I’m trying to wrap my head around two seemingly conflicting concepts. I have a subgraph which has both a private and public part of its graph. I am trying to conflate the need for
--routing-url in the schema publish step with the statement that “only your gateway should have access to your subgraphs”. To me those two requirements seem to be at odds with each other which makes me feel like I am missing something.
Do subgraph’s need to be accessible via HTTP by apollo studio? If so is there a method for securing that connection? If that is not required - how come i get the following error when trying to publish my subgraph’s schema?
APOLLO_KEY=<MY_KEY> \ npx rover subgraph publish <GRAPH_ID>@current \ --name stripe \ --schema ./private-schema.gql \ --convert
error: URL must be provided when upserting a new service
- here is where it mentions that subgraphs should be secured and only accessible by the gateway