A weekly newsletter of the best news, articles and projects about GraphQL

TwitterSlack
Issue 86• Feb 23, 2018

Articles

Securing Your GraphQL API from Malicious Queries

If not properly secured, it's easy for attackers to overload and potentially take down GraphQL APIs, e.g. by sending deeply nested queries. In this article, Max Stoiber shares the approach they used at Spectrum to protect their GraphQL API from malicious requests.

Exploring different GraphQL Clients

For the longest time Apollo and Relay have been the most dominant GraphQL clients. Today, there are multiple other projects that emerged over the last couple of months, such as graphql-request or urql. Read this excellent article by Abhi Ayer to get an overview of the current GraphQL client landscape.

Tutorials

How to wrap a REST API with GraphQL

Wrapping REST APIs is one of the most exciting applications of GraphQL! This tutorial describes how you can turn a REST into a GraphQL API in 3 simple steps.
If you want to learn more about this topic, be sure to also watch Jon Wong's talk from the last GraphQL SF Meetup: Wrapping REST with GraphQL.

Tools & Open Source

LawJolla/prisma-auth0-example

Another approach to implement permissions in your GraphQL server is by using custom directives right inside your GraphQL schema definition. Check out this example by Dennis Walsh to learn more.

maticzav/graphql-shield

Matic Zavadlal has created a nice little library to secure GraphQL servers: "GraphQL Shield helps you create permission layer for your application. The idea behind it is to separate the permission logic from your application logic. This way you can you can make sure no request will ever be resolved if it wasn't meant to be."

View issue 85
View issue 87
Share the goods
Found a cool GraphQL resource? Tell us all about it!
Join the community
Follow on Twitter
Join us on Slack
topics
ArticlesTools & Open SourceEventsArticles & Open SourceGraphQL CommunityPodcasts & ShowsVideosTwitter ThreadsSurveysPODCASTS & SHOWSSurveyTutorialsLibraries and ToolsPodcasts and ShowsGraphQL Foundation Working Group UpdatesGraphQL Foundation Library UpdatesOther GraphQL Foundation NewsBooksAnnouncementsTools and Open SourceSlidesLibrariesReleasesUpdatesFrameworks and LibrariesCommunity & Events
Recent issues
Issue 348Issue 347Issue 346Issue 345Issue 344Issue 343Issue 342Issue 341Issue 340Issue 339Issue 338
Feeling nerdy? Query issues of GraphQL Weekly, with GraphQL itself!
Powered by the GraphQL Playground
Enter a query
1
2
3
4
5
6
7
8
9
10
11
12
13
14
{
  allIssues {
    id
    title
    published
    number
    date
    author {
      avatarUrl
      description
      name
    }
  }
}
or press CMD + Enter
Result
Curated by Stellate, and the awesome GraphQL community.