/** * Defines configuration related to End User Authorization. * This must be passed to Postgraphile Build Options for all End User facing APIs. */ export interface EndUserAuthorizationConfig { /** * The list of anonymous GraphQL operations. * These operations can be consumed without being authenticated. */ anonymousGqlOperations: string[]; /** * The list of operations that can be consumed through a End User Application token. * * Application-tokens are by default not authorized to invoke any end-user API operation, * and the required operations must be explicitly whitelisted using this option. */ applicationTokenAllowedGqlOperations: string[]; }