- I am using apollo server
context
to handle authentication- This protects all the queries and mutations
- I am aware that all graphql mutations and queries are sent as POST to
/graphql
, so thiscontext
action might be protecting the entire REST endpoint before even parsing the request body
- I want to let some mutation/queries be
permitAll
like the sign-up mutation - How do I achieve this?