc/book-programming-webrtc
26 1761 7
New
AstonJ
Backend Developer ForumQuestions/Help

Psql: error: connection to server on socket "/tmp/.s.PGSQL.5432" failed: No such file or directory
If you’re getting errors like this: psql: error: connection to server on socket “/tmp/.s.PGSQL.5432” failed: No such file or directory ...
/rails#macos/postgresql
1 955 1
New

Other popular topics Top

Exadra37
Linux Developer ForumQuestions/Help

AMD or Intel for Programming with Linux as the OS?
I am thinking in building or buy a desktop computer for programing, both professionally and on my free time, and my choice of OS is Linux...
#web-development#mobile#android#linux#desktop-computer#mobile-development
36 5133 10
New
AstonJ
Code Editors

Poll: Which code editor do you use?
You might be thinking we should just ask who’s not using VSCode :joy: however there are some new additions in the space that might give V...
/vscode
105 4396 51
New
AstonJ
Hardware

Custom keyboard keycaps
There’s a whole world of custom keycaps out there that I didn’t know existed! Check out all of our Keycaps threads here: https://forum....
#hardware/keyboards#keycaps#mechanical-keyboards
15 7803 20
New
PragmaticBookshelf
Game Developer ForumLearning Resources

Hands-on Rust: Effective Learning through 2D Game Development and Play
Rust is an exciting new programming language combining the power of C with memory safety, fearless concurrency, and productivity boosters...
#pragprog/rust#published-book/book-hands-on-rust
118 6877 31
New
AstonJ
Code Editors

Onivim 2 Code Editor
Thanks to @foxtrottwist’s and @Tomas’s posts in this thread: Poll: Which code editor do you use? I bought Onivim! :nerd_face: ...
#code-editors/onivim/revery
88 5042 33
New
Exadra37
Linux Developer ForumQuestions/Help

What is the most minimalist Linux server distro?
I am asking for any distro that only has the bare-bones to be able to get a shell in the server and then just install the packages as we ...
#linux#servers
66 19864 25
New
PragmaticBookshelf
In The Spotlight

Spotlight: Paolo Perrotta (Author)
“A Mystical Experience” Hero’s Journey with Paolo Perrotta @nusco Ever wonder how authoring books compares to writing articles?...
#community#author-spotlight/book-programming-machine-learning/book-metaprogramming-ruby-2
31 3353 16
New
PragmaticBookshelf
In The Spotlight

Spotlight: James Stanier (Author) Interview and AMA!
Author Spotlight: James Stanier (@jstanier) James Stanier, author of Effective Remote Work , discusses how to rethink the office as we...
#pragprog#remote/book-effective-remote-work
29 3854 12
New
PragmaticBookshelf
Backend Developer ForumLearning Resources

Agile Web Development with Rails 7
Rails 7 completely redefines what it means to produce fantastic user experiences and provides a way to achieve all the benefits of single...
#pragprog#web-development/ruby/rails#published-book/book-agile-web-development-with-rails-7
32 2728 10
New
PragmaticBookshelf
In The Spotlight

Spotlight: David Bryant Copeland (Author) Interview and AMA!
Author Spotlight: David Bryant Copeland (@davetron5000) We’re so happy to bring you another Author Spotlight, a series where we sit d...
#author-spotlight/book-agile-web-development-with-rails-6/book-rails-angular-postgres-and-bootstrap-second-edition/book-sustainable-web-development-with-ruby-on-rails
19 3184 16
New
Back to top

Latest in Backend

Actix web-v4.10.2, web-v4.10.1 and web-v4.10.0 released!
Backend News
Gleam: Hello echo! Hello git!
Backend News
PostgreSQL: PGConf.BE : Call for speakers and Registrations open
Backend News
PostgreSQL: pig v0.3 released: Build 400+ extensions with the extension wizard!
Backend News
Pigsty v3.3 Release: with 404 PostgreSQL Extensions
Backend News
GigCityElixir and NervesConf US 2025 - May 8-10
Backend Meetups/Confs
Scala 3.6.4 is now available!
Backend News
Clojure Deref (Mar 6, 2025)
Backend News
Scala Days 2025: Call for proposals
Backend News
Go: From unique to cleanups and weak: new low-level tools for efficiency
Backend News
Elixir v1.18.3 released!
Backend News
Kotlin v2.1.20-RC2 released!
Backend News
Django security releases issued: 5.1.7, 5.0.13 and 4.2.20
Backend News
PostgreSQL: PGConf.dev 2025 Schedule Announced!
Backend News
Quarkus 3.19.2 released!
Backend News

View all threads ❯

Latest (all)

Actix web-v4.10.2, web-v4.10.1 and web-v4.10.0 released!
Backend News
Gleam: Hello echo! Hello git!
Backend News
Long-lived Process and State Recovery After Crashes
Blogs/Articles/Talks/Podcasts
JavaScript Fatigue Strikes Back
In The News
The Great Re-shard: adding Postgres capacity (again) with zero downtime
In The News
The Natural System of Colours
In The News
PostgreSQL: PGConf.BE : Call for speakers and Registrations open
Backend News
A Path to Scalable Quantum Computers
In The News
olmOCR – Open-Source OCR for Accurate Document Conversion
In The News
AI is killing some companies, yet others are thriving - let's look at the data
In The News
Self-Hosting a Firefox Sync Server
In The News
Can ReactJS and LiveView coexist nicely?
Frontend Chat/Discussions
Speed or security? Speculative execution in Apple silicon
In The News
IBM Completes Acquisition of HashiCorp, Creates Comprehensive, End-to-End Hybrid Cloud Platform
In The News
Deepseek-ai/3FS: A high-performance distributed file system designed to address the challenges of AI training and inference workloads
In The News

View all threads ❯

We ❤️ helpful members!

We reward our most helpful members via our MOTM scheme - by giving away a whopping 25 books per year!

Member of the Month

Devtalk Sponsors

Pragmatic Bookshelf

Practical resources that improve the lives of professional developers.

Erlang Solutions

We build trusted fault-tolerant systems that scale to billions of users.

AppSignal

Catch errors, track performance, monitor hosts and more.

WyeWorks

Enabling companies to succeed by building software people love.

Pragmatic Studio

Courses that'll move you from confusion to "Aha, now I get it!"

View all our sponsors ❯

Categories:

My Saved Portals

    None saved yet

Popular Portals

Devtalk Sponsors

Pragmatic Bookshelf

Practical resources that improve the lives of professional developers.

Erlang Solutions

We build trusted fault-tolerant systems that scale to billions of users.

AppSignal

Catch errors, track performance, monitor hosts and more.

WyeWorks

Enabling companies to succeed by building software people love.

Pragmatic Studio

Courses that'll move you from confusion to "Aha, now I get it!"

View all our sponsors ❯

We're in Beta

About us Mission Statement See our Roadmap