Brian Clozel c5817f21eb Add property for disabling GraphQL schema introspection ...

Prior to this commit, the GraphQL schema assembled by the
auto-configuration would provide no option for disabling the field
introspection.

While this feature is essential for many tools (including GraphiQL),
some prefer disabling it because this allows clients to gather
information about types and schema easily. This commit introduces a new
`spring.graphql.schema.introspection.enabled` configuration property.

Because potential attackers can still gather this information and this
feature is a core concern in the GraphQL spec, introspection is enabled
by default for Spring Boot applications.

Closes gh-29248

2022-01-03 17:36:58 +01:00

..

graceful-shutdown.adoc

Replace "refer to" with "see"

2021-11-08 14:40:57 -08:00

reactive.adoc

Polish package name for web sample code

2021-10-20 21:31:41 -07:00

servlet.adoc

Replace "you're"

2021-11-19 13:23:10 +00:00

spring-graphql.adoc

Add property for disabling GraphQL schema introspection

2022-01-03 17:36:58 +01:00

spring-hateoas.adoc

Merge branch '2.5.x' into main

2021-07-02 15:44:13 -07:00

spring-security.adoc

Replace "via" with words more suited to an international audience

2021-10-28 17:54:14 +01:00

spring-session.adoc

Use consistent case for 'Servlet' and 'Filter' in documentation

2021-09-08 17:56:44 -07:00

whats-next.adoc

Add what's next to new sections

2021-09-20 16:15:08 -07:00