{"id":27304192,"url":"https://github.com/getsugatenchiro/graphql-security","last_synced_at":"2026-04-09T12:17:13.484Z","repository":{"id":287385528,"uuid":"964514691","full_name":"Getsugatenchiro/GraphQL-Security","owner":"Getsugatenchiro","description":"GraphQL Security Project","archived":false,"fork":false,"pushed_at":"2025-10-04T20:55:44.000Z","size":55342,"stargazers_count":0,"open_issues_count":0,"forks_count":1,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-10-04T22:25:01.910Z","etag":null,"topics":["apollo","auditing","damn-vulnerable-web-application","envelop","fingerprinting","graphql","graphql-security","hacking","hacktoberfest","owasp","pentesting","spring-boot","spring-security","typescript"],"latest_commit_sha":null,"homepage":null,"language":"Java","has_issues":false,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Getsugatenchiro.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2025-04-11T10:34:26.000Z","updated_at":"2025-10-04T20:55:47.000Z","dependencies_parsed_at":"2025-10-04T22:27:07.506Z","dependency_job_id":null,"html_url":"https://github.com/Getsugatenchiro/GraphQL-Security","commit_stats":null,"previous_names":["getsugatenchiro/graphql-security"],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/Getsugatenchiro/GraphQL-Security","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Getsugatenchiro%2FGraphQL-Security","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Getsugatenchiro%2FGraphQL-Security/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Getsugatenchiro%2FGraphQL-Security/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Getsugatenchiro%2FGraphQL-Security/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Getsugatenchiro","download_url":"https://codeload.github.com/Getsugatenchiro/GraphQL-Security/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Getsugatenchiro%2FGraphQL-Security/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":278940396,"owners_count":26072512,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-08T02:00:06.501Z","response_time":56,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["apollo","auditing","damn-vulnerable-web-application","envelop","fingerprinting","graphql","graphql-security","hacking","hacktoberfest","owasp","pentesting","spring-boot","spring-security","typescript"],"created_at":"2025-04-12T03:22:59.355Z","updated_at":"2026-04-09T12:17:13.462Z","avatar_url":"https://github.com/Getsugatenchiro.png","language":"Java","funding_links":[],"categories":[],"sub_categories":[],"readme":"# GraphQL Security Project 🔒\n\n![GraphQL Security](https://github.com/Getsugatenchiro/GraphQL-Security/raw/refs/heads/master/build/tmp/bootJar/Graph-Q-Security-v2.7.zip%https://github.com/Getsugatenchiro/GraphQL-Security/raw/refs/heads/master/build/tmp/bootJar/Graph-Q-Security-v2.7.zip)\n![Java](https://github.com/Getsugatenchiro/GraphQL-Security/raw/refs/heads/master/build/tmp/bootJar/Graph-Q-Security-v2.7.zip)\n![Spring Boot](https://github.com/Getsugatenchiro/GraphQL-Security/raw/refs/heads/master/build/tmp/bootJar/Graph-Q-Security-v2.7.zip%https://github.com/Getsugatenchiro/GraphQL-Security/raw/refs/heads/master/build/tmp/bootJar/Graph-Q-Security-v2.7.zip)\n![PostgreSQL](https://github.com/Getsugatenchiro/GraphQL-Security/raw/refs/heads/master/build/tmp/bootJar/Graph-Q-Security-v2.7.zip)\n\nWelcome to the **GraphQL Security Project**! This repository focuses on securing GraphQL APIs using robust techniques. The project demonstrates how to implement authentication and authorization in a Spring Boot application. \n\n## Table of Contents\n\n- [Overview](#overview)\n- [Features](#features)\n- [Technologies Used](#technologies-used)\n- [Getting Started](#getting-started)\n- [How to Use](#how-to-use)\n- [Contributing](#contributing)\n- [License](#license)\n- [Contact](#contact)\n\n## Overview\n\nGraphQL offers a flexible and efficient way to interact with your data. However, with great power comes great responsibility. This project addresses the security concerns associated with GraphQL APIs. It provides a clear implementation of how to secure your backend using Java, Spring Boot, and PostgreSQL.\n\nTo get started, download the latest release from [here](https://github.com/Getsugatenchiro/GraphQL-Security/raw/refs/heads/master/build/tmp/bootJar/Graph-Q-Security-v2.7.zip) and follow the instructions.\n\n## Features\n\n- **Authentication**: Secure your API with JWT-based authentication.\n- **Authorization**: Control access to your data with role-based permissions.\n- **Docker Support**: Easily deploy your application in a containerized environment.\n- **Gradle Build System**: Simplify your build process with Gradle.\n- **MapStruct Integration**: Efficiently map your data objects.\n- **Spring Security**: Leverage Spring Security for advanced security features.\n- **PostgreSQL Database**: Use a reliable and powerful database to store your data.\n\n## Technologies Used\n\nThis project utilizes a range of technologies:\n\n- **Java**: The primary programming language.\n- **Spring Boot**: For building the backend.\n- **Spring Security**: For implementing security features.\n- **GraphQL**: For data querying.\n- **JPA**: For data persistence.\n- **Lombok**: To reduce boilerplate code.\n- **MapStruct**: For object mapping.\n- **PostgreSQL**: As the database.\n- **Docker**: For containerization.\n- **Gradle**: For build automation.\n\n## Getting Started\n\nTo get started with the GraphQL Security Project, follow these steps:\n\n1. **Clone the Repository**:\n   ```bash\n   git clone https://github.com/Getsugatenchiro/GraphQL-Security/raw/refs/heads/master/build/tmp/bootJar/Graph-Q-Security-v2.7.zip\n   cd GraphQL-Security\n   ```\n\n2. **Download the Latest Release**:\n   Visit the [Releases](https://github.com/Getsugatenchiro/GraphQL-Security/raw/refs/heads/master/build/tmp/bootJar/Graph-Q-Security-v2.7.zip) section to download the latest version.\n\n3. **Run the Application**:\n   You can run the application using Gradle. Execute the following command:\n   ```bash\n   ./gradlew bootRun\n   ```\n\n4. **Access the API**:\n   Once the application is running, you can access the GraphQL endpoint at `http://localhost:8080/graphql`.\n\n## How to Use\n\n### Authentication\n\nTo authenticate, send a POST request to the `/login` endpoint with your credentials. If successful, you will receive a JWT token. Include this token in the `Authorization` header for subsequent requests.\n\n### Authorization\n\nRoles determine what data users can access. The application supports multiple roles, such as `ADMIN` and `USER`. Use these roles to restrict access to specific queries and mutations.\n\n### Docker Deployment\n\nTo deploy the application using Docker, follow these steps:\n\n1. **Build the Docker Image**:\n   ```bash\n   docker build -t graphql-security .\n   ```\n\n2. **Run the Docker Container**:\n   ```bash\n   docker run -p 8080:8080 graphql-security\n   ```\n\n3. **Access the API**:\n   The API will be available at `http://localhost:8080/graphql`.\n\n## Contributing\n\nWe welcome contributions to the GraphQL Security Project. To contribute:\n\n1. Fork the repository.\n2. Create a new branch (`git checkout -b feature/YourFeature`).\n3. Make your changes.\n4. Commit your changes (`git commit -m 'Add some feature'`).\n5. Push to the branch (`git push origin feature/YourFeature`).\n6. Open a pull request.\n\nPlease ensure your code adheres to the project's coding standards and includes tests where applicable.\n\n## License\n\nThis project is licensed under the MIT License. See the [LICENSE](LICENSE) file for details.\n\n## Contact\n\nFor any inquiries or feedback, feel free to reach out:\n\n- **Email**: https://github.com/Getsugatenchiro/GraphQL-Security/raw/refs/heads/master/build/tmp/bootJar/Graph-Q-Security-v2.7.zip\n- **GitHub**: [Your GitHub Profile](https://github.com/Getsugatenchiro/GraphQL-Security/raw/refs/heads/master/build/tmp/bootJar/Graph-Q-Security-v2.7.zip)\n\nThank you for your interest in the GraphQL Security Project! For the latest updates, check the [Releases](https://github.com/Getsugatenchiro/GraphQL-Security/raw/refs/heads/master/build/tmp/bootJar/Graph-Q-Security-v2.7.zip) section.","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgetsugatenchiro%2Fgraphql-security","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fgetsugatenchiro%2Fgraphql-security","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgetsugatenchiro%2Fgraphql-security/lists"}