graphql-engine icon indicating copy to clipboard operation
graphql-engine copied to clipboard
verified publisher icon hasura

Supporting JWT and Webhook Auth Mode together

Open adamrneary opened this issue 4 years ago • 4 comments

Today, auth modes are either JWT mode or Webhook mode, but we would ideally prefer to support both. The logic could be simple enough. If the request has an Authorization header beginning with Bearer, then treat it as a JWT auth request. Otherwise, forward to the webhook.

Today we're having to send all traffic to the webhook, including requests with simple JWTs. It would be great to avoid this hop.

adamrneary avatar Feb 03 '21 19:02 adamrneary

Hello @0x777 ! Any news on this? Thank you!

bduron avatar Aug 26 '21 15:08 bduron

I would also find this useful to auth web clients with JWT and api clients with webhook

s1monj avatar Feb 17 '22 01:02 s1monj

@rahulagarwal13 Could you please add your two cents? This is a very valid use case and would make custom auth considerably easier, as it wouldn't be necessary to forward to a webhook for absolutely every request.

revelstoke-tim avatar Jan 18 '23 16:01 revelstoke-tim

any update on this?

Zerebokep avatar Sep 29 '25 08:09 Zerebokep