Authenticating users via external service


I’m trying to build JWT access/refresh token access to backend server.

Authentication happens as follows:

Client → Apollo Server → Authentication server (returns both tokens to API server)

When doing requests I should put those tokens in http only cookies and return response to client.

Actual requests should go then using similar route:

Client → Apollo Server → Target API server

In here Apollo Server should take tokens from cookies and forward to target api a slightly different way.

Docs are a bit hazy how to do that. Only thing I could found was how to use simple token.