Webhook Mode

We have seen how to integrate JWT with Hasura using many of the popular providers. In case the Auth server you use cannot issue JWT tokens or doesn't have JWT integration at all to begin with, the webhook mode can be used.

This is a more common use case with existing legacy auth systems. Do note that with a webhook mode, the webhook has to be deployed, maintained and everytime a request is made to Hasura, it will in turn make a request to the webhook to authorize the request. This could have a slight latency depending on where the webhook is deployed.

If you are co-locating the webhook and Hasura servers, then the latency would be minimal and shouldn't be a concern.

Here's the architecture of how Hasura handles webhook mode for authentication.

Webhook Mode

To read more about using Webhook mode with Hasura, head to our docs on Using Webhooks

Did you find this page helpful?
Start with GraphQL on Hasura for Free
  • ArrowBuild apps and APIs 10x faster
  • ArrowBuilt-in authorization and caching
  • Arrow8x more performant than hand-rolled APIs
footer illustration
Brand logo
© 2024 Hasura Inc. All rights reserved