Not allowed to secure GraphQL endpoint with JWT token

646 Views Asked by Ulises Giacoman At 20 October 2024 at 13:11

I'm running an express server and just put up JWT protection on my endpoints. I was testing out my /graphql endpoint and I am receiving a 403 Not allowed to provide a JWT token error. My other endpoints work fine, so I don't believe it is an issue with the JWT signing or verification. Any ideas?

var jwt = require('express-jwt');

var app = express();

var jwtCheck = jwt({
   secret: new Buffer(config.secret, 'base64'),
   audience: aud,
   issuer: iss
});

// enforce on all endpoints
app.use(jwtCheck);

app.use('/', postgraphql(config.db_string, config.db_schema, {
    development: true,
    log: true,
    secret: config.secret,
    graphiql: true,
}));

Original Q&A

There are 1 best solutions below

Ulises Giacoman On 29 December 2016 at 05:14 BEST ANSWER

Figured it out, problem was with not passing the correct parameters to PostgraphQL. If you pass a JWT token in the Authorization header to PostgraphQL, it expects a secret. If the secret does not exist, then PostgraphQL will throw the error 403 Not allowed to provide a JWT error.

Not allowed to secure GraphQL endpoint with JWT token

There are 1 best solutions below

Related Questions in NODE.JS

Related Questions in EXPRESS

Related Questions in JWT

Related Questions in GRAPHQL

Related Questions in POSTGRAPHQL

Trending Questions

Popular # Hahtags

Popular Questions