Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
why is x-hasura-default-role is prefered over x-hasura-role
See original GitHub issueHi! Thank you for your awesome work.
I have an issue with jwt. While using this HASURA CLAIMS:
{ "x-hasura-default-role": "anonymous", "x-hasura-allowed-roles": [ "user", "anonymous", "admin", "institution-admin" ], "x-hasura-role": "user", "x-hasura-user-id": "rglCjqnVAKbBx0Q7jke73blCKmu1" }
Hasura identifies request sender as anonymous
When changed to this HASURA CLAIMS:
{ "x-hasura-default-role": "user", "x-hasura-allowed-roles": [ "user", "anonymous", "admin", "institution-admin" ], "x-hasura-role": "user", "x-hasura-user-id": "rglCjqnVAKbBx0Q7jke73blCKmu1" }
Hasura identifies request sender as user
Why can this be happening?
Issue Analytics
- State:
- Created 4 years ago
- Reactions:5
- Comments:10 (1 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
x-hasura-rolehas to be sent with the http request. It is not expected to be part of the JWT’s hasura claims and as such it is ignored. Thex-hasura-rolesent with the request is checked to see if it is part of thex-hasura-allowed-rolesand if yes, the request is executed as that role. In case thex-hasura-roleis missing, thex-hasura-default-rolefrom the JWT is used.@dohomi Initially I also thought it is a security issue. But then realized that auth server should return correct role list (
x-hasura-allowed-roles). Which means that the roles in the list are the only roles that can be put intox-hasura-roleheader.