Passer au contenu principal

Moyens GraphQL

Casbin follows the officially suggested way to provide authorization for GraphQL endpoints by having a single source of truth for authorization: https://graphql.org/learn/authorization/. In other words, Casbin should be placed between the GraphQL layer and your business logic.

// La logique d'autorisation Casbin vit dans postRepository
var postRepository = require('postRepository');

var postType = new GraphQLObjectType({
name: 'Post',
champs: {
body: {
type: GraphQLString,
résolve: (post, argus, contexte, { rootValue }) => {
return postRepository. etBody(context.user, post);
}
}
}
});

Supported GraphQL Middlewares​

A complete list of Casbin GraphQL middlewares is provided below. Any third-party contributions on a new GraphQL middleware are welcomed. Please inform us, and we will add it to this list:)

MiddlewareImplémentation GraphQLAuteurDescription
auth-graphqlgraphqlCasbinUn middleware d'autorisation pour graphql-go
graphql-casbingraphql@esmaeilpourAn implementation of using Graphql and Casbin together
format@@0 gqlgen_casbin_RBAC_exampleGqlgen@WenyXu(vide)