https://kotlinlang.org logo
Channels
lincheck
kobweb
koalaql
gsoc
kotlin-foundation
decouple
compose-android
hiring-french
benchmarks
china
philippines
ohio-kotlin-users
vankotlin
dublin
canada
nigeria
rhein-main
kodex
hacktoberfest
truth
portugal
romania
argentina
sg-user-group
korean
helsinki
functional
oldenburg
cambodia
vietnam
hungary
colorado
panamá
turkey
kotlin-samples
eclipse
kotlin-by-example
wwdc
denmark
thailand
build-tools
coimbatore
sofl-user-group
kotlintlv
udacityindia
quasar
spanish
kotlinbot
dckotlin
ge-kotlin
vim
croatia
javafx
kotlin-multiplatform-contest
osgi
brikk
revolver
tricity-kotlin-user-group
russian_feed
munich
estatik
karg
kotlintest
french
kotlin-in-action
gui
uae
georgia
kotlinlondon
polish
german-lang
kdbc
kotlin-asia
tampa
brazil
kotlin-logging
nepal
redux-kotlin
reduks
austria
armenia
spacemacs
android-databinding
hamburg
budapest
switzerland
minnesota
jadx
hexagon
boston
malaysia
istanbulcoders
aem
codingame
cucumber-bdd
newname
room
ass
atm17
kakao
cincinnati-user-group
arabic
emacs
karlsruhe
fluid-libraries
amsterdam
libgdx
books
ai
vuejs
talking-kotlin
codemash-precompiler
dsl
kotlingforbeginners
stuttgart
cork
kotlin-szeged
utah
jhipster-kotlin
hibernate
jpa
strikt
macedonia
kovenant
kotlin-fuel
kotlinacademy
prozis-android-backup
reductor
funktionale
realworldkotlin
events
google-io
graviton-browser
scotland
spring-security
domain-driven-design
connect-audit-events
bayarea
pinoy
uk
javalin
re
server
kgen-doc-tools
tempe
pakistan
swiss-user-group
kubed
effectivekotlin
refactoring-to-kotlin
cloudfoundry
kprompt
jshdq
alexa
minutest
code-coverage
geospatial
jasync-sql
russian-kotlinasfirst
juul-libraries
lanark
wimix_sentry
pdx
databinding
slovak
austin
androidgithubprojects
data2viz
introduce-yourself
cobalt
korlibs
script
new-zealand
stlouis
linkeddata
kroto-plus
libkgd
zircon
big-data
pocketgitclient
mirror
moonbean
kong
hamkrest
kaskade
effective-kotlin
arkenv
knote
testing
oolong
hackathons
mu
kotlinx-files
pyhsikal
build
coursera
trójmiasto
anko
speaking
kohesive
vienna
communities
kotson
klock
korim
kotrix
kobalt
korte
arrow-meta
algolialibraries
codeforces
koans
result
ktcc
seattle
japanese
forum
uniflow
korio
jackson-kotlin
koin-dev
helios
io
kash_shell
graphql
kafka
kaal
kotlinx-html
freenode
leakcanary
lambdaworld_cadiz
intellij-tricks
kotlin-csv
bulgaria
kbuild
kloudformation
mpapt
100daysofcode
kmdc
package-search
terminal
kmongo
kotlin-pakistan
inkremental
motionlayout
navigation-architecture-component
strife-discord-lib
general-advice
unkonf
awesome-kotlin
tallinn
machinelearningbawas
leedskotlinusergroup
stayhungrystayfoolish
kotest-contributors
edinburgh
skrape-it
anime
moldova
losangeles
testtestest
kotlin-pune
knbt
godot-kotlin
practical-functional-programming
tensorflow
swagger-gradle-codegen
bazel
100daysofkotlin
fuchsia
rxjava
texas
dev-core
clikt
cli
hyderabad
vkug
kinta
detekt-hint
kotlinultimatechallenge
spotify-mobius
pattern-matching
kotlin-plugin
mumbai
mvrx
cyprus
kotlin-spark
lottie
kontent
metro-detroit
kotlin-beam
kotlick
hoplite
cryptography
androidx
kotlinforbeginners
sudan
appintro
tunisia
kotlin-roadmap
kotlin-mumbai
collaborations
pbandk
competitive-programming
scrimage
kotlindl
fp-in-kotlin
python
memes
rocksdb
docs-revamped
jdbi
rsocket
meetkotlin
hikari-cp
firebase
proguard
popkorn
kmm-español
npm-publish
failgood
rpi-pico
kalasim
swing
forkhandles
compose-ui-showcase
kug-torino
web-mpp
students
kondor-json
deprecated
reports
kotlin-sap
carrat-dev
compose-hiring
carrat
carrat-feed
competitivecoding
jobsworldwide
kotlin-data-storage
skia-wasm-interop-temp
tegal
kotlin-website
couchbase
tgbotapi
videos
java-to-kotlin-refactoring
event21-community-content
twitter-feed
androidx-xprocessing
embedded-kotlin
san-diego
atrium
snake
javadevelopers
klaxon
bangladesh
androidthings
lets-have-fun
training
ecuador
new-mexico
montreal
fb-internal-demo
monsterpuzzle
internships
webrtc
arksemdevteam
image-processing
myndocs-oauth2-server
otpisani
love
rethink
chile
kotlintest-devs
beepiz-libraries
korau
uuid
spin
lychee
ktp
debugging
miami
atlanta
scrcast
kotlinprogrammers
corda
swarm
kotlinmad
india
krawler
fritz2
phoenix
nodejs
stacks
lithuania
dutch
kraph
indonesia
cscenter-course-2016
czech
greece
ukrainian
kotlinconf
teamcity
colombia
cn
nyc
graphkool
uruguay
kweb
singapore
turkiye
graphic
jxadapter
karachi
hongkong
oceania
kotlin-serbia
madrid
spain
kotlinsu
norway
latvia
southafrica
morocco
dfw
algeria
peru
israel
kotlin-latam
barcelona
mexico
sweden
vancouver
belgium
iran
australia
london
bydgoszcz
k2-early-adopters
exposed
meta
spek
confetti
naming
dokka
gamedev
rx
intellij-plugins
compose-mp
language-proposals
hiring
stdlib
coroutines
kodein
codereview
announcements
mockk
scripting
koin
ios
feed
serialization
spring
eap
test
kontributors
random
korge
compiler
detekt
redux
library-development
javascript
tornadofx
kotless
ktlint
kvision
moko
kug-leads
fosdem
refreshversions
hire-me
orbit-mvi
language-evolution
graphql-kotlin
arrow
android-studio
flow
grpc
compose
chucker
ktor
russian
ksp
kotest
reaktive
education
touchlab-tools
mvikotlin
apollo-kotlin
doodle
intellij
kotlinx-datetime
framework-elide
reflect
compose-desktop
jvm-ir-backend-feedback
komapper
gradle
glance
ballast
android-architecture
kgraphql
compose-web
science
ktfmt
chicago
android
micronaut
100daysofkotlin-2021
github-workflows-kt
python-contributors
mathematics
kotlin-inject
compose-wear
splitties
squarelibraries
compose-ios
decompose
realm
dagger
arrow-contributors
kotlin-native
react
vertx
advent-of-code
webassembly
codingconventions
getting-started
kapt
stackoverflow
italian
berlin
opensource
multiplatform
datascience
http4k
Powered by
Title
a

Arnab

09/13/2021, 7:04 AM
Hey all! Say I have a 
graphql
route in my ktor app. I want that route to be authenticated, but I don't want there to be any authentication on 
Introspection
queries. Is that possible?
a

Aleksei Tirman [JB]

09/13/2021, 10:44 AM
Do you mean to disable authentication if some specific query parameters are present?
a

Arnab

09/13/2021, 4:41 PM
No as in the introspection query for a graphql server should return all the types without requiring any authentication, but the actual real queries should be authenticated.
a

Aleksei Tirman [JB]

09/13/2021, 4:42 PM
Could you please explain it in terms of HTTP?
a

Arnab

09/13/2021, 4:50 PM
Well, the introspection query is a special query that all graphql servers respond to with all the capabilities that the server implements. Think of it as an endpoint that returns a sort of response that creates your API documentation clientside. This should be open to all without any authentication. Regular queries should be different, and behind authentication.
See: https://graphql.org/learn/introspection/
n

Nikky

09/13/2021, 7:03 PM
i think the best you can do is.. check for auth headers after you know if it is a introspection query or not.. but thats not something ktor builtin functionality can do
a

Arnab

09/14/2021, 10:53 AM
Yeah, that's what I gathered. Just use 
authenticate(optional = true) { ... }
#ktorJoin Slack
Powered by