conradwt

What's the recommended approach for securing GraphQL APIs?

Hi, I’m building an application that will have support for both the web and mobile. At this time, I’m using PhxGenAuth for authentication on the web. However, it appears that there’s no out-of-the-box support for API authentication.

Thus, I was wondering, what’s the recommended approach for securing GraphQL APIs these days? From the book “Craft GraphQL APIs in Elixir with Absinthe”, it appears that JWTs is a good solution to go with for now.

Finally, are there any recommended Hex authentication packages that support both session and API authentication?

1 comment

#community /phoenix /book-craft-graphql-apis-in-elixir-with-absinthe #graphql

6 1369 1

2022-04-04 15:35:09 UTC

Most Liked

OvermindDL1

A header token or a token passed in the message directly are the two ways I most often see.

Post #3

Where Next?

View thread on forum

View Craft Graphql Apis In Elixir With Absinthe's book portal

Post errata for this book

Post a suggestion for this book

Post a question about this book

Post a review about this book

phoenix

community

graphql

Home Backend>Questions

#community /phoenix /book-craft-graphql-apis-in-elixir-with-absinthe #graphql

6 1369 1

Last post

Popular Backend topics

Backend>Questions

Not fully understanding the code in the example in "Learn to Program"

/ruby /book-learn-to-program-2nd-edition

19 1501 13

2020-07-28 11:57:28 UTC

New

Backend>Questions

AWS: Best practices implementing fan-out with SNS and SQS

At work we plan to replace a totally overkill Kafka instance with a combination of SNS and SQS. I don’t want to get into a discussion on ...

#aws #aws-sns #aws-sqs #terraform

3 1027 0

2020-08-20 08:32:38 UTC

New

Backend>Questions

Can Phoenix LiveView be used in multi-page applications or does it have to be a SPA?

Can Phoenix LiveView be used in multi-page applications, unlike React/Vue/Blazor which seems to be targeted for SPA?

/phoenix #liveview

6 2742 4

2021-03-02 07:00:35 UTC

New

Backend>Questions

Export data from Oracle export files (expdp) to PostgreSQL

Hey everybody! I’m working on the project that includes import of Oracle data to PostgreSQL. That data comes as Oracle export (expdp) fi...

#postgres #oracle

2 1891 1

2021-03-24 14:42:25 UTC

New

Backend>Questions

Are there any good resources of using CQRS/EventSourcing in an Elixir/Phoenix application?

/elixir /phoenix #cqrs #event-sourcing

16 2299 5

2021-04-12 16:19:19 UTC

New

Backend>Questions

Programming Elixir or Elixir in Action?

Reading Programming Elixir 1.6 book, I’ve completed part 1 of the book. Now I’m thinking of reading Elixir in Action. What do you all sug...

/elixir

34 2021 8

2021-06-08 01:20:47 UTC

New

Backend>Questions

Please tell me how to write a query for this in nodejs

API 4 Path: /user/following/ Method: GET Description: Returns the list of all names of people whom the user follows Response [ { ...

/nodejs

7 3447 3

2021-06-23 23:49:49 UTC

New

Backend>Questions

Novice developer hoping to learn Elixir - any tips?

Hello Folks, I am a novice developer from India. Intending to learn Elixir and web apps (phoenix framework). What are things that I MUS...

/elixir #beginner #suggestion

53 1792 14

2021-10-10 03:28:37 UTC

New

Backend>Questions

Is there a way to have Elixir Records without default values?

Background I am trying to find a cheap and easy way to create New Types in Elixir, and Records seem to be just what I would need. Probl...

/elixir

10 1230 2

2022-04-06 13:38:59 UTC

New

Backend>Questions

How to get the top X results of a given category using Ecto?

Background I have to queries that return a colossal amount of data on their own. I cannot use Repo.all as doing so would materialize thes...

/elixir #ecto

4 1072 3

2023-02-13 11:04:13 UTC

New

Other popular topics

Backend>Learning Resources

Testing Elixir

Write Elixir tests that you can be proud of. Dive into Elixir’s test philosophy and gain mastery over the terminology and concepts that u...

pragprog.com

#pragprog /elixir #published-book /book-testing-elixir

33 5004 8

2021-01-05 06:17:50 UTC

New

General Dev>Dev Chat

Best chairs for developers?

What chair do you have while working… and why? Is there a ‘best’ type of chair or working position for developers?

#workspace #opinions

74 5463 41

2022-12-31 03:22:23 UTC

New

Linux>Chat

RancherOS is in end of life

Oh just spent so much time on this to discover now that RancherOS is in end of life but Rancher is refusing to mark the Github repo as su...

#linux #rancheros

10 6358 6

2021-01-30 21:04:03 UTC

New

Science/Tech>Health & Diet

David Sinclair's new Lifespan podcast

We’ve talked about his book briefly here but it is quickly becoming obsolete - so he’s decided to create a series of 7 podcasts, the firs...

#health #podcasts #bio-hackers #david-sinclair

87 6790 49

2022-04-12 16:27:36 UTC

New

Game Dev>Questions

Can I use Java to program a game for Nintendo switch?

I am trying to crate a game for the Nintendo switch, I wanted to use Java as I am comfortable with that programming language. Can you use...

/java #nintendo

8 4771 3

2023-09-15 11:15:04 UTC

New

Community>In The Spotlight

Spotlight: VM Brasseur (Author) Interview and AMA!

Author Spotlight: VM Brasseur @vmbrasseur We have a treat for you today! We turn the spotlight onto Open Source as we sit down with V...

#author-spotlight /book-forge-your-future-with-open-source

16 5051 11

2023-03-27 16:00:12 UTC

New

Game Dev>Questions

I want to learn how make a game, but where should I start?

I’m able to do the “artistic” part of game-development; character designing/modeling, music, environment modeling, etc. However, I don’t...

#game-dev

15 4965 9

2025-10-18 13:12:58 UTC

New

Backend>Learning Resources

Agile Web Development with Rails 8

Get the comprehensive, insider information you need for Rails 8 with the new edition of this award-winning classic. Sam Ruby @rubys ...

pragprog.com

#pragprog #web-development /ruby /rails #published-book /book-agile-web-development-with-rails-8

12 7404 7

2025-03-27 18:33:39 UTC

New

Game Dev>Chat

Hair Salon Games for Girls Fun

Hair Salon Games for Girls Fun Girls Hair Saloon game is mainly developed for kids. This game allows users to select virtual avatars to ...

#ios #android #unity #fun

2 3556 1

2025-02-27 10:48:33 UTC

New

AI>Questions

What are the best text-to-speech ai generation tools that you can run locally?

Background Lately I am in a quest to find a good quality TTS ai generation tool to run locally in order to create audio for some videos I...

#ai #text-to-speech

6 8411 3

2025-03-24 16:48:39 UTC

New

What's the recommended approach for securing GraphQL APIs?

conradwt

What's the recommended approach for securing GraphQL APIs?

Most Liked

OvermindDL1

Where Next?

Popular Backend topics

Not fully understanding the code in the example in "Learn to Program"

AWS: Best practices implementing fan-out with SNS and SQS

Can Phoenix LiveView be used in multi-page applications or does it have to be a SPA?

Export data from Oracle export files (expdp) to PostgreSQL

Are there any good resources of using CQRS/EventSourcing in an Elixir/Phoenix application?

Programming Elixir or Elixir in Action?

Please tell me how to write a query for this in nodejs

Novice developer hoping to learn Elixir - any tips?

Is there a way to have Elixir Records without default values?

How to get the top X results of a given category using Ecto?

Other popular topics

Testing Elixir

Best chairs for developers?

RancherOS is in end of life

David Sinclair's new Lifespan podcast

Can I use Java to program a game for Nintendo switch?

Spotlight: VM Brasseur (Author) Interview and AMA!

I want to learn how make a game, but where should I start?

Agile Web Development with Rails 8

Hair Salon Games for Girls Fun

What are the best text-to-speech ai generation tools that you can run locally?

Latest in Craft GraphQL APIs in Elixir with Absinthe

Latest in Phoenix

Backend>Questions

Latest on Devtalk

We ❤️ helpful members!

Categories:

Sub Categories:

Popular Portals

We're in Beta

What's the recommended approach for securing GraphQL APIs?

conradwt

What's the recommended approach for securing GraphQL APIs?

Most Liked

OvermindDL1

Where Next?

Popular Backend topics

Not fully understanding the code in the example in "Learn to Program"

AWS: Best practices implementing fan-out with SNS and SQS

Can Phoenix LiveView be used in multi-page applications or does it have to be a SPA?

Export data from Oracle export files (expdp) to PostgreSQL

Are there any good resources of using CQRS/EventSourcing in an Elixir/Phoenix application?

Programming Elixir or Elixir in Action?

Please tell me how to write a query for this in nodejs

Novice developer hoping to learn Elixir - any tips?

Is there a way to have Elixir Records without default values?

How to get the top X results of a given category using Ecto?

Other popular topics

Testing Elixir

Best chairs for developers?

RancherOS is in end of life

David Sinclair's new Lifespan podcast

Can I use Java to program a game for Nintendo switch?

Spotlight: VM Brasseur (Author) Interview and AMA!

I want to learn how make a game, but where should I start?

Agile Web Development with Rails 8

Hair Salon Games for Girls Fun

What are the best text-to-speech ai generation tools that you can run locally?

Sponsor Spotlight

Latest in Craft GraphQL APIs in Elixir with Absinthe

Latest in Phoenix

Backend>Questions

Latest on Devtalk

We ❤️ helpful members!

Devtalk Sponsors

Categories:

Sub Categories:

Popular Portals

Devtalk Sponsors

We're in Beta