I'm trying to find out how to secure a graph.cool ...
# prisma-whats-newq
qsys
01/29/2018, 2:08 PMI'm trying to find out how to secure a graph.cool endpoint properly. It shouldn't be possible that anyone can even read the db, so one should set all access to at least authenticated.
This works fine with users authenticating e.g. via auth0. What if I have an endpoint talking to graph.cool, how can I secure it, by:
1. adding an IP whitelist
2. authentication/token?
p
patrick_madx
01/29/2018, 2:15 PMAre you looking for this? : http://www.graph.cool/docs/reference/auth/authentication/authentication-tokens-eip7ahqu5o#root-tokens
q
qsys
01/29/2018, 2:16 PMyeah... thx!
qsys
01/29/2018, 3:42 PMI thought it was... how do I generate root tokens (I'm using graphcool cloud)
qsys
01/29/2018, 3:43 PMI don't have a graphcool cli, nor service description, in the cloud service (afaik)
p
patrick_madx
01/29/2018, 4:17 PMHmmm... I'm not really an expert, but I think that you should be able to login to your cloud using the graphcool cli
2 Views