Investigate and build mechanism for applying the roles checks on resolver level for annotations:
{code}
extend type Query {
@hasRole(role: ADMIN)
allMemes:[Meme!]!
}
{code}
h4. Tasks
- Check how roles from annotations are provided
- See how keycloak express middleware can be used to provide role based security on the resolver level.
Questions:
- Should we reuse middleware on resolver level or write our own
- How we can check cluster roles vs client roles (with prefixes) should be care about role types?
|
|
