Radek336
Reputation: 1
Strapi: GraphQL mutation without authentication
I program simple e-shop based on Strapi. I need to open my custom "order" mutation to public without any JWT token but I can't figure out how. Is it possible to do that in Strapi? Thanks.
Upvotes: 0
Views: 648
Answers (2)
misha130
Reputation: 5746
Look at https://docs.strapi.io/developer-docs/latest/plugins/graphql.html#extending-the-schema:
resolversConfig has a property called auth which is like:
auth: false to fully bypass the authorization system and allow all requests
So for example you need to specify your mutation name:
resolversConfig: {
'Mutation.updateAddress': {
auth: false,
},
},
Otherwise just override your resolver
Upvotes: 0
KONDRATJEV
Reputation: 86
In Strapi v4 you can do it like this:
- Go to "Settings";
- Open "Roles";
- Click on the "Public" role;
- Expand the desired model in the "Permissions" section;
- Specify which endpoints you want to give rights.
In your case it is "create".
Upvotes: 1
Related Questions
- GraphQL mutation variables
- How to execute a mutation in GraphQL?
- Graphql with nested mutations?
- GraphQl client query/mutation not working ( vanilla js )
- How to make Update Mutation - GraphQL (plus mongoDB)
- Graphql nested Mutation
- GraphQL and Strapi Session
- How to include mutation request metadata in GraphQL?
- Strapi.io graphQL mutation
- GraphQL-js mutation optional arguments