GraphQL Authorization with Konnect, OPA and OIDC

0:00 - stream starts
1:12 - intro
2:20 - Introducing Danny Freese, Senior Partner Engineer
6:00 - What does Partner Engineer do?
9:15 - Problem overview and 100ft view
16:26 - create a new Runtime Group in Konnect
25:17 - enabling OIDC plugin with Keycloak
30:03 - enter OPA policies
37:55 - testing OIDC and OPA in Insomnia
41:15 - validate GraphQL request arguments with OPA
41:32 - validate query realm policy
54:07 - it’s a wrap
59:04 - outro

🚀 Join us live to learn about how to implement authentication and authorization for GraphQL APIs using OIDC and OPA with Konnect! 🤝

This tutorial focuses on the solution that can solve for the Authentication and Authorization concerns at the gateway layer. We'll first authenticate users, and if authenticated, then the user’s fine-grain permissions will be evaluated to determine if the user has permission to run the incoming GraphQL request (whether the request is nested or using query variables).

📌 In this tutorial, you'll learn:

🔑 How to implement authentication and authorization for GraphQL APIs using OIDC and OPA with Konnect.

🐳 How to create Docker containers for Keycloak, OPA, and Kong.

🔧 How to configure keycloak, OPA, and Konnect.

📈 How to test OPA behavior.

Join us and get started by cloning the repository and following the steps!

Can't wait to see you there!

Видео GraphQL Authorization with Konnect, OPA and OIDC канала Viktor Gamov