Aaron Saunders
Reputation: 33345
Working with AWS Amplify and Securing GraphQL API Calls
const client = new AWSAppSyncClient({
url: AWSConfig.aws_appsync_graphqlEndpoint,
region: AWSConfig.aws_appsync_region,
auth: {
type: AWSConfig.aws_appsync_authenticationType,
jwtToken: () => req.headers.authorization,
},
disableOffline: true,
offlineConfig: {
keyPrefix: "myPrefix",
},
});
I have been able to secure my API calls on my server endpoint by configuring an AppSync client, but I was hoping to do the same but use the API client provided by AWSAmplify, wondering if it is even possible.
This is my original code with the API client, but I kept getting no user available error. Is there a configuration option I am missing that allows me to set the token?
const { data, errors } = await API.graphql(
{
query: listPlayers,
authMode: "AMAZON_COGNITO_USER_POOLS",
}
);
Upvotes: 1
Views: 280
Answers (0)
Related Questions
- Make GraphQL api secure
- AWS Amplify Graph API that can be accessed without authorization (login)
- Authorization error when updating a GraphQL object using aws-amplify
- Field-level authorization with Amplify GrraphQL
- Amplify authentication user data + graphql API
- How to give separate permissions to GraphQL queries in AWS Amplify
- Secure GraphQL queries with express js, passport s
- Amplify GraphQL Error not authorized to access create
- With AWS Amplify Auth and GraphQL API, how would you have some public, and some private query/mutation calls?
- Graphql queries generated by amplify work well, but throw errors due to auth rules. Why?