Version: v3.x (DDN)

Auth

Introduction

Hasura is agnostic about how you authenticate users. You can integrate many popular auth services or use your own custom solution.

After authentication, session variables are passed via either a valid JWT or webhook to the engine to be checked against your access control rules or "permissions" to determine what data the user can access.

Private vs Public

You can choose to make your Hasura DDN API public or private. Read more.

AuthConfig options

Authentication in Hasura DDN can be set up in one of three modes. These modes and their configuration options are specified in the AuthConfig object within your metadata.

JWT mode

Your authentication service must issue JWTs which contain session variables that are passed to the Hasura Engine by the client on each request. Read more.

Webhook mode

Hasura Engine will call a webhook on each request with the client headers forwarded. On successful authentication, the webhook must return a valid http response with session variables in the body. Read more.

NoAuth mode

No authentication is required for a specific role to access the data. Read more.

Auth

Introduction

Private vs Public

AuthConfig options

JWT mode

Webhook mode

NoAuth mode

Build an API in Less Than a Minute with Hasura DDN

Was this helpful?

Auth

Introduction​

Private vs Public​

AuthConfig options​

JWT mode​

Webhook mode​

NoAuth mode​

Build an API in Less Than a Minute with Hasura DDN

Was this helpful?

Introduction

Private vs Public

AuthConfig options

JWT mode

Webhook mode

NoAuth mode