A reminder for teams running Apollo Federation: your subgraphs should only be accessible through the router.
This architectural boundary is what enables centralized auth, demand control, and operation safelisting. Without it, those protections don’t apply.
Key security practices for Federation deployments:
- Keep subgraphs internal
- Authentication and authorization at the router
- Demand control and persisted queries
- Observability and monitoring