The debate about how to secure GraphQL rages on. Many organizations are hesitant to adopt GraphQL for public-facing APIs as there is no precise method to handle authorization concerns as of yet. Without a role-based access layer to enable fine-grained permissions for each field (and underlying services that GraphQL might wrap), the query language can […]
The post GraphQL: Security by Obscurity Just Isn’t Enough appeared first on DevOps.com.
Source: DevOps.com