Authentication and Authorization

Authentication with Hasura can be implemented using

• JWT
• Webhooks
• Unauthenticated public access

In all of these cases, it is important to configure an admin secret to begin with.

Authorization with Hasura can be implemented using

• Role based permissions: per role, per schema, per table, per operation type
• Set role access rules (records and fields) for Insert, Select, Update, and Delete

Both Authentication and Authorization have been covered in our Hasura Basics tutorial. Do check that out.

Also for the slack model being used in this tutorial, we have the Slack Authorization tutorial talking about setting up role based permissions from scratch.

Get Started with GraphQL Now

Hasura Cloud gives you a fully managed, production ready GraphQL API as a service to help you build modern apps faster.

Try Hasura Cloud for Free