Option to allow only authenticated requests #8
Comments
|
The origins option does not work on servers: {
"data": {
"sendEmail": {
"to": "example@example.com",
"sent": false,
"replyTo": "",
"origin": "",
"message": "Origin not allowed, set origin in settings",
"clientMutationId": null
}
},
"extensions": {
"debug": [
{
"type": "DEBUG_LOGS_INACTIVE",
"message": "GraphQL Debug logging is not active. To see debug logs, GRAPHQL_DEBUG must be enabled."
}
]
}
}So this is not an option. |
|
headers: { that worked for me |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I am using this plugin to send a contact form email., this will be handled by a server.
My WPGraphQL server does not require authentication for queries, only for mutations. (e.g. an unauthenticated user of the API can query information, but is not able to mutate any data). This is archived by unchecking this WPGraphQL setting:
I see that this plugin also allows unauthenticated request to make mutations (sending emails).
I would like to have an option in the settings where I can limit the ability to send emails to authenticated requests only.
The text was updated successfully, but these errors were encountered: