This repository has been archived by the owner on Oct 21, 2020. It is now read-only.
Implement strategy against denial of service attacks #25
Comments
|
Relevant article on Spectrum's approach at https://dev-blog.apollodata.com/securing-your-graphql-api-from-malicious-queries-16130a324a6b TL;DR: minimally implement depth and amount limiting. Investigate query cost Analysis. |
ojongerius
changed the title
Closed
This was referenced Apr 30, 2018
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
If we are going to use GraphQL this will be a little more complicated than using REST.
Things to consider:
This article provides a good background:
https://github.com/howtographql/howtographql/blob/master/content/graphql/advanced/4-security.md
Githubs approach: https://developer.github.com/v4/guides/resource-limitations/
The text was updated successfully, but these errors were encountered: