Skip to content

DEV Community

Vladimir Novick for Hasura

Posted on Mar 26, 2019

Securing Hasura GraphQL Endpoint with Admin Secret key

#vue #graphql #hasura #postgres

Leaving your GraphQL endpoint unsecured is a bad idea, so in this video we will walk through how to secure your GraphQL endpoint with a secret key.

Top comments (2)

Subscribe

Austin Plogman • May 4 '19 • Edited

How do you prevent your url and access key from being shown in the network tab on Chrome dev tools? My website does not require a login or register so I am not sure how the authentication will work to prevent people from messing with your database.

Vladimir Novick • May 19 '19

Access key should be used only for server to server communication cause you are right it will be shown in network tab. I explained more about auth here dev.to/hasurahq/hasura-authenticat...

Read next

Vue Flow Quickstart and Best Practices

MonsterPi13 - Feb 2

To UUID, or not to UUID, that is the primary key question

Mircea Cadariu - Feb 2

Mastering Vue 3: A Comprehensive Guide to Building Modern Web Applications < Part 1 />

Hany Taha - Feb 2

How to Use Object Recognition with TensorFlow.js and Vue 3?

Eralp - Feb 2

Instant Realtime GraphQL APIs on your data

Hasura is free, open source and has an active community around it!

It will take you ~30 seconds to get your GraphQL endpoint up and running on the Hasura Cloud free tier.

Build powerful realtime applications with Hasura!

Get started for free

Save Time and Stop Writing GraphQL Resolvers

GraphQL Security in Production with Automated Allow Lists

#graphql #security #javascript

The rise of GraphQL APIs on data warehouses

#graphql #api #database