In some cases you want to keep a record of what operations were performed against your landscape. The access logging protection can provide that for you. Access logging is done to STDOUT.
You can configure graphql-protect to enable access logging for incoming operaitons.
access_logging:
# Enable the feature,
enabled: true
include_headers:
# Include any headers of interest here
- Authorization
# Include the operation name in the access log record
include_operation_name: true
# Include the variables in the access log record
include_variables: true
# Include the payload in the access log record
include_payload: trueFor each operation we'll produce an access log record according to your provided configuration.
If used in conjunction with persisted operations the access log will be produced after the operation is swapped for the payload, meaning you have full access to the operation name and payload.