Spring Boot GraphQL How to secure your GraphQL APIs in Java

preview_player
Показать описание
If you have already created your first GraphAPI in Spring Boot your next question might be how to yo secure it. This tutorial will teach you how to secure your GraphQL APIs in Spring Boot using Spring Security.

🔗Resources & Links mentioned in this video:

👋🏻Connect with me:

  1. Dan Vega
  2. dan vega
  3. graphql spring boot
  4. graphql spring boot example
  5. spring boot graphql tutorial
  6. spring boot
Рекомендации по теме
🍃 Introduction to 0:19:14

🍃 Introduction to Spring GraphQL with Spring Boot

Spring Boot and 1:01:22

Spring Boot and GraphQL Tutorial | 2024

Master Graphql with 0:33:57

Master Graphql with Spring Boot 🔥🔥

What Is GraphQL? 0:05:15

What Is GraphQL? REST vs. GraphQL

🔥 Mastering GraphQL 0:49:48

🔥 Mastering GraphQL & Spring Boot APIs | Real-world Example | @Javatechie

GRAPHQL en SPRING 0:10:54

GRAPHQL en SPRING BOOT - Tutorial Completo Fácil

GraphQL in Spring 0:34:45

GraphQL in Spring Boot: The Ultimate Guide for Beginners (2024)

Get EXACTLY what 0:14:31

Get EXACTLY what you want from your APIs: How to use GraphQL with Spring Boot

создаем GraphQL Server 0:15:25

создаем GraphQL Server на Spring Boot

Spring Boot With 0:41:35

Spring Boot With GraphQL Example | Java Techie

🔥 Master Graphql 0:53:07

🔥 Master Graphql with Spring Boot in one video in Hindi

Aprenda a criar 0:23:54

Aprenda a criar serviços web com Graphql e Spring Boot!

Create a GraphQL 0:13:58

Create a GraphQL Client in Java with Spring Boot

Spring Boot GraphQL 0:27:55

Spring Boot GraphQL Tutorial: How to test your GraphQL APIs

GraphQL Java and 0:51:36

GraphQL Java and Spring: The Latest Features by Rossen Stoyanchev @ Spring I/O 2024

Spring Boot GraphQL 0:20:34

Spring Boot GraphQL Tutorial: Simplify Your API with Query by Example

Spring Boot GraphQL 0:23:43

Spring Boot GraphQL How to secure your GraphQL APIs in Java

Learn how to 0:24:25

Learn how to use GraphQL Mutations in Spring Boot

Build GraphQL Services 1:27:47

Build GraphQL Services with Spring Boot like Netflix

Spring Boot GraphQL 1:11:07

Spring Boot GraphQL Tutorial

GraphQL - springboot 1:02:30

GraphQL - springboot implementation rest vs graphql

GraphQL Spring Boot 0:32:04

GraphQL Spring Boot - How to get started with Spring for GraphQL

Build GraphQL Services 0:48:21

Build GraphQL Services With Spring Boot Like Netflix (SpringOne 2024)

GraphQL In One 0:28:59

GraphQL In One Video | GraphQL Tutorial With Spring Boot

Комментарии
Автор

NIce video! Is there a way to disable the method security for a specific method only? For example: register and login methods.

setok
Автор

Hi Dan! Great video, my only question is that after I set up the security, although I can pass the first basic auth to get to the GraphiQL UI, immediately afterwards I am asked for my auth when I make it to the UI for the "graphql" path. Furthermore when I try to hit the graphql endpoint via postman it is saying I am unauthorized with a 401, so I supposed this is what is happening on the UI side of things as well. My GraphQL api worked before. I appreciate the video and any help.


import
import
import
import
import
import
import
import
import
import
import

@Configuration
@EnableWebSecurity
= true)
public class SecurityConfig {

@Bean
public InMemoryUserDetailsManager users() {
UserDetails user =
.username("user")
.password("password")
.roles("USER")
.build();
UserDetails admin =
.username("admin")
.password("password")
.roles("USER", "ADMIN")
.build();

return new InMemoryUserDetailsManager(user, admin);
}

@Bean
public SecurityFilterChain http) throws Exception {
return http
.csrf(csrf -> csrf.disable()) // (1)
.authorizeHttpRequests( auth -> {
// (2)
})
.sessionManagement(session -> // (3)
// (4)
.build();
}
}

import java.util.UUID;

import
import
import
import

import com.pojo.api.model.User;
import

@Controller
public class UserGraphQLController {

@Autowired
private UserService userService;

@Secured({"ROLE_USER"})
@SchemaMapping(typeName = "Query", field = "users")
public Iterable<User> users() {
return userService.getAllUsers();
}

}

reedmurphy
Автор

This is really informative, I have one question:- How could i register a user with spring security enabled? as graphql having one URL (/graphql) and there is no ROLE while registering.

dipun
Автор

Great video. I would like to see some best practices when 2 boot applications share the schema. One produces graphql and the other queries it through for example http. I am interested in approaches where the is shared. Solutions I have found so far: 1. copy pasting schema.graphqls (feels wrong to me in most scenarios), 2. using maven copy-resources plugin (this also I don't like it because it complicates the build on real world project) 3. having a maven module only with schema.graphqls and zero java code on that maven module (the model classes might be on that module but if the model classes also use things like Jackson annotations [without mixins], protobuff or avro; then the dependencies on the schema module and imports on model classes know about things that are not graphql)

ChrisB_Crisps
Автор

Hey Dan,
Thanks for creating a playlist of GraphQL using SpringBoot.
Can you please cover more videos in this playlist for other topics like logging using AOP, Unit Testing using JUnit and Mockito and other important concepts. It would be really appreciating if you cover these topics soon.
Thanks in Advance

rohansingh
Автор

what about testing? how to test secure API ?

omnnnooy
Автор

How do I limit access to individual fields?

asdqwe
Автор

Great video, Dan! Also, where can we get a JVM hat from?

alexgutjahr
Автор

Would be great if you can create similar video for this topic by using JWT tokens mechanism

AleksandarT