Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

GraphQL > Pluralsight: Securing a GraphQL API with Apollo 3 2020 > Flashcards

Pluralsight: Securing a GraphQL API with Apollo 3 2020 Flashcards

1
Q

03 Implementing Cookie Authentication for Apollo Server and Client

Compare Cookie Auth and Header Auth in context of vulnerability.

A
  1. Cookie is vulnerable to CSRF
  2. Header is vulnerable to XSS
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

04 Restricting Access for Types and Fields with Roles and Permissions

Where authorization can be put? (3 options)

A
  1. in resolvers
  2. in model
  3. using schema directives
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

05 Protecting Against Large and Malicious Queries / 01 Introduction

Mention 3 threats related to using GraphQL

A
  1. Multiple requests withing a short time
  2. Deeply nested queries
  3. Complex queries
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

05 Protecting Against Large and Malicious Queries / 04 Implementing Protection Against Query Complexity

How to protect against query complexity in Apollo Server?

A
  1. Install library graphql-validation-complexity
  2. Define cost above which query is rejected
  3. Use schema directive to define cost of retrieving specific fields (otherwise default one is used)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

GraphQL (6 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions