'Authenticating Apollo Websocket subscription with nginx/lua

Trying out Hasura with an Apollo client, and followed documentation for adding authTokens: https://www.apollographql.com/docs/react/data/subscriptions/

import { GraphQLWsLink } from '@apollo/client/link/subscriptions';
import { createClient } from 'graphql-ws';

const wsLink = new GraphQLWsLink(createClient({
  url:url,
  connectionParams: {
    authToken: user.authToken,
  },
}));

My url goes to a nginx reverse proxy setup, which looks like something like this:

location /ws {
    proxy_pass http://wsbackend;
    proxy_http_version 1.1;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "Upgrade";
    proxy_set_header Host $host;
}

At this point, I'm a little lost on how to have my JWT Token that exists in the first connection request get authenticated here? I have to somehow gain access to the connection request payload? My other regular http requests get authenticated with Authorization in the header through a LUA script(access_by_lua_file).

nginxwebsocketluajwtapollo


Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source

Related Questions

Could not decode a text frame as UTF-8.

How websockets can be faster than a simple HTTP request?

Node.js + Express.js (Connect) - Accessing Session from 'upgrade' event

HTTP simultaneous connections per host limit... are per tab, browser instance or global?

Gatling Websocket react on message

socket.io connection not working but new Websocket working

No suitable default RequestUpgradeStrategy found

Send cookies with socket.io-client

Laravel Echo + Laravel Passport auth in private / presence websockets channels

Reconnecting a websocket in Angular and rxjs?

Difference between websocket and websockets

websocket + vue :get error connecting to websocket

How to find ping/keepalive being sent in okhttp websockets

socket.io determine if a user is online or offline

Django websockets and channels group_send not working