Key GraphQL ideas
Defines all possible data a client could request.
What is Schema?
What tool helps enforce authentication and authorization directly in the schema?
what is a custom directive?
What repos are we currently using graphQL in?
marketing-content-service
What kind of tokens do we use for our custom directives?
bearer tokens
What company developed graphQL?
Facebook (meta)
According to the graphQL docs, where should we be enforcing authorization?
business logic layer
Why / when would you use graphQL over REST?
You want specific data returned back to you.
Dealing with nested data.
You want to use one endpoint.
Etc...
If I want to use search resolver from the users-service, what are the two permissions needed to allow authorization?
1) Have the RepCompanyAdmin permission
2) Have the CompanyAdmin permission
What phrase have I heard nearly every day since entering the workforce?
high level overview