diff --git a/.circleci/config.yml b/.circleci/config.yml
index a3ca58d0dba..7cf15c62efb 100644
--- a/.circleci/config.yml
+++ b/.circleci/config.yml
@@ -1,9 +1,7 @@
 # anchor refs to be used elsewhere
 refs:
   constants:
-  # TODO upload to hasura docker hub:
-  # - &server_builder_image hasura/graphql-engine-server-builder:2020-01-14
-  - &server_builder_image jberryman/graphql-engine-server-builder-8.10:2020-04-29
+  - &server_builder_image hasura/graphql-engine-server-builder:2020-08-26
   skip_job_on_ciignore: &skip_job_on_ciignore
     run:
       name: checking if job should be terminated or not
@@ -22,7 +20,7 @@ refs:
         if [ -z "$CIRCLE_PR_NUMBER" ]; then
           echo "Not a PR build, continuing test" && exit 0
         fi
-        echo "Compare refs: ${CIRCLE_COMPARE_URL##http*/}" 
+        echo "Compare refs: ${CIRCLE_COMPARE_URL##http*/}"
         if git diff --quiet "${CIRCLE_COMPARE_URL##http*/}" -- server; then
           echo "No server changes present, skipping test"
           circleci-agent step halt
@@ -165,10 +163,10 @@ jobs:
     - checkout
     - restore_cache:
         keys:
-        - cabal-store-v2-{{ checksum "server/cabal.project" }}-{{ checksum "server/graphql-engine.cabal" }}-{{ checksum "server/cabal.project.freeze" }}
-        - cabal-store-v2-{{ checksum "server/cabal.project" }}-{{ checksum "server/graphql-engine.cabal" }}-
-        - cabal-store-v2-{{ checksum "server/cabal.project" }}-
-        - cabal-store-v2-
+        - cabal-store-v3-{{ checksum "server/cabal.project" }}-{{ checksum "server/graphql-engine.cabal" }}-{{ checksum "server/cabal.project.freeze" }}
+        - cabal-store-v3-{{ checksum "server/cabal.project" }}-{{ checksum "server/graphql-engine.cabal" }}-
+        - cabal-store-v3-{{ checksum "server/cabal.project" }}-
+        - cabal-store-v3-
     - run:
         name: Install latest postgresql client tools
         command: |
@@ -187,7 +185,7 @@ jobs:
             make enable_coverage=true ci-build
           fi
     - save_cache:
-        key: cabal-store-v2-{{ checksum "server/cabal.project" }}-{{ checksum "server/graphql-engine.cabal" }}-{{ checksum "server/cabal.project.freeze" }}
+        key: cabal-store-v3-{{ checksum "server/cabal.project" }}-{{ checksum "server/graphql-engine.cabal" }}-{{ checksum "server/cabal.project.freeze" }}
         paths:
         - ~/.cabal/packages
         - ~/.cabal/store
@@ -416,7 +414,7 @@ jobs:
         root: /build
         paths:
           - _cli_output
-  
+
   test_and_build_cli_migrations:
     docker:
     - image: hasura/graphql-engine-cli-migrations-builder:20200415
diff --git a/.circleci/server-builder.dockerfile b/.circleci/server-builder.dockerfile
index 9d41df603be..429298c9aff 100644
--- a/.circleci/server-builder.dockerfile
+++ b/.circleci/server-builder.dockerfile
@@ -1,8 +1,6 @@
 # Don't update this without updating the
 # packager imager of graphql-engine
-FROM phadej/ghc:8.10.1-stretch
-# TODO https://github.com/haskell/docker-haskell/issues/17
-#FROM haskell:8.10.1
+FROM haskell:8.10.2-stretch
 
 ARG docker_ver="17.09.0-ce"
 ARG postgres_ver="12"
@@ -14,7 +12,10 @@ RUN apt-get -y update \
     && echo "deb http://apt.postgresql.org/pub/repos/apt/ stretch-pgdg main" > /etc/apt/sources.list.d/pgdg.list \
     && curl -s https://www.postgresql.org/media/keys/ACCC4CF8.asc | apt-key add - \
     && apt-get -y update \
-    && apt-get install -y g++ gcc libc6-dev libpq-dev libffi-dev libgmp-dev make xz-utils zlib1g-dev git gnupg upx netcat python3 python3-pip postgresql-client-${postgres_ver} postgresql-client-common \
+    && apt-get install -y \
+         g++ gcc git gnupg libc6-dev libffi-dev libgmp-dev libkrb5-dev \
+         libpq-dev libssl-dev make netcat postgresql-client-${postgres_ver} \
+         postgresql-client-common python3 python3-pip upx xz-utils zlib1g-dev \
     && curl -sL https://deb.nodesource.com/setup_${node_ver} | bash - \
     && apt-get install -y nodejs \
     && curl -Lo /tmp/docker-${docker_ver}.tgz https://download.docker.com/linux/static/stable/x86_64/docker-${docker_ver}.tgz \
diff --git a/.circleci/test-server.sh b/.circleci/test-server.sh
index e097cf051a6..65f9bc0c221 100755
--- a/.circleci/test-server.sh
+++ b/.circleci/test-server.sh
@@ -383,6 +383,51 @@ kill_hge_servers
 
 unset HASURA_GRAPHQL_JWT_SECRET
 
+# test JWT with Claims map
+echo -e "\n$(time_elapsed): <########## TEST GRAPHQL-ENGINE WITH ADMIN SECRET AND JWT (with claims_map and values are json path) #####################################>\n"
+TEST_TYPE="jwt-claims-map-with-json-path-values"
+
+export HASURA_GRAPHQL_JWT_SECRET="$(jq -n --arg key "$(cat $OUTPUT_FOLDER/ssl/jwt_public.key)" '{ type: "RS512", key: $key , claims_map: {"x-hasura-user-id": {"path":"$.['"'"'https://myapp.com/jwt/claims'"'"'].user.id"}, "x-hasura-allowed-roles": {"path":"$.['"'"'https://myapp.com/jwt/claims'"'"'].role.allowed"}, "x-hasura-default-role": {"path":"$.['"'"'https://myapp.com/jwt/claims'"'"'].role.default"}}}')"
+
+run_hge_with_args serve
+wait_for_port 8080
+
+pytest -n 1 -vv --hge-urls "$HGE_URL" --pg-urls "$HASURA_GRAPHQL_DATABASE_URL" --hge-key="$HASURA_GRAPHQL_ADMIN_SECRET" --hge-jwt-key-file="$OUTPUT_FOLDER/ssl/jwt_private.key" --hge-jwt-conf="$HASURA_GRAPHQL_JWT_SECRET" test_jwt_claims_map.py::TestJWTClaimsMapBasic
+
+kill_hge_servers
+
+unset HASURA_GRAPHQL_JWT_SECRET
+
+echo -e "\n$(time_elapsed): <########## TEST GRAPHQL-ENGINE WITH ADMIN SECRET AND JWT (with claims_map and values are json path with default values set) #####################################>\n"
+TEST_TYPE="jwt-claims-map-with-json-path-values-with-default-values"
+
+export HASURA_GRAPHQL_JWT_SECRET="$(jq -n --arg key "$(cat $OUTPUT_FOLDER/ssl/jwt_public.key)" '{ type: "RS512", key: $key , claims_map: {"x-hasura-user-id": {"path":"$.['"'"'https://myapp.com/jwt/claims'"'"'].user.id", "default":"1"}, "x-hasura-allowed-roles": {"path":"$.['"'"'https://myapp.com/jwt/claims'"'"'].role.allowed", "default":["user","editor"]}, "x-hasura-default-role": {"path":"$.['"'"'https://myapp.com/jwt/claims'"'"'].role.default","default":"user"}}}')"
+
+run_hge_with_args serve
+wait_for_port 8080
+
+pytest -n 1 -vv --hge-urls "$HGE_URL" --pg-urls "$HASURA_GRAPHQL_DATABASE_URL" --hge-key="$HASURA_GRAPHQL_ADMIN_SECRET" --hge-jwt-key-file="$OUTPUT_FOLDER/ssl/jwt_private.key" --hge-jwt-conf="$HASURA_GRAPHQL_JWT_SECRET" test_jwt_claims_map.py::TestJWTClaimsMapBasic
+
+kill_hge_servers
+
+unset HASURA_GRAPHQL_JWT_SECRET
+
+
+echo -e "\n$(time_elapsed): <########## TEST GRAPHQL-ENGINE WITH ADMIN SECRET AND JWT (with claims_map and values are literal values) #####################################>\n"
+TEST_TYPE="jwt-claims-map-with-literal-values"
+
+export HASURA_GRAPHQL_JWT_SECRET="$(jq -n --arg key "$(cat $OUTPUT_FOLDER/ssl/jwt_public.key)" '{ type: "RS512", key: $key , claims_map: {"x-hasura-user-id": {"path":"$.['"'"'https://myapp.com/jwt/claims'"'"'].user.id"}, "x-hasura-allowed-roles": ["user","editor"], "x-hasura-default-role": "user","x-hasura-custom-header":"custom-value"}}')"
+
+run_hge_with_args serve
+wait_for_port 8080
+
+pytest -n 1 -vv --hge-urls "$HGE_URL" --pg-urls "$HASURA_GRAPHQL_DATABASE_URL" --hge-key="$HASURA_GRAPHQL_ADMIN_SECRET" --hge-jwt-key-file="$OUTPUT_FOLDER/ssl/jwt_private.key" --hge-jwt-conf="$HASURA_GRAPHQL_JWT_SECRET" test_jwt_claims_map.py::TestJWTClaimsMapWithStaticHasuraClaimsMapValues
+
+kill_hge_servers
+
+unset HASURA_GRAPHQL_JWT_SECRET
+
+
 # test with CORS modes
 
 echo -e "\n$(time_elapsed): <########## TEST GRAPHQL-ENGINE WITH CORS DOMAINS ########>\n"
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 9ff6da16b5e..acad5c5a876 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,41 @@
 
 ## Next release
 
+### Server - Support for mapping session variables to default JWT claims
+
+Some auth providers do not let users add custom claims in JWT. In such cases, the server can take a JWT configuration option called `claims_map` to specify a mapping of Hasura session variables to values in existing claims via JSONPath or literal values.
+
+Example:-
+
+Consider the following JWT claim:
+
+```
+  {
+    "sub": "1234567890",
+    "name": "John Doe",
+    "admin": true,
+    "iat": 1516239022,
+    "user": {
+      "id": "ujdh739kd",
+      "appRoles": ["user", "editor"]
+    }
+  }
+```
+
+The corresponding JWT config can be:
+
+```
+  {
+    "type":"RS512",
+    "key": "<The public Key>",
+    "claims_map": {
+      "x-hasura-allowed-roles": {"path":"$.user.appRoles"},
+      "x-hasura-default-role": {"path":"$.user.appRoles[0]","default":"user"},
+      "x-hasura-user-id": {"path":"$.user.id"}
+    }
+  }
+```
+
 ### Breaking changes
 
 This release contains the [PDV refactor (#4111)](https://github.com/hasura/graphql-engine/pull/4111), a significant rewrite of the internals of the server, which did include some breaking changes:
@@ -11,7 +46,6 @@ This release contains the [PDV refactor (#4111)](https://github.com/hasura/graph
   - if a query selects table `bar` through table `foo` via a relationship, the required permissions headers will be the union of the required headers of table `foo` and table `bar` (we used to only check the headers of the root table);
   - if an insert does not have an `on_conflict` clause, it will not require the update permissions headers.
 
-
 ### Bug fixes and improvements
 
 (Add entries here in the order of: server, console, cli, docs, others)
@@ -19,6 +53,7 @@ This release contains the [PDV refactor (#4111)](https://github.com/hasura/graph
 - server: some mutations that cannot be performed will no longer be in the schema (for instance, `delete_by_pk` mutations won't be shown to users that do not have select permissions on all primary keys) (#4111)
 - server: miscellaneous description changes (#4111)
 - server: treat the absence of `backend_only` configuration and `backend_only: false` equally (closing #5059) (#4111)
+- server: allow remote relationships joining `type` column with `[type]` input argument as spec allows this coercion (fixes #5133)
 - console: allow user to cascade Postgres dependencies when dropping Postgres objects (close #5109) (#5248)
 - console: mark inconsistent remote schemas in the UI (close #5093) (#5181)
 - cli: add missing global flags for seeds command (#5565)
diff --git a/community/sample-apps/svelte-apollo/README.md b/community/sample-apps/svelte-apollo/README.md
index fbca0671667..86d09dd0a72 100644
--- a/community/sample-apps/svelte-apollo/README.md
+++ b/community/sample-apps/svelte-apollo/README.md
@@ -1,22 +1,19 @@
 # svelte-graphql-app
 
-A sample [Svelte 3](https://svelte.dev) app to demonstrate usage of GraphQL Queries, Mutations and Subscriptions with [svelte-apollo](https://github.com/timhall/svelte-apollo), Hasura GraphQL engine and Postgres as database. Forked from the standard svelte [template](https://github.com/sveltejs/template)
+A sample [Svelte 3](https://svelte.dev) app to demonstrate usage of GraphQL Queries, Mutations and Subscriptions with [svelte-apollo](https://github.com/timhall/svelte-apollo), Hasura Cloud and Postgres as database. Forked from the standard svelte [template](https://github.com/sveltejs/template)
 
 [![Edit svelte-graphql](https://codesandbox.io/static/img/play-codesandbox.svg)](https://codesandbox.io/s/github/hasura/graphql-engine/tree/master/community/sample-apps/svelte-apollo?fontsize=14)
 
-## Deploy Hasura
+## Create new Hasura Cloud project
 
-- Deploy Postgres and GraphQL Engine on Heroku:
-  
-  [![Deploy to
-  heroku](https://www.herokucdn.com/deploy/button.svg)](https://heroku.com/deploy?template=https://github.com/hasura/graphql-engine-heroku)
+- Create new Hasura Cloud project with the `Try a free database with Heroku` option.
 
-  Please checkout our [docs](https://hasura.io/docs/1.0/graphql/manual/deployment/index.html) for other deployment methods
+  Please check out our [docs](https://hasura.io/docs/cloud/1.0/manual/getting-started/index.html) for the detailed steps.
 
-- Get the Heroku app URL (say `my-app.herokuapp.com`)
+- Get the app URL (something like `https://<my-project-name>.hasura.app`)
 - Create `author` table:
-  
-  Open Hasura console: visit https://my-app.herokuapp.com on a browser  
+
+  Open your Hasura Cloud project's console: visit `https://<my-project-name>.hasura.app` on a browser  
   Navigate to `Data` section in the top nav bar and create a table as follows:
 
   ![Create author table](../gatsby-postgres-graphql/assets/add_table.jpg)
@@ -51,7 +48,7 @@ Install the dependencies...
 npm install
 ```
 
-- Open `src/apollo.js` and configure Hasura's GraphQL Endpoint as follows: 
+- Open `src/apollo.js` and configure Hasura's GraphQL Endpoint as follows:
 
 ```javascript
 
@@ -72,7 +69,7 @@ npm install
   });
 
 ```
-Replace the `uri` argument with your Hasura GraphQL Endpoint for both `wsLink` and `httpLink`
+Replace the `uri` argument with your Hasura GraphQL Endpoint (something like `https://<my-project-name>.hasura.app/v1/graphql`) for both `wsLink` and `httpLink`
 
 Start [Rollup](https://rollupjs.org):
 
@@ -99,4 +96,3 @@ now
 ```
 
 This will deploy the app on Now 2.0 Platform and you have the Svetle app running live :)
-
diff --git a/console/src/components/Services/Data/Schema/Schema.js b/console/src/components/Services/Data/Schema/Schema.js
index a309ace261f..4aa992c7e2c 100644
--- a/console/src/components/Services/Data/Schema/Schema.js
+++ b/console/src/components/Services/Data/Schema/Schema.js
@@ -692,7 +692,7 @@ class Schema extends Component {
           className={styles.add_mar_top}
           key={'non-trackable-custom-functions'}
         >
-          <CollapsibleToggle title={heading} isOpen>
+          <CollapsibleToggle title={heading}>
             <div className={`${styles.padd_left_remove} col-xs-12`}>
               {getNonTrackableFuncList()}
             </div>
diff --git a/console/src/components/Services/Data/TableRelationships/RelationshipEditor.js b/console/src/components/Services/Data/TableRelationships/RelationshipEditor.js
index e01d34bc8f7..c1ae4e82738 100644
--- a/console/src/components/Services/Data/TableRelationships/RelationshipEditor.js
+++ b/console/src/components/Services/Data/TableRelationships/RelationshipEditor.js
@@ -112,11 +112,11 @@ class RelationshipEditor extends React.Component {
           <div className={styles.display_flex}>
             {getEditBtn()}
             <b className={styles.textNoNewLine}>{relName}</b>
+            <GqlCompatibilityWarning
+              identifier={relName}
+              className={styles.add_mar_left_small}
+            />
           </div>
-          <GqlCompatibilityWarning
-            identifier={relName}
-            className={styles.add_mar_left_small}
-          />
           <div className={tableStyles.relationshipTopPadding}>
             <p className={styles.textNoNewLine}>{getRelDef(relConfig)}</p>
           </div>
diff --git a/docs/404.rst b/docs/404.rst
index 809d02210dc..90afa47b1bc 100644
--- a/docs/404.rst
+++ b/docs/404.rst
@@ -1,5 +1,7 @@
 .. title:: 404 - Page Not Found
 
+:orphan:
+
 404 - Page Not Found
 ---------------------
 
diff --git a/docs/_static/scripts/hdocs.js b/docs/_static/scripts/hdocs.js
index 63ebf4343c0..0b58f80ecdd 100644
--- a/docs/_static/scripts/hdocs.js
+++ b/docs/_static/scripts/hdocs.js
@@ -14,8 +14,8 @@ window.hdocs = (function () {
 
       docsearch({
         appId: 'WCBB1VVLRC',
-        apiKey: '298d448cd9d7ed93fbab395658da19e8',
-        indexName: 'graphql-docs-prod',
+        apiKey: HDOCS_ALGOLIA_API_KEY,
+        indexName: HDOCS_ALGOLIA_INDEX,
         inputSelector: '#search_element',
         transformData: hdocs.transformSearchData,
         debug: false
diff --git a/docs/_static/styles/landing.css b/docs/_static/styles/landing.css
index 258dec72de6..80f2ad096ef 100644
--- a/docs/_static/styles/landing.css
+++ b/docs/_static/styles/landing.css
@@ -15,13 +15,11 @@
 }
 
 .body_content {
-  font-family: 'Gudea';
   font-size: 15px;
   color: #333;
 }
 
 .small_content {
-  font-family: 'Gudea';
   font-size: 14px;
   color: #333;
 }
@@ -101,6 +99,10 @@
   padding-bottom: 0;
 }
 
+.description {
+  margin-bottom: 20px;
+}
+
 .text_left {
   text-align: left;
 }
diff --git a/docs/_static/styles/main.css b/docs/_static/styles/main.css
index 83fff027cdd..5a8e745fdac 100644
--- a/docs/_static/styles/main.css
+++ b/docs/_static/styles/main.css
@@ -640,6 +640,10 @@ article ol ol {
   margin: 15px;
 }
 
+.sphinxsidebarwrapper > ul:not(.current) {
+  display: none;
+}
+
 #sidebar {
   background-color: #001934;
   width: 24% !important;
diff --git a/docs/_theme/djangodocs/layout.html b/docs/_theme/djangodocs/layout.html
index bd69ec9b91b..c9ce88388b3 100644
--- a/docs/_theme/djangodocs/layout.html
+++ b/docs/_theme/djangodocs/layout.html
@@ -4,6 +4,16 @@
   {% set is_landing_page = true %}
 {%- endif %}
 
+{%- if pagename.startswith('graphql/core') %}
+  {% set is_core = true %}
+  {% set ALGOLIA_INDEX = 'graphql-docs-prod' %}
+  {% set ALGOLIA_API_KEY = '298d448cd9d7ed93fbab395658da19e8' %}
+{%- elif pagename.startswith('graphql/cloud') %}
+  {% set is_cloud = true %}
+  {% set ALGOLIA_INDEX = 'cloud-docs-prod' %}
+  {% set ALGOLIA_API_KEY = 'cf84f05a225bedb72ce472dada63d29f' %}
+{%- endif %}
+
 {% set css_files = css_files + ['_static/graphiql/graphiql.css', '_static/styles/main.css'] %}
 
 {%- if is_landing_page %}
@@ -105,7 +115,7 @@
                   </a>
                 </li>
                 <li>
-                  <a href='https://hasura.io/docs/1.0/graphql/manual/getting-started/index.html'>
+                  <a href='https://hasura.io/docs/1.0/graphql/core/getting-started/index.html'>
                     <button class="commonBtn navBtnHome">
                       Get Started
                     </button>
@@ -162,7 +172,7 @@
                     </a>
                   </li>
                   <li>
-                    <a class="menuLink" href='https://hasura.io/docs/1.0/graphql/manual/getting-started/index.html'>
+                    <a class="menuLink" href='https://hasura.io/docs/1.0/graphql/core/getting-started/index.html'>
                       <button class='commonBtn navBtnHome'>
                         Get Started
                       </button>
@@ -187,12 +197,12 @@
                 <img src="{{ pathto('_images/layout/close-icon.svg', 1) }}" alt="Close"/>
               </div>
               <div class="tabbarContainerWrapper blueBgColor boderBottom">
-                <a href="" class="tabbarTabActive">
+                <a href="{{ pathto('graphql/core/index.html', 1) }}" {%- if is_core %} class="tabbarTabActive" {%- endif %}>
                   <span>
                     Hasura Core
                   </span>
                 </a>
-                <a href="https://hasura.io/docs/cloud/1.0/manual/index.html">
+                <a href="{{ pathto('graphql/cloud/index.html', 1) }}" {%- if is_cloud %} class="tabbarTabActive" {%- endif %}>
                   <span>
                     Hasura Cloud
                   </span>
@@ -283,7 +293,7 @@
                 <div id="mc_embed_signup">
                   <div class="subscribe-form-content">
                     Stay up to date with product & security news
-                    <a target="_blank" class="newsletter-link" href="https://us13.campaign-archive.com/home/?u=9b63e92a98ecdc99732456b0e&id=f5c4f66bcf" rel="noopener">See past editions</a>
+                    <!-- <a target="_blank" class="newsletter-link" href="https://us13.campaign-archive.com/home/?u=9b63e92a98ecdc99732456b0e&id=f5c4f66bcf" rel="noopener">See past editions</a> -->
                   </div>
                   <form id="mc-embedded-subscribe-form" name="mc-embedded-subscribe-form" class="validate post-subscription-form newsletter-form" target="_blank" rel="noopener" novalidate>
                     <div class="full-width">
@@ -344,6 +354,8 @@
   <script type="text/javascript">
     const HDOCS_BASE_DOMAIN = "{{ BASE_DOMAIN }}";
     const HDOCS_GRAPHIQL_DEFAULT_ENDPOINT = "{{ GRAPHIQL_DEFAULT_ENDPOINT }}";
+    const HDOCS_ALGOLIA_INDEX = "{{ALGOLIA_INDEX}}";
+    const HDOCS_ALGOLIA_API_KEY = "{{ALGOLIA_API_KEY}}";
 
     document.addEventListener('DOMContentLoaded', function () {
       hdocs && hdocs.setup();
diff --git a/docs/_theme/djangodocs/localtoc.html b/docs/_theme/djangodocs/localtoc.html
index ed2913557d5..e28ee538f94 100644
--- a/docs/_theme/djangodocs/localtoc.html
+++ b/docs/_theme/djangodocs/localtoc.html
@@ -1,24 +1,3 @@
 {%- if display_toc %}
-  <!--
-  <div class="header_main_logo inline-block mobile-hide">
-    <a href="https://{{ BASE_DOMAIN }}/" target="_blank" rel="noopener">
-      <div class="img_wrapper inline-block">
-        <img class="responsive logo_img" src="{{ pathto('_images/layout/logo-lite.svg', 1) }}" alt="Hasura Logo Light" />
-      </div>
-    </a>
-    <a class="docs_label" href="{{ pathto('', 1) }}">
-      <div class="inline-block hero"> docs </div>
-    </a>
-    <a class="version_txt">
-      <select value="{{ version }}" onchange="location = this.value;" class="selected" aria-label="Select Version">
-        {%- if version == '1.0' %}
-          <option class="option_val" value="https://{{ BASE_DOMAIN }}/docs/1.0/graphql/manual/index.html" selected="selected">v1.x</option>
-        {%- else -%}
-          <option class="option_val" value="https://{{ BASE_DOMAIN }}/docs/1.0/graphql/manual/index.html">v1.x</option>
-        {% endif %}
-      </select>
-    </a>
-  </div>
-  -->
   {{ toc_full }}
 {%- endif %}
diff --git a/docs/_theme/djangodocs/pages/landing.html b/docs/_theme/djangodocs/pages/landing.html
index 4255702aeae..d31d0fceab5 100644
--- a/docs/_theme/djangodocs/pages/landing.html
+++ b/docs/_theme/djangodocs/pages/landing.html
@@ -5,25 +5,23 @@
         <div class="box_head_wrapper">
           <div class="box_head">
             <img src="{{ pathto('_images/landing/graphql.svg', 1) }}" alt="GraphQL engine"/>
-            <h3 class="head_wrapper">1. The Hasura GraphQL engine</h3>
-          </div>
-          <div class="view_all_wrapper small_content">
+            <h3 class="head_wrapper">Hasura docs</h3>
           </div>
         </div>
-        <div class="small_content space_wrapper text_left">
-          This guide covers all Hasura GraphQL engine concepts and features.
-          <br/> <br/>
-        </div>
-        <div class="sign_in_wrapper space_wrapper">
-          <div class="get_start">
-            <img src="{{ pathto('_images/landing/manual.svg', 1) }}" alt="Manual"/>
-          </div>
-          <a href="{{ pathto('graphql/manual/index.html', 1) }}">
-            <div class="docs_link body_content">
-              Open manual
-              <img src="{{ pathto('_images/landing/right-arrow.svg', 1) }}" alt="Right Arrow" />
-            </div>
-          </a>
+        <div class="space_wrapper text_left">
+          <p class="description">This guide covers all Hasura concepts and features.</p>
+          <ul>
+            <li>
+              <a class="docs_link" href="{{ pathto('graphql/core/index.html', 1) }}">
+                Core docs
+              </a>
+            </li>
+            <li>
+              <a class="docs_link" href="{{ pathto('graphql/cloud/index.html', 1) }}">
+                Cloud docs
+              </a>
+            </li>
+          </ul>
         </div>
       </div>
     </div>
diff --git a/docs/graphql/cloud/allow-lists.rst b/docs/graphql/cloud/allow-lists.rst
new file mode 100644
index 00000000000..9ffb1809b0f
--- /dev/null
+++ b/docs/graphql/cloud/allow-lists.rst
@@ -0,0 +1,34 @@
+.. meta::
+   :description: Hasura Cloud allow lists
+   :keywords: hasura, docs, cloud, security, allow
+
+.. _allow_lists:
+
+Allow lists
+===========
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Introduction
+------------
+
+You can specify a list of safe operations (GraphQL queries, mutations or subscriptions) for your project. This list restricts your project's GraphQL Engine to execute only queries that are present in the list.
+
+Manage the allow list
+---------------------
+
+The manager view offers inspection, export, or removal of operations in the allow list:
+
+.. thumbnail:: /img/graphql/cloud/security/pro-tabs-allowlist.png
+   :alt: Hasura Cloud Console allow list tab
+
+Quick-create allowed operations
+-------------------------------
+
+This Pro feature lets you add to the allow list with one click from the record of past operations. (With Core, allow lists must be :ref:`managed manually <allow_list>`.)
+
+.. thumbnail:: /img/graphql/cloud/security/allowlist-add-new-op.png
+   :alt: Hasura Cloud Console create new allowed operation
\ No newline at end of file
diff --git a/docs/graphql/cloud/api-limits.rst b/docs/graphql/cloud/api-limits.rst
new file mode 100644
index 00000000000..02697696299
--- /dev/null
+++ b/docs/graphql/cloud/api-limits.rst
@@ -0,0 +1,49 @@
+.. meta::
+   :description: Hasura Cloud API limits
+   :keywords: hasura, docs, cloud, security, limits
+
+.. _api_limits:
+
+API limits
+==========
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Introduction
+------------
+
+Limiting the depth and/or rate of API requests can help prevent API performance issues caused by malicious or poorly implemented queries. 
+
+Configuring an API limit
+------------------------
+
+**Rate limits**
+  Restricts number of GraphQL operations per minute. This uses a sliding window approach. This means whenever Hasura Pro receives a request, it will count the rate of that client starting from the current time to last one minute.
+
+**Depth limits**
+  Restricts a GraphQL operation based on its depth, preventing deeply nested queries.
+
+API limits are defined by **role** (anonymous, user) and can restrict request rate, depth, or both. Unique request parameters can include IP address or session variables (*x-hasura-user-id*, *x-hasura-org-id*, etc.)
+
+Manage API limits
+-----------------
+
+API limits can have a *global* or *per role* configuration. If an incoming request does not contain a valid role then the global limit is applied.
+
+.. thumbnail:: /img/graphql/cloud/security/pro-tab-apilimits.png
+   :alt: Hasura Cloud Console api limit tab
+
+.. admonition:: Admin & IntrospectionQuery exemptions
+
+  All API limits are **not** applied for the admin role, and depth limits are **NOT** applied to introspection queries
+
+Quick-create limits
+-------------------
+
+Hasura Cloud lets you add limits with one click from the list of past operations.
+
+.. thumbnail:: /img/graphql/cloud/security/pro-tab-apilimit-config.png
+   :alt: Hasura Cloud Console create new api limit
\ No newline at end of file
diff --git a/docs/graphql/cloud/api-reference.rst b/docs/graphql/cloud/api-reference.rst
new file mode 100644
index 00000000000..7607a50d297
--- /dev/null
+++ b/docs/graphql/cloud/api-reference.rst
@@ -0,0 +1,140 @@
+.. meta::
+   :description: Hasura Cloud API reference
+   :keywords: hasura, cloud, docs, API, API reference
+
+.. _cloud_api_reference:
+
+API Reference
+=============
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Introduction
+------------
+
+Hasura Cloud provides a GraphQL API to interact with the services to create
+and manage your projects.
+
+You can use any GraphQL client and use the API with the right authentication header.
+
+.. note::
+
+   Please note that the API is still in beta and might change before the
+   stable release.
+
+Endpoint
+--------
+
+API endpoint is ``https://data.pro.hasura.io/v1/graphql``.
+
+Authentication
+--------------
+
+Authentication is done using a Personal Access Token that you can create from
+the Hasura Cloud Dashboard. You can find this option under the "Settings" tab.
+
+Once you have the token it can be used with the header:
+``Authorization: pat <token>``.
+
+.. note::
+
+   This token can be used to authenticate against Hasura Cloud APIs and your Hasura Cloud projects.
+   Make sure you keep it secure. The token will be valid until you delete it from the dashboard.
+
+APIs
+----
+
+Each Hasura Cloud project is backed by an API entity called "Tenant", with a
+distinct "Tenant ID" which is different from "Project ID". Each Project is
+associated with a Tenant. In some cases, like Metrics API, the Project ID is
+used instead of Tenant ID.
+
+List of APIs:
+
+.. contents::
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Create a Tenant
+^^^^^^^^^^^^^^^
+
+.. code-block:: graphql
+
+   mutation createProject {
+     createTenant(
+       cloud: "aws"
+       region: "us-east-2"
+       databaseUrl: "postgres://username:password@database-host.com:5432/dbname"
+     ) {
+       id
+       name
+     }
+   }
+
+Get Tenant details
+^^^^^^^^^^^^^^^^^^
+
+.. code-block:: graphql
+
+   query getTenantDetails {
+     tenant_by_pk(
+       id: "7a79cf94-0e53-4520-a560-1b02bf522f08"
+     ) {
+       id
+       slug
+       project {
+         id
+         endpoint
+       }
+     }
+   }
+
+Delete a Tenant
+^^^^^^^^^^^^^^^
+
+.. code-block:: graphql
+
+   mutation deleteTenant {
+     deleteTenant(
+       tenantId: "7a79cf94-0e53-4520-a560-1b02bf522f08"
+     ) {
+       status
+     }
+   }
+
+Get ENV Vars
+^^^^^^^^^^^^
+
+.. code-block:: graphql
+
+   query getTenantENV {
+     getTenantEnv(
+       tenantId: "7a79cf94-0e53-4520-a560-1b02bf522f08"
+     ) {
+       hash
+       envVars
+     }
+   }
+
+Update ENV Vars
+^^^^^^^^^^^^^^^
+
+.. code-block:: graphql
+
+   mutation updateTenantEnv {
+     updateTenantEnv(
+       tenantId: "7a79cf94-0e53-4520-a560-1b02bf522f08"
+       currentHash: "6902a395d70072fbf8d36288f0eacc36c9d82e68"
+       envs: [
+         {key: "HASURA_GRAPHQL_ENABLE_CONSOLE", value: "true"},
+         {key: "ACTIONS_ENDPOINT", value: "https://my-actions-endpoint.com/actions"}
+       ]
+     ) {
+       hash
+       envVars
+     }
+   }
diff --git a/docs/graphql/cloud/getting-started/index.rst b/docs/graphql/cloud/getting-started/index.rst
new file mode 100644
index 00000000000..9af090b5a8c
--- /dev/null
+++ b/docs/graphql/cloud/getting-started/index.rst
@@ -0,0 +1,93 @@
+.. meta::
+   :description: Hasura Cloud getting started
+   :keywords: hasura, docs, cloud, signup
+
+.. _cloud_getting_started:
+
+Getting Started with Hasura Cloud
+=================================
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Step 1: Create an account
+-------------------------
+
+Navigate to `cloud.hasura.io 
+<https://cloud.hasura.io/login>`__, and create a new Hasura Cloud account.
+
+.. _cloud_connect_db:
+
+Step 2: Connect new/existing database
+-------------------------------------
+
+- To use an existing database, choose ``I have an existing Postgres database``.
+- To create a new database, choose ``Try a free database with Heroku``.
+
+.. thumbnail:: /img/graphql/cloud/getting-started/connect-db.png
+   :alt: Connect new or existing database
+   :width: 591px
+
+Step 2a: Enter database URL (for existing database)
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+If you chose ``I have an existing Postgres database`` in :ref:`Step 2 <cloud_connect_db>`, enter a database URL.
+
+.. thumbnail:: /img/graphql/cloud/getting-started/connect-existing-db.png
+   :alt: Enter URL for existing database
+   :width: 556px
+
+Step 3: Create project
+----------------------
+
+Click ``Create Project``.
+
+.. thumbnail:: /img/graphql/cloud/getting-started/create-project-new-db.png
+   :alt: Create project for new database
+   :width: 539px
+   :group: create
+   :class: inline-block
+
+.. thumbnail:: /img/graphql/cloud/getting-started/create-project-existing-db.png
+   :alt: Create project for existing database
+   :width: 552px
+   :group: create
+   :class: inline-block
+
+Next steps
+----------
+
+Once you've created your project, you can get started with building with Hasura or manage your project.
+
+.. contents::
+  :backlinks: none
+  :depth: 1
+  :local:
+
+.. thumbnail:: /img/graphql/cloud/getting-started/project-functionalities.png
+  :alt: Project actions
+  :width: 860px
+
+
+Explore the Hasura console
+^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+Click ``Launch Console`` to open the Hasura console in your browser and :ref:`make your first GraphQL query <first_graphql_query>` or :ref:`set up your first event trigger <first_event_trigger>`.
+
+You can navigate to the ``Pro`` tab to check out the Pro features that Hasura Cloud has set up for you.
+
+.. thumbnail:: /img/graphql/cloud/metrics/pro-tab-overview.png
+   :alt: Hasura Console: Pro tab
+   :width: 1118px
+
+Manage your project
+^^^^^^^^^^^^^^^^^^^
+
+Click the gear icon to :ref:`manage your project <manage_project>` (e.g. add collaborators, env vars or custom domains).
+
+Add an admin secret
+^^^^^^^^^^^^^^^^^^^
+
+:ref:`Add an admin secret <secure_project>` to make sure that your GraphQL endpoint and the Hasura console are not publicly accessible.
\ No newline at end of file
diff --git a/docs/graphql/cloud/glossary.rst b/docs/graphql/cloud/glossary.rst
new file mode 100644
index 00000000000..80b502a3471
--- /dev/null
+++ b/docs/graphql/cloud/glossary.rst
@@ -0,0 +1,66 @@
+.. meta::
+   :description: Hasura Cloud glossary
+   :keywords: hasura, docs, cloud, glossary
+
+.. _glossary:
+
+Glossary
+========
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Hasura Cloud Project
+--------------------
+
+A Project is an individual GraphQL API hosted by Hasura Cloud. You
+can create a Project by going to the cloud dashboard and providing
+a PostgreSQL database URL. You can also provision a database on
+cloud platforms like Heroku from the Hasura Cloud Dashboard itself.
+
+Each project is allocated a unique auto-generated name and an ID.
+You can use this name or ID while communicating to Hasura team
+regarding this project. Each project is also assigned a GraphQL API
+endpoint of the format ``https://<project-name>.hasura.app/v1/graphql``.
+
+Editing the Project name and adding custom domains will be available soon.
+
+For example, a project might be called ``usable-cobra-29`` with ID
+``bf0ea856-76a2-42c2-8a91-66ca9b9206e8``.
+
+Hasura Cloud IP
+---------------
+
+A Hasura Cloud IP will be listed on the Hasura Cloud Dashboard for
+each project. Hasura will be connecting to your database from this IP address.
+If your database is not exposed to the internet, you must allow connections 
+from this IP address on your firewall settings
+for Hasura Cloud Project to function properly. Otherwise, Hasura will not 
+be able to connect to your database and the GraphQL API will not be available.
+
+Hasura Collaborator Token
+-------------------------
+
+When you open the Hasura Console on a Cloud Project, you will not be asked to
+enter the admin secret like Hasura Core version. Instead, you will be
+automatically logged into the Console via an OAuth2.0 based authorization flow.
+You will be given the right access based on your permissions for the particular
+Hasura Cloud Project.
+
+After the login process is complete, you'll see a new header called
+``Hasura-Collaborator-Token`` in the "Request Headers" section of GraphiQL. 
+This token is used instead of admin secret to authenticate and authorize
+all the requests made from the Console. The token is only valid for 5mins
+and is refreshed silently by the Console. It is to be used only from Console.
+
+For accessing the API from other clients, use the admin secret or create
+a Personal Access Token.
+
+Hasura Client Name
+------------------
+
+``Hasura-Client-Name`` will be set to ``hasura-console`` by default. It is
+used to identify the client who is making the request in Hasura Pro metrics
+and monitoring tools.
diff --git a/docs/graphql/cloud/hasurapro-cli/index.rst b/docs/graphql/cloud/hasurapro-cli/index.rst
new file mode 100644
index 00000000000..831a8245777
--- /dev/null
+++ b/docs/graphql/cloud/hasurapro-cli/index.rst
@@ -0,0 +1,70 @@
+.. meta::
+   :description: Hasura Pro CLI
+   :keywords: hasura, docs, command line interface, cli
+
+.. _hasurapro_cli:
+
+Hasura Pro CLI
+==============
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+
+Installing the Hasura Pro CLI
+-----------------------------
+
+Hasura Pro CLI is distributed as a plugin to the :ref:`Hasura Core CLI <hasuracli_manual>`
+
+- Follow the instructions :ref:`here <install_hasura_cli>` to install Hasura Core CLI
+
+- Then execute the following command to install the Hasura Pro CLI plugin:
+
+  .. code-block:: bash
+
+    hasura plugins install pro
+
+- You can verify the installation by executing the ``help`` command:
+
+  .. code-block:: bash
+
+     hasura pro --help
+
+Authentication with the Hasura Pro CLI
+--------------------------------------
+
+All interactions from the CLI to Hasura’s APIs are authenticated using a personal access token generated for your user account.
+
+To set up a token, execute the following command on the CLI:
+
+.. code-block:: bash
+
+   hasura pro login
+
+This command will show a prompt for entering the personal access token.
+
+Head to your `Hasura Cloud account settings <https://cloud.hasura.io>`_ to create a new token. You can name it something like "cli". Note that the token will be shown only once and as soon as you copy the token, paste it in your terminal prompt.
+
+.. admonition:: Keep this token secure!
+
+  This token can be used to authenticate against Hasura Pro APIs and your Hasura Cloud projects. Make sure you keep it secure. This is a one-time operation. The token will be valid until you delete it.
+
+Upgrading the CLI
+-----------------
+
+To upgrade to a newer version, you can use the ``upgrade`` command:
+
+.. code-block:: bash
+
+   hasura plugins upgrade pro
+
+Uninstalling the CLI
+--------------------
+
+To uninstall the CLI, use the ``uninstall`` command:
+
+.. code-block:: bash
+
+   hasura plugins uninstall pro
\ No newline at end of file
diff --git a/docs/graphql/cloud/index.rst b/docs/graphql/cloud/index.rst
new file mode 100644
index 00000000000..cf7712d33ef
--- /dev/null
+++ b/docs/graphql/cloud/index.rst
@@ -0,0 +1,74 @@
+.. meta::
+   :description: Hasura Cloud documentation
+   :keywords: hasura, docs, manual, graphql engine, cloud, hosted
+
+.. title:: Hasura Cloud Documentation
+
+.. _cloud_docs:
+
+Hasura Cloud Documentation
+==========================
+
+`Hasura Cloud <https://cloud.hasura.io/>`__ offers hosted `GraphQL Engine <https://github.com/hasura/graphql-engine>`__
+projects with extra features for reliability and security. It includes all the :ref:`core features <core_docs>`
+of GraphQL Engine, while taking care of infrastructure concerns, such as the number of instances, cores, memory, concurrent users, high-availability,
+realtime monitoring, caching, tracing, and rate-limiting. It supports both new and existing PostgreSQL databases.
+
+.. container:: toc-list
+
+  .. container:: toc-list-section
+
+    .. container:: toc-list-head
+
+      Basics
+
+    .. container:: toc-list-content
+
+      - :ref:`cloud_getting_started`
+      - :ref:`projects`
+
+  .. container:: toc-list-section
+
+    .. container:: toc-list-head
+
+      Features
+
+    .. container:: toc-list-content
+
+      - :ref:`metrics`
+      - :ref:`api_limits`
+      - :ref:`allow_lists`
+      - :ref:`regression_tests`
+      - :ref:`read_replicas`
+      - :ref:`response_caching`
+      - :ref:`tracing`
+
+  .. container:: toc-list-section
+
+    .. container:: toc-list-head
+
+      Reference
+
+    .. container:: toc-list-content
+
+      - :ref:`cloud_api_reference`
+      - :ref:`glossary`
+      - :ref:`hasurapro_cli`
+
+.. toctree::
+  :maxdepth: 1
+  :titlesonly:
+  :hidden:
+
+  Getting Started <getting-started/index>
+  projects/index
+  metrics/index
+  api-limits
+  allow-lists
+  regression-tests
+  read-replicas
+  response-caching
+  tracing
+  hasurapro-cli/index
+  api-reference
+  glossary
diff --git a/docs/graphql/cloud/metrics/errors.rst b/docs/graphql/cloud/metrics/errors.rst
new file mode 100644
index 00000000000..a1a32d69324
--- /dev/null
+++ b/docs/graphql/cloud/metrics/errors.rst
@@ -0,0 +1,23 @@
+.. meta::
+   :description: Hasura Cloud error analysis
+   :keywords: hasura, docs, cloud, reliability, errors
+
+.. _errors:
+
+Errors
+======
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Troubleshoot errors quickly with powerful analytical tools and filters:
+
+.. thumbnail:: /img/graphql/cloud/metrics/pro-tab-errors.png
+   :alt: Hasura Cloud Console errors tab
+
+Drill into a specific operation via the magnifying-glass icon next to the operation summary in the 'Frequent errors' table. You'll be taken to a list of the failed operations, and can choose one to inspect the specific operation content, metadata, and error generated:
+
+.. thumbnail:: /img/graphql/cloud/metrics/inspect-error.png
+   :alt: Hasura Cloud Console inspect a failed operation
diff --git a/docs/graphql/cloud/metrics/index.rst b/docs/graphql/cloud/metrics/index.rst
new file mode 100644
index 00000000000..32e6053cc7f
--- /dev/null
+++ b/docs/graphql/cloud/metrics/index.rst
@@ -0,0 +1,35 @@
+.. meta::
+   :description: Hasura Cloud metrics
+   :keywords: hasura, docs, cloud, metrics
+
+.. _metrics:
+
+Metrics
+=======
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Introduction
+------------
+
+Hasura Cloud projects include Pro features for enhanced reliability and performance
+
+.. thumbnail:: /img/graphql/cloud/metrics/pro-tab-overview.png
+   :alt: Hasura Cloud Console overview tab
+
+Learn more
+----------
+
+.. toctree::
+   :maxdepth: 1
+   :titlesonly:
+
+   overview
+   errors
+   usage
+   operations
+   websockets
+   subscription-workers
\ No newline at end of file
diff --git a/docs/graphql/cloud/metrics/operations.rst b/docs/graphql/cloud/metrics/operations.rst
new file mode 100644
index 00000000000..157595af27a
--- /dev/null
+++ b/docs/graphql/cloud/metrics/operations.rst
@@ -0,0 +1,119 @@
+.. meta::
+   :description: Hasura Cloud operation analysis
+   :keywords: hasura, docs, cloud, reliability, operations
+
+.. _operations:
+
+Operations
+==========
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Terminology
+-----------
+
+**Operation**
+  Any GraphQL (query, mutation, subscription) request made to v1/graphql endpoint of a GraphQL engine instance
+
+**Operation name**
+  (Optional) Any GraphQL request can be labelled with a name by the client making the query. In this example, *getPollOptions* is the operation name:
+
+  .. code-block:: graphql
+
+   query getPollOptions (
+     poll {
+       options {
+         id
+         name
+         description
+       }
+     }
+   }
+
+**Operation ID**
+  A unique, auto-generated hash for each Operation name; can distinguish between different operations executed with the same name
+
+**Operation type**
+  Whether the operation is a query, mutation, or subscription
+
+**Request ID**
+  A unique, auto-generated ID for each request, comes from x-request-id HTTP header
+
+**Websocket ID**
+  A unique ID generated by the server when a websocket connection is established by the client
+
+**Websocket Operation ID**
+  A unique ID generated by the websocket client for each operation it is sending to the server
+
+Operations
+----------
+
+Processed realtime logs of all requests to the GraphQL Engine. View all and inspect individual operations:
+
+.. thumbnail:: /img/graphql/cloud/metrics/pro-tab-operations.png
+   :alt: Hasura Cloud Console list operations
+
+.. thumbnail:: /img/graphql/cloud/metrics/pro-tab-operations-inspect.png
+   :alt: Hasura Cloud Console inspect operation
+
+Filtering operations
+--------------------
+
+Click on the **Filter** header to open the menu of filter options
+
+.. list-table::
+   :header-rows: 1
+
+   * - Filter option
+     - Filter type
+     - Example or options
+   * - Time range
+     - timestamps
+     - last hour, last 6 hours, last 12 hours, last 24 hours, or custom range
+   * - Operation ID
+     - string (text field)
+     - 5284946f4e15aa81bc868316d56aa68f
+   * - Operation Name
+     - string (text field)
+     - getPollOptions
+   * - Request ID
+     - string (text field)
+     - e15f7bj9-3b9f-4152-92a4-e745471514af
+   * - Show only errors
+     - boolean (checkbox field)
+     - true or false (default false)
+   * - Websocket ID
+     - string (text field)
+     - def703fc-851f-48e8-8e5c-cbdead37b2fe
+   * - Websocket Operation ID
+     - string (text field)
+     - 110
+   * - Hide introspection query
+     - boolean (checkbox field)
+     - true or false (default false)
+   * - Operation Type
+     - enum (select field)
+     - query, mutation, subscription, all
+   * - Role
+     - enum (select field)
+     - from *x-hasura-user-role*: no role, admin, user, ...
+   * - Error Code
+     - enum (select field)
+     - no error code, access-denied, depth-limit-exceeded, ...
+   * - Client Name
+     - enum (select field)
+     - no client name, hasura-console, hasura-test-runner, ...
+   * - Transport
+     - enum (select field)
+     - http or ws
+   * - Status
+     - enum (select field)
+     - started or closed
+
+Sorting operations
+------------------
+
+Each column in the **Operations List** can be sorted (ascending or descending) just by clicking on it. Very useful for identifying operations with unusually high execution time or response size!
diff --git a/docs/graphql/cloud/metrics/overview.rst b/docs/graphql/cloud/metrics/overview.rst
new file mode 100644
index 00000000000..8613e66b0fc
--- /dev/null
+++ b/docs/graphql/cloud/metrics/overview.rst
@@ -0,0 +1,18 @@
+.. meta::
+   :description: Hasura Cloud overview
+   :keywords: hasura, docs, cloud, overview
+
+.. _overview:
+
+Overview
+========
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+The Overview displays aggregate stats over the last hour:
+
+.. thumbnail:: /img/graphql/cloud/metrics/pro-tab-overview.png
+   :alt: Hasura Cloud Console overview tab
\ No newline at end of file
diff --git a/docs/graphql/cloud/metrics/subscription-workers.rst b/docs/graphql/cloud/metrics/subscription-workers.rst
new file mode 100644
index 00000000000..249e60204d1
--- /dev/null
+++ b/docs/graphql/cloud/metrics/subscription-workers.rst
@@ -0,0 +1,18 @@
+.. meta::
+   :description: Hasura Cloud subscription workers
+   :keywords: hasura, docs, cloud, reliability, subscriptions
+
+.. _subscription_workers:
+
+Subscription workers
+====================
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Subscription workers offers a subscription-worker-specific version of usage statistics:
+
+.. thumbnail:: /img/graphql/cloud/metrics/pro-tab-subscription-workers.png
+   :alt: Hasura Cloud Console subscription workers tab
\ No newline at end of file
diff --git a/docs/graphql/cloud/metrics/usage.rst b/docs/graphql/cloud/metrics/usage.rst
new file mode 100644
index 00000000000..2ee8ae5ee22
--- /dev/null
+++ b/docs/graphql/cloud/metrics/usage.rst
@@ -0,0 +1,23 @@
+.. meta::
+   :description: Hasura Cloud usage analysis
+   :keywords: hasura, docs, cloud, reliability, usage
+
+.. _usage:
+
+Usage
+=====
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Learn about usage with aggregate summaries and filtering tools:
+
+.. thumbnail:: /img/graphql/cloud/metrics/pro-tab-usage.png
+   :alt: Hasura Cloud Console usage tab
+
+Drill into an operation via its magnifying-glass icon in the 'Query List' table. You'll be taken to a list of similar operations, and can choose one to inspect for content, metadata, and error generated:
+
+.. thumbnail:: /img/graphql/cloud/metrics/pro-tab-operations-inspect.png
+   :alt: Hasura Cloud Console inspect an operation
\ No newline at end of file
diff --git a/docs/graphql/cloud/metrics/websockets.rst b/docs/graphql/cloud/metrics/websockets.rst
new file mode 100644
index 00000000000..2bcbc5f887f
--- /dev/null
+++ b/docs/graphql/cloud/metrics/websockets.rst
@@ -0,0 +1,18 @@
+.. meta::
+   :description: Hasura Cloud websockets analysis
+   :keywords: hasura, docs, cloud, reliability, websockets
+
+.. _websockets:
+
+Websockets
+==========
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Websockets is a ws-specific version of usage statistics:
+
+.. thumbnail:: /img/graphql/cloud/metrics/pro-tab-websockets.png
+   :alt: Hasura Cloud Console websockets tab
\ No newline at end of file
diff --git a/docs/graphql/cloud/projects/create.rst b/docs/graphql/cloud/projects/create.rst
new file mode 100644
index 00000000000..ae5d7857532
--- /dev/null
+++ b/docs/graphql/cloud/projects/create.rst
@@ -0,0 +1,89 @@
+.. meta::
+   :description: Creating projects on Hasura Cloud
+   :keywords: hasura, cloud, docs, start
+
+.. _create_project:
+
+Creating projects
+=================
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 2
+  :local:
+
+Introduction
+------------
+
+You can create a new Hasura Cloud project with either a new Postgres database, or an existing Postgres database with a publicly available IP address.
+
+To begin, navigate to the ``Projects`` page, and click the ``New Project`` link.
+
+.. thumbnail:: /img/graphql/cloud/projects/create-new-project.png
+   :alt: create new project button
+   :width: 400
+
+Creating a project with a new database
+--------------------------------------
+
+Hasura Cloud does not host databases, but does provide integrations with which you can create databases on managed cloud providers like Heroku. Integrations for AWS, GCP, and Azure are coming soon.
+
+To get started, click ``Try with Heroku``, and follow the prompts to authenticate with Heroku. Hasura Cloud will integrate with your Heroku account and manage the initial setup of a dev-tier Postgres instance. You can always upgrade the instance and manage options later through your Heroku account.
+
+.. thumbnail:: /img/graphql/cloud/projects/create-project-heroku.png
+   :alt: create new hosted project
+
+Creating a project with an existing database
+--------------------------------------------
+
+To create a new Hasura Cloud project connected to an existing Postgres database, click ``Enter Database URL``, and enter your database connection string (looks like ``postgres://username:password@hostname:port/dbname``).
+
+.. thumbnail:: /img/graphql/cloud/projects/new-project-hosted.png
+   :alt: create new hosted project
+
+Allowing connections from Hasura Cloud IP
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+For some cloud services, like GCP, you'll need to adjust your Postgres connection settings to allow connections from the Hasura Cloud IP address. You can copy the IP address from either the copy icon in the ``Database Setup`` window, or the ``Hasura Cloud IP`` field on the project's details view. You may also need to disable SSL. Adding custom cert information to a Hasura Cloud instance is not yet available. 
+
+.. thumbnail:: /img/graphql/cloud/projects/existing-db-setup.png
+   :alt: Existing database setup
+   :width: 568px
+
+.. thumbnail:: /img/graphql/cloud/projects/hasura-cloud-ip.png
+   :alt: Hasura Cloud IP field
+   :width: 1200px
+
+.. thumbnail:: /img/graphql/cloud/projects/gcp-postgres-authorized-network.png
+   :alt: whitelist Hasura instance IP in Postgres settings
+   :width: 727px
+
+Connecting to a database not exposed over the internet
+------------------------------------------------------
+
+`Contact us <https://hasura.io/contact-us/>`__ for VPC peering and on-premise solutions.
+
+.. _cloud_postgres_permissions:
+
+Postgres permissions
+--------------------
+
+Hasura Cloud works with **Postgres versions 9.5 and above**.
+
+If you’re running in a controlled environment, you might need to configure
+Hasura Cloud to use a specific Postgres user that your DBA gives you.
+
+Apart from the :ref:`Hasura Core Postgres permissions <postgres_permissions>`,
+Hasura Cloud needs the following extra permissions:
+
+- (required) Read and write access to ``hdb_pro_catalog`` schema.
+
+.. code-block:: sql
+
+   -- execute these statements after executing the ones mentioned in Hasura Core docs
+   -- create the schemas required by the hasura cloud system
+   CREATE SCHEMA IF NOT EXISTS hdb_pro_catalog;
+   
+   -- make the user an owner of system schemas
+   ALTER SCHEMA hdb_pro_catalog OWNER TO hasurauser;
+
diff --git a/docs/graphql/cloud/projects/delete.rst b/docs/graphql/cloud/projects/delete.rst
new file mode 100644
index 00000000000..b9ce6b56cbe
--- /dev/null
+++ b/docs/graphql/cloud/projects/delete.rst
@@ -0,0 +1,19 @@
+.. meta::
+   :description: Deleting projects on Hasura Cloud
+   :keywords: hasura, docs, delete
+
+.. _delete_project:
+
+Deleting projects
+=================
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+You can delete a project with the ``Delete Project`` button at the bottom of the project's details view.
+
+.. thumbnail:: /img/graphql/cloud/projects/projects-delete.png
+   :alt: delete a project
+   :width: 1199px
\ No newline at end of file
diff --git a/docs/graphql/cloud/projects/index.rst b/docs/graphql/cloud/projects/index.rst
new file mode 100644
index 00000000000..70174c9be31
--- /dev/null
+++ b/docs/graphql/cloud/projects/index.rst
@@ -0,0 +1,52 @@
+.. meta::
+   :description: Managing teams in Hasura Cloud
+   :keywords: hasura, docs, cloud, teams
+
+.. _projects:
+
+Projects & teams
+================
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Introduction
+------------
+
+The ``Projects`` page show a list of your projects.
+
+.. thumbnail:: /img/graphql/cloud/projects/projects-list.png
+   :alt: Projects list
+   :width: 1200px
+
+For each project, you can:
+
+- Click the gear icon to :ref:`manage your project <manage_project>`, or
+- Click ``Launch Console`` to open the Hasura console in your browser, and navigate to the ``Pro`` tab to check out the Pro features that Hasura Cloud has set up for you.
+
+.. thumbnail:: /img/graphql/cloud/getting-started/project-actions.png
+   :alt: Project actions
+   :width: 860px
+
+.. thumbnail:: /img/graphql/cloud/metrics/pro-tab-overview.png
+   :alt: Hasura Console: Pro tab
+   :width: 1118px
+
+.. note::
+
+   Please see the :ref:`API reference <cloud_api_reference>` to create and manage Hasura Cloud projects programmatically.
+
+Dig deeper
+----------
+
+.. toctree::
+   :maxdepth: 1
+   :titlesonly:
+
+   Creating projects <create>
+   Managing projects <manage-projects/index>
+   Securing projects <secure>
+   Deleting projects <delete>
+   
diff --git a/docs/graphql/cloud/projects/manage-projects/domains.rst b/docs/graphql/cloud/projects/manage-projects/domains.rst
new file mode 100644
index 00000000000..f1475e07408
--- /dev/null
+++ b/docs/graphql/cloud/projects/manage-projects/domains.rst
@@ -0,0 +1,71 @@
+.. meta::
+   :description: Managing domains on Hasura Cloud
+   :keywords: hasura, docs, project, domains
+
+.. _manage_project_domains:
+
+Domains tab
+===========
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 2
+  :local:
+
+Introduction
+------------
+
+In the ``Domains`` tab, you can see the default Hasura domain, and you have the possibility to add custom domains.
+
+Adding a custom domain
+----------------------
+
+You can add a custom domain to your Hasura Cloud project by following the steps below.
+
+Step 1: Navigate to add a custom domain
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+On the ``Domains`` tab, click on the ``New Custom Domain`` button.
+
+.. thumbnail:: /img/graphql/cloud/projects/add-custom-domain.png
+   :alt: Add custom domain
+   :width: 727px
+
+Step 2: Add your custom domain
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+Enter your custom domain and click the ``Add`` button.
+
+.. thumbnail:: /img/graphql/cloud/projects/choose-custom-domain.png
+   :alt: Choose custom domain
+   :width: 727px
+
+Step 3: Add the record to your DNS
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+After adding a custom domain, the following window will show up:
+
+.. thumbnail:: /img/graphql/cloud/projects/dns-settings.png
+   :alt: DNS settings
+   :width: 727px
+
+If you haven't already done so, add the default Hasura domain as a ``CNAME`` record to your DNS.
+
+Until this is done, the dashboard will show a notice that the DNS validation is pending. 
+
+.. thumbnail:: /img/graphql/cloud/projects/dns-validation-pending.png
+   :alt: DNS validation pending
+   :width: 727px
+
+.. note::
+
+  Depending on your DNS provider, it might take up to 24 hours for the DNS record to be added.
+
+DNS validated
+-------------
+
+Once the DNS is validated, the dashboard will update the status with the following notice:
+
+.. thumbnail:: /img/graphql/cloud/projects/dns-validated.png
+   :alt: DNS validated
+   :width: 727px
diff --git a/docs/graphql/cloud/projects/manage-projects/env-vars.rst b/docs/graphql/cloud/projects/manage-projects/env-vars.rst
new file mode 100644
index 00000000000..d4b4eed37a8
--- /dev/null
+++ b/docs/graphql/cloud/projects/manage-projects/env-vars.rst
@@ -0,0 +1,27 @@
+.. meta::
+   :description: Managing env vars on Hasura Cloud
+   :keywords: hasura, docs, project, env vars
+
+.. _manage_project_env_vars:
+
+Env vars tab
+============
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 2
+  :local:
+
+Introduction
+------------
+
+The ``Env vars`` tab allows setting :ref:`Hasura GraphQL Engine env variables <command-flags>` and adding other custom env variables as well.
+
+Adding an env var
+-----------------
+
+Click on the ``New Env Var`` button and either choose an env var from the dropdown or add a custom env var.
+
+.. thumbnail:: /img/graphql/cloud/projects/add-env-var.png
+   :alt: add env var options
+   :width: 1200px
diff --git a/docs/graphql/cloud/projects/manage-projects/general.rst b/docs/graphql/cloud/projects/manage-projects/general.rst
new file mode 100644
index 00000000000..962700f3338
--- /dev/null
+++ b/docs/graphql/cloud/projects/manage-projects/general.rst
@@ -0,0 +1,31 @@
+.. meta::
+   :description: Managing projects on Hasura Cloud
+   :keywords: hasura, docs, project, general
+
+.. _manage_project_general:
+
+General tab
+===========
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 2
+  :local:
+
+Introduction
+------------
+
+The ``General`` tab shows the project's general settings. 
+
+General settings
+----------------
+
+- **Name**: Unique auto-generated name for the project
+- **ID**: Unique auto-generated ID for the project
+- **GraphQL API**: GraphQL endpoint for the project
+- **Admin Secret**: Secret for securing the GraphQL endpoint
+- **Owner**: Email of the project owner
+
+.. thumbnail:: /img/graphql/cloud/projects/project-details.png
+   :alt: General tab
+   :width: 1163px
diff --git a/docs/graphql/cloud/projects/manage-projects/index.rst b/docs/graphql/cloud/projects/manage-projects/index.rst
new file mode 100644
index 00000000000..df778315b26
--- /dev/null
+++ b/docs/graphql/cloud/projects/manage-projects/index.rst
@@ -0,0 +1,36 @@
+.. meta::
+   :description: Managing projects on Hasura Cloud
+   :keywords: hasura, docs, project
+
+.. _manage_project:
+
+Managing projects
+=================
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 2
+  :local:
+
+Introduction
+------------
+
+To view a project's details, and manage its teams and environment variables, navigate to the ``Projects`` page and click the gear icon on the project.
+
+.. thumbnail:: /img/graphql/cloud/projects/manage-project.png
+   :alt: Manage project
+   :width: 865px
+
+Managing projects
+-----------------
+
+See the below pages for detailed guides on managing projects:
+
+.. toctree::
+   :maxdepth: 1
+   :titlesonly:
+
+   General tab <general>
+   Team tab <team>
+   Env vars tab <env-vars>
+   Domains tab <domains>
diff --git a/docs/graphql/cloud/projects/manage-projects/team.rst b/docs/graphql/cloud/projects/manage-projects/team.rst
new file mode 100644
index 00000000000..43fd667f440
--- /dev/null
+++ b/docs/graphql/cloud/projects/manage-projects/team.rst
@@ -0,0 +1,46 @@
+.. meta::
+   :description: Managing teams on Hasura Cloud
+   :keywords: hasura, docs, project, team
+
+.. _manage_project_team:
+
+Team tab
+========
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 2
+  :local:
+
+Introduction
+------------
+
+The ``Team`` tab shows the current people with access to the project. 
+
+Add a collaborator
+------------------
+
+Click ``New Collaborator`` to invite a new team member.
+
+.. thumbnail:: /img/graphql/cloud/projects/team-view.png
+   :alt: Team tab
+   :width: 1146px
+
+Team roles
+^^^^^^^^^^
+
+Team members can have different levels of access in the Hasura console.
+
+- **Admin** has complete access to all project tools and configurations.
+- **User** has limited privileges:
+
+  - The ``Execute GraphQL`` permission allows running queries, mutations, and subscriptions.
+  - The ``View Metrics`` permission allows inspecting operation data and the performance dashboard.
+
+.. thumbnail:: /img/graphql/cloud/projects/add-collaborator.png
+   :alt: Add collaborator
+   :width: 437px
+
+.. note::
+
+  Invitations can be accepted or declined via the ``Invitations`` tab of your Hasura Cloud settings.
diff --git a/docs/graphql/cloud/projects/secure.rst b/docs/graphql/cloud/projects/secure.rst
new file mode 100644
index 00000000000..3c2ec82b330
--- /dev/null
+++ b/docs/graphql/cloud/projects/secure.rst
@@ -0,0 +1,59 @@
+.. meta::
+   :description: Securing projects on Hasura Cloud
+   :keywords: hasura, docs, project
+
+.. _secure_project:
+
+Securing projects
+=================
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 2
+  :local:
+
+Introduction
+------------
+
+To make sure that your GraphQL endpoint and the Hasura console are not publicly accessible, you need to configure an admin secret key.
+
+Adding an admin secret
+----------------------
+
+Step 1: Go to settings
+^^^^^^^^^^^^^^^^^^^^^^
+
+On the project overview, click on the settings icon on the top right of the relevant project.
+
+.. thumbnail:: /img/graphql/cloud/projects/secure-settings.png
+   :alt: Go to settings
+   :width: 865px
+
+Step 2: Navigate to env vars
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+On the ``Env vars`` tab, click the button to add a new env var.
+
+.. thumbnail:: /img/graphql/cloud/projects/secure-envvars.png
+   :alt: Navigate to env vars
+   :width: 865px
+
+Step 3: Add an admin secret
+^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+In the ``Key`` dropdown, choose ``ADMIN_SECRET`` and add the secret in the ``Value`` field. Then click the ``Add`` button.
+
+.. thumbnail:: /img/graphql/cloud/projects/secure-add-envvar.png
+   :alt: Navigate to env vars
+   :width: 865px
+
+Accessing Hasura
+----------------
+
+After setting an admin secret, when you launch the console from the Hasura Cloud dashboard, you'll be authenticated as an admin. 
+If you want to make API calls from outside the console, you need to pass the admin secret as the `x-hasura-admin-secret` request header.
+
+.. note::
+
+    The admin secret should be treated like a password i.e. it should be kept secret and shouldn't be passed from frontend clients.
+    Refer :ref:`this <authentication>` to set up user authentication.
diff --git a/docs/graphql/cloud/read-replicas.rst b/docs/graphql/cloud/read-replicas.rst
new file mode 100644
index 00000000000..432cdddaece
--- /dev/null
+++ b/docs/graphql/cloud/read-replicas.rst
@@ -0,0 +1,42 @@
+.. meta::
+   :description: Hasura Cloud read replicas
+   :keywords: hasura, docs, cloud, read replicas, connections, pool
+
+.. _read_replicas:
+
+Read replicas
+=============
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Introduction
+------------
+
+Hasura Cloud can load balance queries and subscriptions across read replicas while sending all mutations and metadata API calls to the master.
+
+Adding read replica urls
+------------------------
+
+If you have configured your Postgres instances with replicas, the replica URLs can be added to Hasura using the following environment variable in your project ENV Vars tab:
+
+.. code-block:: bash
+
+   HASURA_GRAPHQL_READ_REPLICA_URLS=postgres://user:password@replica-host:5432/db
+
+If you have multiple replicas, their urls can be added as comma separated values.
+
+Connection pool parameters
+--------------------------
+
+Additional environment variables for connection pools, and for read replicas specifically:
+
+``HASURA_GRAPHQL_PG_STRIPES``
+
+``HASURA_GRAPHQL_PG_CONNECTIONS``
+
+``HASURA_GRAPHQL_CONNECTIONS_PER_READ_REPLICA``
+
+``HASURA_GRAPHQL_STRIPES_PER_READ_REPLICA``
\ No newline at end of file
diff --git a/docs/graphql/cloud/regression-tests.rst b/docs/graphql/cloud/regression-tests.rst
new file mode 100644
index 00000000000..f62e7af643e
--- /dev/null
+++ b/docs/graphql/cloud/regression-tests.rst
@@ -0,0 +1,97 @@
+.. meta::
+   :description: Hasura Cloud regression tests
+   :keywords: hasura, docs, cloud, reliability, regression, migration
+
+.. _regression_tests:
+
+Regression tests
+================
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 2
+  :local:
+
+Introduction
+------------
+
+Hasura Cloud includes a comprehensive test bench that lets you seamlessly compile a test suite on each project, executable on any GraphQL Engine instance (ex: staging, prod).
+
+Here's a reference development workflow that is enabled by Hasura Cloud:
+
+#. Build your database schema and configure Hasura as required by your frontend apps or public GraphQL API.
+#. Deploy changes to production after testing them.
+#. Create a regression suite on production.
+#. Iterate on your GraphQL schema to support new features or edits.    
+
+   - Test changes in your dev instance against the production instance’s regression test suite. Fix any issues highlighted by the tests or plan to communicate regressions to affected stakeholders.
+
+#. Run all changes through a CI/CD pipeline   
+
+   - Run Regression tests programmatically for all changes in the team
+
+#. Promote changes to prod
+
+.. thumbnail:: /img/graphql/cloud/reliability/regression-testing-diagram.png
+   :alt: Regression testing process diagram
+
+Manage test suites
+------------------
+
+Each Hasura Cloud project can be configured with a separate test suite. Ideally, you want to create a regression test suite on an project which has received requests with operations you’d like to continue supporting or ensure are not “broken” - production or a shared QA project which receives operations in your app or, if you have a public GraphQL API, those from your consumers.
+
+.. thumbnail:: /img/graphql/cloud/reliability/regression-tests-suites.png
+   :alt: Manage regression test suites
+
+Quick-create tests
+------------------
+
+Add important operations to your test suite with one click by adding them from your project's operation history:
+
+.. thumbnail:: /img/graphql/cloud/reliability/regression-tests-add-operations.png
+   :alt: Add tests to regression test suites
+
+Run test suites
+---------------
+
+A good development workflow would require that tests be run 1) early in the dev process, and 2) automatically with changes, to ensure changes to the schema don't break functionality.
+
+A test suite configured on a Hasura Cloud project can be run on the same instance or any other Hasura Cloud project registered to your team, including local ones. This is how we recommend that you incorporate regression tests into your GraphQL engine workflows:
+
+Run regression tests manually
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+Let’s say you’re a developer iterating on a feature and, as part of your work, need to modify your Postgres schema or the Hasura configuration. It is likely that you are doing so by running the console via the Hasura CLI to generate migrations that you can version control. Before committing your changes in git, you should run tests to get an early warning for potential regressions. Your team may want to designate the test suite from your production instance (or a suitable alternative) as the default suite to be used for this, and you can choose to run this test suite on your local or development instance.
+
+.. thumbnail:: /img/graphql/cloud/reliability/regressions-run-prod-tests-on-dev.png
+   :alt: Run regression tests
+
+For example, if the column ‘title’ (in a typical authors and articles schema) has been modified as part of a feature iteration. Assuming the operation from the previous example is part of the test suite on production, here’s how the feedback on this change looks like:
+
+.. thumbnail:: /img/graphql/cloud/reliability/regression-tests-results.png
+   :alt: Regression test results
+
+As you can see, one of the tests fails because it expects a field, title, to be part of the type articles - which is something our proposed change just modified and removed support for.
+
+Run regression tests in CI/CD flow
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+.. thumbnail:: /img/graphql/cloud/reliability/regression-tests-run-cli.png
+   :alt: Run regression tests via CLI
+
+This command will fetch the entire test suite from Hasura Pro and run the tests against given endpoint using the admin secret and report the result on the terminal. The test run and the results will also be available on the Hasura Console.
+
+You can use the Hasura Pro CLI to programmatically trigger execution of a test suite in your automated testing setup, typically in CI scripts. 
+
+In order to communicate with Hasura’s APIs, the CLI needs to be configured with an API access token (which you can create via your Hasura Cloud settings). If you want to set the token up on a non-interactive environment, like a CI pipeline, you can obtain a token and then add to ``~/.hasura/pro_config.yaml`` with the following format:
+
+.. code-block:: bash
+
+   pat: <token>
+
+
+View test suite results
+-----------------------
+
+.. thumbnail:: /img/graphql/cloud/reliability/regression-tests-past-runs.png
+   :alt: Regression tests past results
\ No newline at end of file
diff --git a/docs/graphql/cloud/response-caching.rst b/docs/graphql/cloud/response-caching.rst
new file mode 100644
index 00000000000..22a21662717
--- /dev/null
+++ b/docs/graphql/cloud/response-caching.rst
@@ -0,0 +1,66 @@
+.. meta::
+   :description: Query response caching in Hasura Cloud
+   :keywords: hasura, docs, cloud, response, caching
+
+.. _response_caching:
+
+Query response caching
+======================
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Introduction
+------------
+
+Hasura Cloud provides support for caching query responses, in order to 
+improve performance for queries which are executed frequently.
+
+Cached responses are stored in for a period of time in a LRU (least-recently 
+used) cache, and removed from the cache as needed based on usage.
+
+A query's response can be cached only if the following conditions hold:
+
+- The query does not make use of remote schemas or remote joins
+- The query and any related user permissions do not make use of session variables
+- The response JSON is under 100KB in size
+
+Enable caching
+--------------
+
+In order to enable caching for a query response, or to return an existing
+response from the cache (if one exists), simply add the ``@cached`` directive
+to your query:
+
+.. code-block:: graphql
+
+   query MyCachedQuery @cached {
+     users {
+       id
+       name
+     }
+   }
+   
+If the response was cached successfully, the HTTP response will include a
+``X-Hasura-TTL`` header, whose value indicates the maximum number of seconds
+for the returned response to remain in the cache.
+   
+Controlling cache lifetime
+--------------------------
+
+The maximum lifetime of an entry in the cache can be controlled using the ``ttl``
+argument to the ``@cached`` query directive. The value is an integer number of seconds:
+
+.. code-block:: graphql
+
+   query MyCachedQuery @cached(ttl: 120) {
+     users {
+       id
+       name
+     }
+   }
+   
+By default, a response will be cached with a maximum lifetime of 60 seconds.
+The maximum allowed value is 300 seconds (5 minutes).
diff --git a/docs/graphql/cloud/tracing.rst b/docs/graphql/cloud/tracing.rst
new file mode 100644
index 00000000000..8d9892abe00
--- /dev/null
+++ b/docs/graphql/cloud/tracing.rst
@@ -0,0 +1,98 @@
+.. meta::
+   :description: Distributed tracing with Hasura Cloud
+   :keywords: hasura, docs, cloud, tracing
+
+.. _tracing:
+
+Distributed tracing
+=======================
+
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Introduction
+------------
+
+Hasura Cloud has support for *distributed tracing*, a technique for
+debugging Hasura in production in the context of the services it works
+with. These services might include your own Postgres database, any
+remote schemas, event trigger webhook providers, action providers or
+authentication hooks. Distributed tracing attempts to give a unified
+view into the performance characteristics of all of these components of
+your architecture.
+
+Visualizing traces
+------------------
+
+The Hasura Pro console makes it possible to view Hasura's own tracing
+data, by opening the details view for an operation in the Operations
+tab:
+
+.. thumbnail:: /img/graphql/cloud/tracing/tracing-operations-timing.png
+   :alt: View timing data in the Operations tab
+
+Given that other system components will report their own tracing data to
+your APM system, and not to Hasura, it is not possible to give a
+complete picture of a trace, but since Hasura sits in a central position
+in the architecture of many systems, it can often give a reasonably
+comprehensive view of the provenance of data in your system.
+
+For example, Hasura can report interactions with Postgres, remote
+schemas, event trigger webhooks and action handlers.
+
+APM system integration
+----------------------
+
+Hasura will report trace information to your APM or *application
+performance monitoring* system, where it can be correlated with similar
+sources of data from other components of your service architecture.
+
+If you are considering integrating Hasura with your APM system, please
+get in touch so that we can help to coordinate that effort.
+
+Trace propagation
+-----------------
+
+At the boundaries between different services, tracing information needs
+to be shared in order for trace fragments from different systems to be
+correlated with each other in the APM system. This is called *trace
+propagation*.
+
+There are several subtly-incompatible proposals for trace propagation,
+which can make it difficult to arrange for any two services to work
+together.
+
+Propagation to web services
+~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+For propagation during a call to a web service over HTTP, Hasura
+currently implements the `B3 propagation
+specification <https://github.com/openzipkin/b3-propagation>`__. This
+means that we send trace information in various HTTP headers, which
+should be read and handled by any compatible web services.
+
+If you are unsure how to implement B3 propagation in your own web
+service, the simplest thing to do is to read these headers and pass them
+along to any HTTP services you call which also support B3 propagation,
+including Hasura itself.
+
+In particular, if an event trigger webhook or action handler propagates
+these B3 headers back to Hasura, we will be able to trace the entire
+interaction.
+
+Propagation via Postgres
+~~~~~~~~~~~~~~~~~~~~~~~~
+
+There is no standard method for trace propagation via Postgres
+transactions. For example, event triggers can be invoked by mutations,
+and so their traces should be correlated.
+
+For this reason, we have adopted our own method of propagating a trace
+context in Postgres transactions.
+
+The trace context will be serialized during mutations as a
+transaction-local variable, ``hasura.tracecontext``. This value has the
+Postgres type ``json``, and it can be read in trigger functions and
+propagated to any downstream services.
\ No newline at end of file
diff --git a/docs/graphql/manual/actions/action-examples.rst.wip b/docs/graphql/core/actions/action-examples.rst.wip
similarity index 90%
rename from docs/graphql/manual/actions/action-examples.rst.wip
rename to docs/graphql/core/actions/action-examples.rst.wip
index ad3b48c45a2..0785e936002 100644
--- a/docs/graphql/manual/actions/action-examples.rst.wip
+++ b/docs/graphql/core/actions/action-examples.rst.wip
@@ -34,14 +34,14 @@ This page provides reference examples of typical action use cases.
 
   Now we have an action ``updateAddress`` that looks as follows:
 
-  .. thumbnail:: /img/graphql/manual/actions/update-address-action-definition.png
+  .. thumbnail:: /img/graphql/core/actions/update-address-action-definition.png
          :alt: Update address action
          :width: 65%
 
   We can now add an object relationship from the ``updateAddress`` action to the ``authors`` table in our schema.
   We call it ``updatedAddressAuthor``.
 
-  .. thumbnail:: /img/graphql/manual/actions/action-object-relationship.png
+  .. thumbnail:: /img/graphql/core/actions/action-object-relationship.png
          :alt: Object relationship from action
          :width: 65%
 
@@ -90,14 +90,14 @@ This page provides reference examples of typical action use cases.
 
   Now we have an action ``updateAuthor`` that looks as follows:
 
-  .. thumbnail:: /img/graphql/manual/actions/update-author-action-definition.png
+  .. thumbnail:: /img/graphql/core/actions/update-author-action-definition.png
          :alt: Update author action
          :width: 65%
 
   We can now add an array relationship from the ``updateAuthor`` action to the ``articles`` table in our schema.
   We call it ``updatedAuthorArticles``.
 
-  .. thumbnail:: /img/graphql/manual/actions/action-array-relationship.png
+  .. thumbnail:: /img/graphql/core/actions/action-array-relationship.png
          :alt: Array relationship from action
          :width: 65%
 
diff --git a/docs/graphql/manual/actions/action-handlers.rst b/docs/graphql/core/actions/action-handlers.rst
similarity index 98%
rename from docs/graphql/manual/actions/action-handlers.rst
rename to docs/graphql/core/actions/action-handlers.rst
index 58bf571b2d5..fceaaa4e049 100644
--- a/docs/graphql/manual/actions/action-handlers.rst
+++ b/docs/graphql/core/actions/action-handlers.rst
@@ -183,7 +183,7 @@ For your action, add a header that will act as an action secret.
      Head to the ``Actions -> [action-name]`` tab in the console and scroll down to ``Headers``.
      You can now configure an action secret by adding a header:
 
-     .. thumbnail:: /img/graphql/manual/actions/action-secret-header.png
+     .. thumbnail:: /img/graphql/core/actions/action-secret-header.png
         :alt: Console action secret
         :width: 75%
 
diff --git a/docs/graphql/manual/actions/action-permissions.rst b/docs/graphql/core/actions/action-permissions.rst
similarity index 94%
rename from docs/graphql/manual/actions/action-permissions.rst
rename to docs/graphql/core/actions/action-permissions.rst
index 61018099ec9..b426f80cae9 100644
--- a/docs/graphql/manual/actions/action-permissions.rst
+++ b/docs/graphql/core/actions/action-permissions.rst
@@ -29,7 +29,7 @@ Set action permissions
      Head to the ``Actions -> [action-name] -> Permissions`` tab in the
      console.
 
-     .. thumbnail:: /img/graphql/manual/actions/actions-permissions.png
+     .. thumbnail:: /img/graphql/core/actions/actions-permissions.png
         :alt: Console action permission
 
      Hit ``Save`` to give the role permission to access the action.
diff --git a/docs/graphql/manual/actions/async-actions.rst b/docs/graphql/core/actions/async-actions.rst
similarity index 100%
rename from docs/graphql/manual/actions/async-actions.rst
rename to docs/graphql/core/actions/async-actions.rst
diff --git a/docs/graphql/manual/actions/codegen.rst b/docs/graphql/core/actions/codegen.rst
similarity index 90%
rename from docs/graphql/manual/actions/codegen.rst
rename to docs/graphql/core/actions/codegen.rst
index 6f1b2647e7d..d37bf975d4c 100644
--- a/docs/graphql/manual/actions/codegen.rst
+++ b/docs/graphql/core/actions/codegen.rst
@@ -41,7 +41,7 @@ Generating handler code for your action
     You can select the framework of your choice to get the corresponding
     handler boilerplate code.
 
-    .. thumbnail:: /img/graphql/manual/actions/console-codegen-tab.png
+    .. thumbnail:: /img/graphql/core/actions/console-codegen-tab.png
        :alt: Console codegen tab
 
 
@@ -59,17 +59,17 @@ Generating handler code for your action
 
     1. Choose which framework you want to codegen for:
 
-       .. thumbnail:: /img/graphql/manual/actions/cli-framework-prompt.png
+       .. thumbnail:: /img/graphql/core/actions/cli-framework-prompt.png
           :alt: CLI Framework Prompt
 
     2. Choose if you also wish to clone a starter kit for the chosen framework:
 
-       .. thumbnail:: /img/graphql/manual/actions/cli-starter-kit-prompt.png
+       .. thumbnail:: /img/graphql/core/actions/cli-starter-kit-prompt.png
           :alt: CLI Starter Kit Prompt
 
     3. Choose a path where you want to output the auto-generated code files
 
-       .. thumbnail:: /img/graphql/manual/actions/cli-output-dir-prompt.png
+       .. thumbnail:: /img/graphql/core/actions/cli-output-dir-prompt.png
           :alt: CLI Starter Kit Prompt
 
 
diff --git a/docs/graphql/manual/actions/create.rst b/docs/graphql/core/actions/create.rst
similarity index 98%
rename from docs/graphql/manual/actions/create.rst
rename to docs/graphql/core/actions/create.rst
index a5682061b10..5fce9c05724 100644
--- a/docs/graphql/manual/actions/create.rst
+++ b/docs/graphql/core/actions/create.rst
@@ -96,7 +96,7 @@ in the GraphQL schema.
      Go to the ``Actions`` tab on the console and click on ``Create``. This will
      take you to a page like this:
 
-     .. thumbnail:: /img/graphql/manual/actions/mutation-action-create.png
+     .. thumbnail:: /img/graphql/core/actions/mutation-action-create.png
         :alt: Console action create
         :width: 70%
 
@@ -275,7 +275,7 @@ the GraphQL schema.
      Go to the ``Actions`` tab on the console and click on ``Create``. This will
      take you to a page like this:
 
-     .. thumbnail:: /img/graphql/manual/actions/query-action-create.png
+     .. thumbnail:: /img/graphql/core/actions/query-action-create.png
         :alt: Console action create
         :width: 70%
 
diff --git a/docs/graphql/manual/actions/debugging.rst b/docs/graphql/core/actions/debugging.rst
similarity index 100%
rename from docs/graphql/manual/actions/debugging.rst
rename to docs/graphql/core/actions/debugging.rst
diff --git a/docs/graphql/manual/actions/derive.rst b/docs/graphql/core/actions/derive.rst
similarity index 95%
rename from docs/graphql/manual/actions/derive.rst
rename to docs/graphql/core/actions/derive.rst
index 58426def828..22fd9d0d74b 100644
--- a/docs/graphql/manual/actions/derive.rst
+++ b/docs/graphql/core/actions/derive.rst
@@ -75,13 +75,13 @@ derive our action:
 
      Next hit the ``Derive action`` button as shown below:
 
-     .. thumbnail:: /img/graphql/manual/actions/actions-derive-button.png
+     .. thumbnail:: /img/graphql/core/actions/actions-derive-button.png
         :alt: Console derive action button
 
      This will redirect you to the ``Add a new action`` page with the action
      definition auto filled.
 
-     .. thumbnail:: /img/graphql/manual/actions/actions-derive-types.png
+     .. thumbnail:: /img/graphql/core/actions/actions-derive-types.png
         :alt: Console derived action types
 
 
@@ -149,7 +149,7 @@ the action back to the original operation.
     You can select the framework of your choice to get the corresponding
     handler boilerplate code.
 
-    .. thumbnail:: /img/graphql/manual/actions/actions-derive-codegen.png
+    .. thumbnail:: /img/graphql/core/actions/actions-derive-codegen.png
        :alt: Console derived action codegen
 
     .. note::
diff --git a/docs/graphql/manual/actions/index.rst b/docs/graphql/core/actions/index.rst
similarity index 98%
rename from docs/graphql/manual/actions/index.rst
rename to docs/graphql/core/actions/index.rst
index 852edc4b0fa..61e6181044a 100644
--- a/docs/graphql/manual/actions/index.rst
+++ b/docs/graphql/core/actions/index.rst
@@ -20,7 +20,7 @@ logic using custom queries and mutations. Actions can be
 added to Hasura to handle various use cases such as data validation, data
 enrichment from external sources and any other complex business logic.
 
-.. thumbnail:: /img/graphql/manual/actions/actions-arch.png
+.. thumbnail:: /img/graphql/core/actions/actions-arch.png
    :class: no-shadow
    :alt: Actions high level architecture
 
diff --git a/docs/graphql/manual/actions/reuse-types-actions.rst b/docs/graphql/core/actions/reuse-types-actions.rst
similarity index 97%
rename from docs/graphql/manual/actions/reuse-types-actions.rst
rename to docs/graphql/core/actions/reuse-types-actions.rst
index 2984bdd6a5f..62ede8ce9d6 100644
--- a/docs/graphql/manual/actions/reuse-types-actions.rst
+++ b/docs/graphql/core/actions/reuse-types-actions.rst
@@ -98,7 +98,7 @@ You can create relationships for custom output types by:
 
      Set the output type relationship as shown below:
 
-     .. thumbnail:: /img/graphql/manual/actions/actions-relationship.png
+     .. thumbnail:: /img/graphql/core/actions/actions-relationship.png
         :alt: Console action relationship
 
      Hit ``Save`` to create the relationship.
diff --git a/docs/graphql/manual/actions/types/index.rst b/docs/graphql/core/actions/types/index.rst
similarity index 100%
rename from docs/graphql/manual/actions/types/index.rst
rename to docs/graphql/core/actions/types/index.rst
diff --git a/docs/graphql/manual/api-reference/config.rst b/docs/graphql/core/api-reference/config.rst
similarity index 98%
rename from docs/graphql/manual/api-reference/config.rst
rename to docs/graphql/core/api-reference/config.rst
index 0348f412c65..8dceda3ca08 100644
--- a/docs/graphql/manual/api-reference/config.rst
+++ b/docs/graphql/core/api-reference/config.rst
@@ -12,6 +12,9 @@ Config API Reference
   :depth: 1
   :local:
 
+Introduction
+------------
+
 The Config API is an admin only endpoint which gives info on the server
 configuration.
 
diff --git a/docs/graphql/manual/api-reference/explain.rst b/docs/graphql/core/api-reference/explain.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/explain.rst
rename to docs/graphql/core/api-reference/explain.rst
index 7f212987b24..c7178937d87 100644
--- a/docs/graphql/manual/api-reference/explain.rst
+++ b/docs/graphql/core/api-reference/explain.rst
@@ -12,6 +12,9 @@ Explain API Reference
   :depth: 1
   :local:
 
+Introduction
+------------
+
 The Explain API is used to analyse queries and subscriptions. It returns a list of Postgres plans for a query and a single Postgres plan for a subscription, based
 on the defined permissions.
 
diff --git a/docs/graphql/manual/api-reference/graphql-api/index.rst b/docs/graphql/core/api-reference/graphql-api/index.rst
similarity index 98%
rename from docs/graphql/manual/api-reference/graphql-api/index.rst
rename to docs/graphql/core/api-reference/graphql-api/index.rst
index 687d8fa088f..717e62f0f7e 100644
--- a/docs/graphql/manual/api-reference/graphql-api/index.rst
+++ b/docs/graphql/core/api-reference/graphql-api/index.rst
@@ -12,6 +12,9 @@ GraphQL API Reference
   :depth: 1
   :local:
 
+Introduction
+------------
+
 All GraphQL requests for queries, subscriptions and mutations are made to the GraphQL API.
 
 Endpoint
diff --git a/docs/graphql/manual/api-reference/graphql-api/mutation.rst b/docs/graphql/core/api-reference/graphql-api/mutation.rst
similarity index 100%
rename from docs/graphql/manual/api-reference/graphql-api/mutation.rst
rename to docs/graphql/core/api-reference/graphql-api/mutation.rst
diff --git a/docs/graphql/manual/api-reference/graphql-api/query.rst b/docs/graphql/core/api-reference/graphql-api/query.rst
similarity index 100%
rename from docs/graphql/manual/api-reference/graphql-api/query.rst
rename to docs/graphql/core/api-reference/graphql-api/query.rst
diff --git a/docs/graphql/manual/api-reference/health.rst b/docs/graphql/core/api-reference/health.rst
similarity index 98%
rename from docs/graphql/manual/api-reference/health.rst
rename to docs/graphql/core/api-reference/health.rst
index c3eb62fe362..d36e1211dee 100644
--- a/docs/graphql/manual/api-reference/health.rst
+++ b/docs/graphql/core/api-reference/health.rst
@@ -12,6 +12,9 @@ Health check API Reference
   :depth: 1
   :local:
 
+Introduction
+------------
+
 The Health API is a public endpoint which gives info on the server health.
 
 Endpoint
diff --git a/docs/graphql/manual/api-reference/index.rst b/docs/graphql/core/api-reference/index.rst
similarity index 100%
rename from docs/graphql/manual/api-reference/index.rst
rename to docs/graphql/core/api-reference/index.rst
diff --git a/docs/graphql/manual/api-reference/pgdump.rst b/docs/graphql/core/api-reference/pgdump.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/pgdump.rst
rename to docs/graphql/core/api-reference/pgdump.rst
index abe85f53bf5..1c49760d9d6 100644
--- a/docs/graphql/manual/api-reference/pgdump.rst
+++ b/docs/graphql/core/api-reference/pgdump.rst
@@ -12,6 +12,9 @@ PG Dump API Reference
   :depth: 1
   :local:
 
+Introduction
+------------
+
 The PG Dump API is an admin-only endpoint that can be used to execute ``pg_dump`` on the
 Postgres instance that Hasura is configured with.
 
diff --git a/docs/graphql/manual/api-reference/pgtypes.csv b/docs/graphql/core/api-reference/pgtypes.csv
similarity index 100%
rename from docs/graphql/manual/api-reference/pgtypes.csv
rename to docs/graphql/core/api-reference/pgtypes.csv
diff --git a/docs/graphql/manual/api-reference/postgresql-types.rst b/docs/graphql/core/api-reference/postgresql-types.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/postgresql-types.rst
rename to docs/graphql/core/api-reference/postgresql-types.rst
index 08bb45cefb0..6420dc599c3 100644
--- a/docs/graphql/manual/api-reference/postgresql-types.rst
+++ b/docs/graphql/core/api-reference/postgresql-types.rst
@@ -14,6 +14,9 @@ API Reference - Supported PostgreSQL Types
 
 .. _types_table:
 
+Introduction
+------------
+
 List of PostgreSQL types supported by the Hasura GraphQL engine with their equivalent Hasura types:
 
 .. csv-table::
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/actions.rst b/docs/graphql/core/api-reference/schema-metadata-api/actions.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/actions.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/actions.rst
index 1b42eadcf5c..fded740e32b 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/actions.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/actions.rst
@@ -12,6 +12,9 @@ Schema/Metadata API Reference: Actions
   :depth: 1
   :local:
 
+Introduction
+------------
+
 **actions** are user defined mutations with custom business logic.
 
 .. _create_action:
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/computed-field.rst b/docs/graphql/core/api-reference/schema-metadata-api/computed-field.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/computed-field.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/computed-field.rst
index c4701d9b927..a0cb1ee5868 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/computed-field.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/computed-field.rst
@@ -12,6 +12,9 @@ Schema/Metadata API Reference: Computed Fields
   :depth: 1
   :local:
 
+Introduction
+------------
+
 **computed field** is an extra field added to a table, its value is
 computed via an SQL function which has the table row type as an input argument.
 Currenty, the Hasura GraphQL engine supports functions returning
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/custom-functions.rst b/docs/graphql/core/api-reference/schema-metadata-api/custom-functions.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/custom-functions.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/custom-functions.rst
index 2751a8ee003..a71bb557a52 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/custom-functions.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/custom-functions.rst
@@ -12,6 +12,9 @@ Schema/Metadata API Reference: Custom Functions
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Track/untrack a custom SQL function in the Hasura GraphQL engine.
 
 Only tracked custom functions are available for querying/mutating/subscribing data over the GraphQL API.
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/custom-types.rst b/docs/graphql/core/api-reference/schema-metadata-api/custom-types.rst
similarity index 98%
rename from docs/graphql/manual/api-reference/schema-metadata-api/custom-types.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/custom-types.rst
index 1ef0790c4c5..517131436a2 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/custom-types.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/custom-types.rst
@@ -7,6 +7,14 @@
 Schema/Metadata API Reference: Custom Types
 ===========================================
 
+.. contents:: Table of contents
+  :backlinks: none
+  :depth: 1
+  :local:
+
+Introduction
+------------
+
 **Custom Types** are user-defined GraphQL types which help to define :ref:`Actions <api_actions>`.
 
 .. _set_custom_types:
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/dataerrors.csv b/docs/graphql/core/api-reference/schema-metadata-api/dataerrors.csv
similarity index 100%
rename from docs/graphql/manual/api-reference/schema-metadata-api/dataerrors.csv
rename to docs/graphql/core/api-reference/schema-metadata-api/dataerrors.csv
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/event-triggers.rst b/docs/graphql/core/api-reference/schema-metadata-api/event-triggers.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/event-triggers.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/event-triggers.rst
index 44464348bc6..c7dd161e56e 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/event-triggers.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/event-triggers.rst
@@ -12,6 +12,9 @@ Schema/Metadata API Reference: Event Triggers
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Event triggers are used to capture database changes and send them to a configured webhook.
 
 .. _create_event_trigger:
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/index.rst b/docs/graphql/core/api-reference/schema-metadata-api/index.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/index.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/index.rst
index f7c54613e84..c7ecdcc193d 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/index.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/index.rst
@@ -12,6 +12,9 @@ Schema / Metadata API Reference
   :depth: 1
   :local:
 
+Introduction
+------------
+
 The schema / metadata API provides the following features:
 
 1. Execute SQL on the underlying Postgres database, supports schema modifying actions.
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/manage-metadata.rst b/docs/graphql/core/api-reference/schema-metadata-api/manage-metadata.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/manage-metadata.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/manage-metadata.rst
index e95d1c793ad..c8479601d38 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/manage-metadata.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/manage-metadata.rst
@@ -12,6 +12,9 @@ Schema/Metadata API Reference: Manage metadata
   :depth: 1
   :local:
 
+Introduction
+------------
+
 APIs to manage Hasura metadata which is stored in ``hdb_catalog`` schema.
 
 .. _export_metadata:
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/permission.rst b/docs/graphql/core/api-reference/schema-metadata-api/permission.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/permission.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/permission.rst
index f77edcaa47b..d3f620c42fd 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/permission.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/permission.rst
@@ -12,6 +12,9 @@ Schema/Metadata API Reference: Permissions
   :depth: 1
   :local:
 
+Introduction
+------------
+
 The permission layer is designed to restrict the operations that can be
 performed by various users. Permissions can be defined on various operations
 (insert/select/update/delete) at a role level granularity. By default, the ``admin``
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/query-collections.rst b/docs/graphql/core/api-reference/schema-metadata-api/query-collections.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/query-collections.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/query-collections.rst
index 6ec5f8e0e36..947f40239aa 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/query-collections.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/query-collections.rst
@@ -12,6 +12,9 @@ Schema/Metadata API Reference: Query collections
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Group queries using query collections.
 
 Create/drop query collections and add/drop a query to a collection using the following query types.
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/relationship.rst b/docs/graphql/core/api-reference/schema-metadata-api/relationship.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/relationship.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/relationship.rst
index aa7aa9f61aa..f20a6f669f3 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/relationship.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/relationship.rst
@@ -12,6 +12,9 @@ Schema/Metadata API Reference: Relationships
   :depth: 1
   :local:
 
+Introduction
+------------
+
 When retrieving data from tables, it is very helpful if we can also
 fetch the related data alongside the columns. This is where relationships come
 in. They can be considered as pseudo columns for a table to access the related
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/remote-relationships.rst b/docs/graphql/core/api-reference/schema-metadata-api/remote-relationships.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/remote-relationships.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/remote-relationships.rst
index b1a3a672590..6812e58f908 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/remote-relationships.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/remote-relationships.rst
@@ -10,6 +10,9 @@ Schema/Metadata API Reference: Remote Relationships
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Remote Relationships allow you to join tables with remote schemas.
 
 .. _create_remote_relationship:
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/remote-schemas.rst b/docs/graphql/core/api-reference/schema-metadata-api/remote-schemas.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/remote-schemas.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/remote-schemas.rst
index f42a7b600e2..f320b973447 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/remote-schemas.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/remote-schemas.rst
@@ -12,6 +12,9 @@ Schema/Metadata API Reference: Remote schemas
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Add/Remove a remote GraphQL server as remote schema in Hasura GraphQL engine.
 
 .. _add_remote_schema:
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/run-sql.rst b/docs/graphql/core/api-reference/schema-metadata-api/run-sql.rst
similarity index 100%
rename from docs/graphql/manual/api-reference/schema-metadata-api/run-sql.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/run-sql.rst
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/scheduled-triggers.rst b/docs/graphql/core/api-reference/schema-metadata-api/scheduled-triggers.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/scheduled-triggers.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/scheduled-triggers.rst
index c7669bcb55f..a15f35216bd 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/scheduled-triggers.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/scheduled-triggers.rst
@@ -10,6 +10,9 @@ Schema/Metadata API Reference: Scheduled Triggers
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Scheduled triggers are used to invoke webhooks based on a timestamp or cron.
 
 .. _create_cron_trigger:
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/syntax-defs.rst b/docs/graphql/core/api-reference/schema-metadata-api/syntax-defs.rst
similarity index 100%
rename from docs/graphql/manual/api-reference/schema-metadata-api/syntax-defs.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/syntax-defs.rst
diff --git a/docs/graphql/manual/api-reference/schema-metadata-api/table-view.rst b/docs/graphql/core/api-reference/schema-metadata-api/table-view.rst
similarity index 99%
rename from docs/graphql/manual/api-reference/schema-metadata-api/table-view.rst
rename to docs/graphql/core/api-reference/schema-metadata-api/table-view.rst
index dbf23f1b9d4..18eb15696ce 100644
--- a/docs/graphql/manual/api-reference/schema-metadata-api/table-view.rst
+++ b/docs/graphql/core/api-reference/schema-metadata-api/table-view.rst
@@ -12,6 +12,9 @@ Schema/Metadata API Reference: Tables/Views
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Track/untrack a table/view in Hasura GraphQL engine.
 
 Only tracked tables/views are available for querying/mutating/subscribing data over the GraphQL API.
diff --git a/docs/graphql/manual/api-reference/version.rst b/docs/graphql/core/api-reference/version.rst
similarity index 96%
rename from docs/graphql/manual/api-reference/version.rst
rename to docs/graphql/core/api-reference/version.rst
index 5fd4d168dd1..0dad6c8ccf9 100644
--- a/docs/graphql/manual/api-reference/version.rst
+++ b/docs/graphql/core/api-reference/version.rst
@@ -12,6 +12,8 @@ Version API Reference
   :depth: 1
   :local:
 
+Introduction
+------------
 
 The ``/v1/version`` is a public endpoint that responds with the current server version in JSON format.
 
diff --git a/docs/graphql/manual/auth/authentication/index.rst b/docs/graphql/core/auth/authentication/index.rst
similarity index 93%
rename from docs/graphql/manual/auth/authentication/index.rst
rename to docs/graphql/core/auth/authentication/index.rst
index 17d1dd92701..00ea7ef5465 100644
--- a/docs/graphql/manual/auth/authentication/index.rst
+++ b/docs/graphql/core/auth/authentication/index.rst
@@ -39,7 +39,7 @@ rules.
 
 Here's how a GraphQL request is processed in webhook mode:
 
-.. thumbnail:: /img/graphql/manual/auth/auth-webhook-overview.png
+.. thumbnail:: /img/graphql/core/auth/auth-webhook-overview.png
    :alt: Authentication using webhooks
 
 2. JWT (JSON Web Token)
@@ -51,7 +51,7 @@ evaluate access control rules.
 
 Here's how a GraphQL query is processed in JWT mode:
 
-.. thumbnail:: /img/graphql/manual/auth/auth-jwt-overview.png
+.. thumbnail:: /img/graphql/core/auth/auth-jwt-overview.png
    :alt: Authentication using JWT
 
 **See more details at:**
diff --git a/docs/graphql/manual/auth/authentication/jwt.rst b/docs/graphql/core/auth/authentication/jwt.rst
similarity index 82%
rename from docs/graphql/manual/auth/authentication/jwt.rst
rename to docs/graphql/core/auth/authentication/jwt.rst
index 61aa887675f..2cf3dfc56ca 100644
--- a/docs/graphql/manual/auth/authentication/jwt.rst
+++ b/docs/graphql/core/auth/authentication/jwt.rst
@@ -21,7 +21,7 @@ The idea is that your auth server will return JWT tokens, which are decoded and
 verified by the GraphQL engine, to authorize and get metadata about the request
 (``x-hasura-*`` values).
 
-.. thumbnail:: /img/graphql/manual/auth/jwt-auth.png
+.. thumbnail:: /img/graphql/core/auth/jwt-auth.png
    :alt: Authentication using JWT
 
 The JWT is decoded, the signature is verified, then it is asserted that the
@@ -133,7 +133,8 @@ JSON object:
      "claims_namespace_path":"<optional-json-path-to-the-claims>",
      "claims_format": "json|stringified_json",
      "audience": <optional-string-or-list-of-strings-to-verify-audience>,
-     "issuer": "<optional-string-to-verify-issuer>"
+     "issuer": "<optional-string-to-verify-issuer>",
+     "claims_map": "<optional-object-of-session-variable-to-claim-jsonpath-or-literal-value>"
    }
 
 (``type``, ``key``) pair or ``jwk_url``, **one of them has to be present**.
@@ -255,8 +256,6 @@ set to ``$.hasura.claims``:
    values set. If neither keys are set, then the default value of
    ``claims_namespace`` i.e. https://hasura.io/jwt/claims will be used.
 
-``claims_format``
-^^^^^^^^^^^^^^^^^
 This is an optional field, with only the following possible values:
 - ``json``
 - ``stringified_json``
@@ -371,6 +370,130 @@ Examples:
    that you can set this field to the appropriate value.
 
 
+``claims_map``
+^^^^^^^^^^^^^^
+This is an optional field. Certain providers might not allow adding custom claims.
+In such a case, you can map Hasura session variables with existing JWT claims
+using ``claims_map``. The ``claims_map`` is a JSON object where keys are session
+variables and values can be a JSON path (with a default value option, when the key
+specified by the JSON path doesn't exist) or a literal value.
+
+The literal values should be a ``String``, except for the ``x-hasura-allowed-roles`` claim
+which expects a ``String`` array.
+
+The value of a claim referred by a JSON path must be a ``String``.
+To use the JSON path value, the path needs to be given in a JSON object with ``path``
+as the key and the JSON path as the value:
+
+.. code-block:: json
+
+   {
+     "path" : "$.user.all_roles",
+   }
+
+.. code-block:: json
+
+   {
+     "path" : "$.roles.default",
+     "default": "user"
+   }
+
+**Example: JWT config with JSON path values**
+
+.. code-block:: json
+
+  {
+    "sub": "1234567890",
+    "name": "John Doe",
+    "admin": true,
+    "iat": 1516239022,
+    "user": {
+      "id": "ujdh739kd"
+    },
+    "hasura": {
+      "all_roles": ["user", "editor"],
+    }
+
+  }
+
+The mapping for ``x-hasura-allowed-roles``, ``x-hasura-default-role`` and ``x-hasura-user-id`` session
+variables can be specified in the ``claims_map`` configuration as follows:
+
+.. code-block:: json
+
+  {
+    "type":"RS512",
+    "key": "-----BEGIN PUBLIC KEY-----\nMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDdlatRjRjogo3WojgGHFHYLugd\nUWAY9iR3fy4arWNA1KoS8kVw33cJibXr8bvwUAUparCwlvdbH6dvEOfou0/gCFQs\nHUfQrSDv+MuSUMAe8jzKE4qW+jK+xQU9a03GUnKHkkle+Q0pX/g6jXZ7r1/xAK5D\no2kQ+X5xK9cipRgEKwIDAQAB\n-----END PUBLIC KEY-----\n",
+    "claims_map": {
+      "x-hasura-allowed-roles": {"path":"$.hasura.all_roles"},
+      "x-hasura-default-role": {"path":"$.hasura.all_roles[0]"},
+      "x-hasura-user-id": {"path":"$.user.id"}
+    }
+  }
+
+**Example: JWT config with JSON path values and default values**
+
+.. code-block:: json
+
+  {
+    "sub": "1234567890",
+    "name": "John Doe",
+    "admin": true,
+    "iat": 1516239022,
+    "hasura": {
+      "all_roles": ["user", "editor"],
+    }
+
+  }
+
+.. code-block:: json
+
+  {
+    "type":"RS512",
+    "key": "-----BEGIN PUBLIC KEY-----\nMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDdlatRjRjogo3WojgGHFHYLugd\nUWAY9iR3fy4arWNA1KoS8kVw33cJibXr8bvwUAUparCwlvdbH6dvEOfou0/gCFQs\nHUfQrSDv+MuSUMAe8jzKE4qW+jK+xQU9a03GUnKHkkle+Q0pX/g6jXZ7r1/xAK5D\no2kQ+X5xK9cipRgEKwIDAQAB\n-----END PUBLIC KEY-----\n",
+    "claims_map": {
+      "x-hasura-allowed-roles": {"path":"$.hasura.all_roles"},
+      "x-hasura-default-role": {"path":"$.hasura.all_roles[0]"},
+      "x-hasura-user-id": {"path":"$.user.id","default":"ujdh739kd"}
+    }
+  }
+
+In the above case, since the ``$.user.id`` doesn't exist in the JWT token, the default
+value of the ``x-hasura-user-id`` i.e "ujdh739kd" will be used
+
+
+**Example: JWT config containing literal values**
+
+.. code-block:: json
+
+  {
+    "sub": "1234567890",
+    "name": "John Doe",
+    "admin": true,
+    "iat": 1516239022,
+    "user": {
+      "id": "ujdh739kd"
+    }
+  }
+
+The corresponding JWT config should be:
+
+.. code-block:: json
+
+  {
+    "type":"RS512",
+    "key": "-----BEGIN PUBLIC KEY-----\nMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDdlatRjRjogo3WojgGHFHYLugd\nUWAY9iR3fy4arWNA1KoS8kVw33cJibXr8bvwUAUparCwlvdbH6dvEOfou0/gCFQs\nHUfQrSDv+MuSUMAe8jzKE4qW+jK+xQU9a03GUnKHkkle+Q0pX/g6jXZ7r1/xAK5D\no2kQ+X5xK9cipRgEKwIDAQAB\n-----END PUBLIC KEY-----\n",
+    "claims_map": {
+      "x-hasura-allowed-roles": ["user","editor"],
+      "x-hasura-default-role": "user",
+      "x-hasura-user-id": {"path":"$.user.id"}
+    }
+
+  }
+
+In the above example, the ``x-hasura-allowed-roles`` and ``x-hasura-default-role`` values are set in the JWT
+config and the value of the ``x-hasura-user-id`` is a JSON path to the value in the JWT token.
+
 
 Examples
 ^^^^^^^^
@@ -543,7 +666,7 @@ https://hasura.io/jwt-config.
 The config generated from this page can be directly pasted in yaml files and command line arguments as it takes
 care of escaping new lines.
 
-.. thumbnail:: /img/graphql/manual/auth/jwt-config-generated.png
+.. thumbnail:: /img/graphql/core/auth/jwt-config-generated.png
    :width: 75%
    :alt: Generating JWT config
 
diff --git a/docs/graphql/manual/auth/authentication/unauthenticated-access.rst b/docs/graphql/core/auth/authentication/unauthenticated-access.rst
similarity index 100%
rename from docs/graphql/manual/auth/authentication/unauthenticated-access.rst
rename to docs/graphql/core/auth/authentication/unauthenticated-access.rst
diff --git a/docs/graphql/manual/auth/authentication/webhook.rst b/docs/graphql/core/auth/authentication/webhook.rst
similarity index 99%
rename from docs/graphql/manual/auth/authentication/webhook.rst
rename to docs/graphql/core/auth/authentication/webhook.rst
index 09d0171833d..4bb8a3e7545 100644
--- a/docs/graphql/manual/auth/authentication/webhook.rst
+++ b/docs/graphql/core/auth/authentication/webhook.rst
@@ -17,7 +17,7 @@ Introduction
 
 You can configure the GraphQL engine to use a webhook to authenticate all incoming requests to the Hasura GraphQL engine server. 
 
-.. thumbnail:: /img/graphql/manual/auth/webhook-auth.png
+.. thumbnail:: /img/graphql/core/auth/webhook-auth.png
    :alt: Authentication using webhooks
 
 .. admonition:: Prerequisite
diff --git a/docs/graphql/manual/auth/authorization/basics.rst b/docs/graphql/core/auth/authorization/basics.rst
similarity index 93%
rename from docs/graphql/manual/auth/authorization/basics.rst
rename to docs/graphql/core/auth/authorization/basics.rst
index 0c80dd1bcba..985a6081ca6 100644
--- a/docs/graphql/manual/auth/authorization/basics.rst
+++ b/docs/graphql/core/auth/authorization/basics.rst
@@ -18,7 +18,7 @@ Introduction
 
 To understand the basics of access control in Hasura, let's take a look at this analogy to a SQL query: 
 
-.. thumbnail:: /img/graphql/manual/auth/permissions-rule-analogy.png
+.. thumbnail:: /img/graphql/core/auth/permissions-rule-analogy.png
   :width: 70%
   :alt: Understanding access control in Hasura
 
@@ -80,7 +80,7 @@ Head to the ``GraphiQL`` tab in your console and try out the below query:
 You'll see that this results in a response that contains all the authors because by default the GraphQL
 query is accepted with **admin** permissions.
 
-.. thumbnail:: /img/graphql/manual/auth/fetch-authors.png
+.. thumbnail:: /img/graphql/core/auth/fetch-authors.png
    :alt: Run a query without access control
 
 Define access control rules
@@ -90,7 +90,7 @@ Now let's define an access control rule for the ``author`` table for a role ``us
 **Permissions** section of the table (``Data`` --> <table> --> ``Permissions`` tab) and define permissions
 as shown below:
 
-.. thumbnail:: /img/graphql/manual/auth/permission-basics-simple-example.png
+.. thumbnail:: /img/graphql/core/auth/permission-basics-simple-example.png
    :alt: Define access control rules
 
 This permission rule reads as: "*For the role* ``user`` *, table* ``author`` *and operation* ``select``/``query``,
@@ -103,7 +103,7 @@ Let's run the same query as above but now with the ``X-Hasura-Role`` and ``X-Has
 variables also included to indicate role and user information. These session variables are passed in
 the ``Request Headers`` section of ``GraphiQL`` as highlighted below:
 
-.. thumbnail:: /img/graphql/manual/auth/permission-basics-query-with-access-control.png
+.. thumbnail:: /img/graphql/core/auth/permission-basics-query-with-access-control.png
    :alt: Run a query with access control
 
 As you can see, the results are now filtered based on the access control rule for the role ``user``
diff --git a/docs/graphql/manual/auth/authorization/common-roles-auth-examples.rst b/docs/graphql/core/auth/authorization/common-roles-auth-examples.rst
similarity index 93%
rename from docs/graphql/manual/auth/authorization/common-roles-auth-examples.rst
rename to docs/graphql/core/auth/authorization/common-roles-auth-examples.rst
index 8787c702ee0..e1ac0ea4c92 100644
--- a/docs/graphql/manual/auth/authorization/common-roles-auth-examples.rst
+++ b/docs/graphql/core/auth/authorization/common-roles-auth-examples.rst
@@ -12,6 +12,9 @@ Access control examples
   :depth: 1
   :local:
 
+Introduction
+------------
+
 This is a guide to help you set up a basic authorization architecture for your GraphQL fields. It is recommended
 that you first check out :ref:`roles_variables` and :ref:`permission_rules`
 that will be referred to throughout this guide.
@@ -31,7 +34,7 @@ Anonymous (not logged in) users
 - Choose the right set of columns that will get exposed in the GraphQL schema as fields. Ensure that sensitive
   information will not be exposed.
 
-.. thumbnail:: /img/graphql/manual/auth/anonymous-role-examples.png
+.. thumbnail:: /img/graphql/core/auth/anonymous-role-examples.png
    :class: no-shadow
    :alt: Access control for an anonymous role
 
@@ -47,7 +50,7 @@ Logged-in users
 - Note that the ``X-Hasura-User-Id`` is a :ref:`dynamic session variable<roles_variables>` that comes in from
   your :ref:`auth webhook's <auth_webhooks>` response, or as a request header if you're testing.
 
-.. thumbnail:: /img/graphql/manual/auth/user-select-graphiql.png
+.. thumbnail:: /img/graphql/core/auth/user-select-graphiql.png
    :class: no-shadow
    :alt: Access control for a logged-in user
 
@@ -64,7 +67,7 @@ organisation either in the same table or via a related table.
 - ``X-Hasura-Org-Id`` is a :ref:`dynamic variable <roles_variables>` that is returned by your
   :ref:`auth webhook <auth_webhooks>` for an incoming GraphQL request.
 
-.. thumbnail:: /img/graphql/manual/auth/org-manager-graphiql.png
+.. thumbnail:: /img/graphql/core/auth/org-manager-graphiql.png
    :class: no-shadow
    :alt: Access control for a manager of an organisation
 
@@ -84,7 +87,7 @@ Let's say the "ownership" or "visibility" information for a data model (table) i
   - This reads as: Allow the role collaborator to select if ``article.collaborators`` has a ``collaborator_id``
     equal to that of ``X-Hasura-User-Id``.
 
-.. thumbnail:: /img/graphql/manual/auth/collaborator-relationship.png
+.. thumbnail:: /img/graphql/core/auth/collaborator-relationship.png
    :class: no-shadow
    :alt: Access control for collaborators of an article
 
@@ -149,7 +152,7 @@ Database Schema
 
 The following is a reference database schema for our example:
 
-.. thumbnail:: /img/graphql/manual/auth/multirole-example-db-schema.png
+.. thumbnail:: /img/graphql/core/auth/multirole-example-db-schema.png
    :alt: Database schema example for multiple roles per user
 
 Based on this schema, we'll create the following tables:
@@ -196,7 +199,7 @@ Relationships
 
 Create an array relationship named ``reviewers`` based on the foreign key constraint ``reviewers`` :: ``article_id``  →  ``articles`` :: ``id``:
 
-.. thumbnail:: /img/graphql/manual/auth/multirole-example-reviewers-array-relationship.png
+.. thumbnail:: /img/graphql/core/auth/multirole-example-reviewers-array-relationship.png
      :class: no-shadow
      :alt: Create an array relationship
 
@@ -240,7 +243,7 @@ Permissions for role ``author``
   
   b) :ref:`Column presets <column_presets>`: Session-variable-based column preset for the ``author_id`` column to automatically insert the user's ID i.e. the ``X-Hasura-User-Id`` session-variable's value. It also helps us avoid explicitly passing the user's ID in the insert mutation.
 
-  .. thumbnail:: /img/graphql/manual/auth/multirole-example-author-insert.png
+  .. thumbnail:: /img/graphql/core/auth/multirole-example-author-insert.png
      :alt: Permissions for the role author
 
   Notice how we don't need to have an explicit row-level permission (*a custom check*) as only authenticated users with the role ``author`` can perform this action. As we have a column preset for the ``author_id`` column that automatically takes the author's ID (*and the* ``id`` *column is an auto-increment integer field*), we only need to allow access to the ``title`` column.
@@ -249,7 +252,7 @@ Permissions for role ``author``
 
   Again, we'll  use **column-level** permissions to restrict access to certain columns. Additionally, we need to define row-level permissions (*a custom check*) to restrict access to only those articles authored by the current user:
 
-  .. thumbnail:: /img/graphql/manual/auth/multirole-example-author-select.png
+  .. thumbnail:: /img/graphql/core/auth/multirole-example-author-select.png
      :alt: Column access for the role author
   
   The row-level permission rule shown here translates to "*if the value in the* ``author_id`` *column of this row is equal to the user's ID i.e. the* ``X-Hasura-User-Id`` *session-variable's value, allow access to it*". 
@@ -261,7 +264,7 @@ Permissions for role ``reviewer``
   
   For this use-case, we'll use :ref:`relationship or nested-object permissions<relationships-in-permissions>` based on the array relationship ``reviewers`` to restrict access to assigned articles only.
 
-  .. thumbnail:: /img/graphql/manual/auth/multirole-example-reviewer-update.png
+  .. thumbnail:: /img/graphql/core/auth/multirole-example-reviewer-update.png
      :alt: Permissions for the role reviewer
 
   The array-relationship based permission rule in the above image reads as "*if the ID of any reviewer assigned to this article is equal to the user's ID i.e. the* ``X-Hasura-User-Id`` *session-variable's value, allow access to it*". The columns' access is restricted using the column-level permissions highlighted above.
@@ -270,7 +273,7 @@ Permissions for role ``reviewer``
 
   This permission rule is pretty much the same as the one for update, the only difference being the  column-level permissions.  
 
-  .. thumbnail:: /img/graphql/manual/auth/multirole-example-reviewer-select.png
+  .. thumbnail:: /img/graphql/core/auth/multirole-example-reviewer-select.png
      :alt: Column access for the role reviewer
 
 Permissions for role ``editor``
@@ -280,14 +283,14 @@ Permissions for role ``editor``
 
   This is a straightforward rule - there's no need for any row-level permissions since editors have access to all rows and they can *read* all columns.
 
-  .. thumbnail:: /img/graphql/manual/auth/multirole-example-editor-select.png
+  .. thumbnail:: /img/graphql/core/auth/multirole-example-editor-select.png
      :alt: Permissions for the role editor
 
 * **Allow editors to update an article**
 
   There's no need for row-level permissions in this case either but we need to restrict access to certain columns only:
 
-  .. thumbnail:: /img/graphql/manual/auth/multirole-example-editor-update.png
+  .. thumbnail:: /img/graphql/core/auth/multirole-example-editor-update.png
      :alt: Column access for the role editor
 
 
diff --git a/docs/graphql/manual/auth/authorization/index.rst b/docs/graphql/core/auth/authorization/index.rst
similarity index 96%
rename from docs/graphql/manual/auth/authorization/index.rst
rename to docs/graphql/core/auth/authorization/index.rst
index b28a1a7c0df..d35c34cbf37 100644
--- a/docs/graphql/manual/auth/authorization/index.rst
+++ b/docs/graphql/core/auth/authorization/index.rst
@@ -23,7 +23,7 @@ session variables. Other session variables can be passed by your auth service as
 
 **For example:**
 
-.. thumbnail:: /img/graphql/manual/auth/hasura-perms.png
+.. thumbnail:: /img/graphql/core/auth/hasura-perms.png
    :width: 80 %
    :alt: Create a permission rule
 
diff --git a/docs/graphql/manual/auth/authorization/modeling-roles.rst.wip b/docs/graphql/core/auth/authorization/modeling-roles.rst.wip
similarity index 98%
rename from docs/graphql/manual/auth/authorization/modeling-roles.rst.wip
rename to docs/graphql/core/auth/authorization/modeling-roles.rst.wip
index 65a8a2d6ab9..516321e2046 100644
--- a/docs/graphql/manual/auth/authorization/modeling-roles.rst.wip
+++ b/docs/graphql/core/auth/authorization/modeling-roles.rst.wip
@@ -18,7 +18,7 @@ Roles can be typically be modeled in two ways:
 1. **Hierarchical roles**: Access scopes are nested depending on available roles. `Roles in Github for organisations <https://help.github.com/en/articles/managing-peoples-access-to-your-organization-with-roles>`_
    is a great example of such modelling where access scopes are inherited by deeper roles:
 
-   .. thumbnail:: /img/graphql/manual/auth/github-org-hierarchical-roles.png
+   .. thumbnail:: /img/graphql/core/auth/github-org-hierarchical-roles.png
 
 2. **Flat roles**: Non-hierarchical roles with each role requiring an independent access scope to be defined.
 
diff --git a/docs/graphql/manual/auth/authorization/permission-rules.rst b/docs/graphql/core/auth/authorization/permission-rules.rst
similarity index 91%
rename from docs/graphql/manual/auth/authorization/permission-rules.rst
rename to docs/graphql/core/auth/authorization/permission-rules.rst
index 22c35d9c801..2c8403e5ac8 100644
--- a/docs/graphql/manual/auth/authorization/permission-rules.rst
+++ b/docs/graphql/core/auth/authorization/permission-rules.rst
@@ -18,7 +18,7 @@ Introduction
 Access control rules in Hasura are defined at a role, table and action (*insert, update, select, delete*)
 level granularity:
 
-.. thumbnail:: /img/graphql/manual/auth/permission-rule-granularity.png
+.. thumbnail:: /img/graphql/core/auth/permission-rule-granularity.png
    :alt: Access control rules in Hasura
 
 Requests to Hasura should contain the reserved session variable ``X-Hasura-Role`` to indicate the requesting
@@ -108,11 +108,11 @@ See the :ref:`API reference <MetadataOperator>` for a list of all supported colu
 types:
 
 
-.. thumbnail:: /img/graphql/manual/auth/operators-for-integer-types.png
+.. thumbnail:: /img/graphql/core/auth/operators-for-integer-types.png
    :width: 40%
    :alt: Column operators for integer types
 
-.. thumbnail:: /img/graphql/manual/auth/operators-for-text-types.png
+.. thumbnail:: /img/graphql/core/auth/operators-for-text-types.png
    :width: 40%
    :alt: Column operators for text types
 
@@ -122,19 +122,19 @@ Using boolean expressions
 The following is an example of a simple boolean expression to restrict access for ``select`` to rows where
 the value in the ``id`` column is greater than 10:
 
-.. thumbnail:: /img/graphql/manual/auth/simple-boolean-expression.png
+.. thumbnail:: /img/graphql/core/auth/simple-boolean-expression.png
    :alt: Using boolean expressions to build rules
 
 You can construct more complex boolean expressions using the ``_and``, ``_or`` and ``not`` operators:
 
-.. thumbnail:: /img/graphql/manual/auth/boolean-operators.png
+.. thumbnail:: /img/graphql/core/auth/boolean-operators.png
    :alt: Using more complex boolean expressions to build rules
 
 **For example**, using the ``_and`` operator, you can construct a rule to restrict access for ``select`` to rows where
 the value in the ``id`` column is greater than 10 **and** the value in the ``name`` column starts with "a"
 or "A":
 
-.. thumbnail:: /img/graphql/manual/auth/composite-boolean-expression.png
+.. thumbnail:: /img/graphql/core/auth/composite-boolean-expression.png
    :alt: Example of a rule with the _and operator
 
 Using session variables
@@ -148,7 +148,7 @@ to construct a rule to restrict access for ``select`` to rows in the ``articles`
 ``id`` column is equal to the value in the session variable (*assuming this variable is being used to indicate
 the author's ID*):
 
-.. thumbnail:: /img/graphql/manual/auth/session-variables-in-permissions-simple-example.png
+.. thumbnail:: /img/graphql/core/auth/session-variables-in-permissions-simple-example.png
    :alt: Using session variables to build rules
 
 .. _relationships-in-permissions:
@@ -164,7 +164,7 @@ called ``agent`` (*an author can have an agent*) and we want to allow users with
 the details of the authors who they manage in ``authors`` table. We can define the following permission rule
 that uses the aforementioned object relationship:
 
-.. thumbnail:: /img/graphql/manual/auth/nested-object-permission-simple-example.png
+.. thumbnail:: /img/graphql/core/auth/nested-object-permission-simple-example.png
    :alt: Using a nested object to build rules
 
 This permission rule reads as "*if the author's agent's*  ``id``  *is the same as the requesting user's*
@@ -191,7 +191,7 @@ our table.
 column in the ``users`` table is set to ``true``. Let's assume the user's id is passed in the ``X-Hasura-User-ID``
 session variable.
 
-.. thumbnail:: /img/graphql/manual/auth/exists-permission-example.png
+.. thumbnail:: /img/graphql/core/auth/exists-permission-example.png
    :alt: Use an unrelated table to build rules
 
 This permission rule reads as "*if there exists a row in the table* ``users`` *whose*  ``id``  *is the same as the requesting user's*
@@ -204,7 +204,7 @@ Column-level permissions
 Column-level permissions determine access to columns in the rows that are accessible based on row-level
 permissions. These permissions are simple selections:
 
-.. thumbnail:: /img/graphql/manual/auth/column-level-permissions.png
+.. thumbnail:: /img/graphql/core/auth/column-level-permissions.png
    :alt: Column level permissions
 
 In this example, the role ``author`` has only partial access to columns of the accessible rows for
@@ -218,7 +218,7 @@ Row fetch limit
 In the case of ``select`` operations, the number of rows to be returned in the response can be limited
 using this configuration:
 
-.. thumbnail:: /img/graphql/manual/auth/limit-rows-for-select.png
+.. thumbnail:: /img/graphql/core/auth/limit-rows-for-select.png
    :alt: Row fetch limit
 
 In the above example, this configuration  restricts the number of accessible rows (*based on the rule*:
@@ -232,7 +232,7 @@ Aggregation queries permissions
 In the case of ``select`` operations, access to :ref:`aggregation queries <aggregation_queries>`
 can be restricted for a given role using this configuration.
 
-.. thumbnail:: /img/graphql/manual/auth/aggregation-query-permissions.png
+.. thumbnail:: /img/graphql/core/auth/aggregation-query-permissions.png
    :alt: Aggregation queries permissions
 
 In the above example, the role ``user`` is allowed to make aggregation queries.
diff --git a/docs/graphql/manual/auth/authorization/reference-permissions.rst.wip b/docs/graphql/core/auth/authorization/reference-permissions.rst.wip
similarity index 92%
rename from docs/graphql/manual/auth/authorization/reference-permissions.rst.wip
rename to docs/graphql/core/auth/authorization/reference-permissions.rst.wip
index f6d0eb985f4..91c7876d530 100644
--- a/docs/graphql/manual/auth/authorization/reference-permissions.rst.wip
+++ b/docs/graphql/core/auth/authorization/reference-permissions.rst.wip
@@ -13,7 +13,7 @@ How permissions work
 
 Access control rules in Hasura are defined at a role, table and action (*insert, update, select, delete*) level granulaity:
 
-.. thumbnail:: /img/graphql/manual/auth/permission-rule-granularity.png
+.. thumbnail:: /img/graphql/core/auth/permission-rule-granularity.png
 
 Requests to Hasura should contain the reserved session variable ``X-Hasura-Role`` to indicate the requesting user's role, and the table and action information is inferred from the request itself. This information is used to determine the right permission rule to be applied (*if one has been defined*) to the incoming request.
 
@@ -65,7 +65,7 @@ If you make this query as an admin in the Graphiql section of the console and cl
 
 Let's say you now define the following permission rule on the ``authors`` table (*as described in the example* :doc:`here <basics>`):
 
-.. thumbnail:: /img/graphql/manual/auth/permission-basics-simple-example.png
+.. thumbnail:: /img/graphql/core/auth/permission-basics-simple-example.png
 
 If you were to run the same query with the role ``user`` (``X-Hasura-Role`` = ``user``) and as a user with ``id`` = ``1`` (``X-Hasura-User-ID`` = ``1``) and hit the **Analyze** button, you will see the following generated SQL:
 
@@ -149,24 +149,24 @@ Type-based operators (*depending on the column type*) are available for construc
 E.g. the following two images illustrate the different operators available for ``integer`` and ``text`` types:
 
 
-.. thumbnail:: /img/graphql/manual/auth/operators-for-integer-types.png
+.. thumbnail:: /img/graphql/core/auth/operators-for-integer-types.png
 
-.. thumbnail:: /img/graphql/manual/auth/operators-for-text-types.png
+.. thumbnail:: /img/graphql/core/auth/operators-for-text-types.png
 
 **Using boolean expressions**
 #############################
 
 The following is an example of a simple boolean expression to restrict access for ``select`` to rows where the value in the ``id`` column is greater than 10:
 
-.. thumbnail:: /img/graphql/manual/auth/simple-boolean-expression.png
+.. thumbnail:: /img/graphql/core/auth/simple-boolean-expression.png
 
 You can construct more complex boolean expression using the ``_and``, ``_or`` and ``not`` operators:
 
-.. thumbnail:: /img/graphql/manual/auth/boolean-operators.png
+.. thumbnail:: /img/graphql/core/auth/boolean-operators.png
 
 E.g. using the ``_and`` operator, you can construct a rule to restrict access for ``select`` to rows where the value in the ``id`` column is greater than 10 **and** the value in the ``name`` column starts with "a" or "A":
 
-.. thumbnail:: /img/graphql/manual/auth/composite-boolean-expression.png
+.. thumbnail:: /img/graphql/core/auth/composite-boolean-expression.png
 
 .. Using roles
 .. ###########
@@ -179,7 +179,7 @@ Session variable, that have been resolved from authentication tokens by either y
 
 E.g. to allow an ``author`` to access only their articles, you can use the ``X-Hasura-User-ID`` session variable to construct a rule to restrict access for ``select`` to rows in the ``articles`` table where the value in the ``id`` column is equal to the value in the session variable (*assuming this variable is being used to indicate the author's ID*):
 
-.. thumbnail:: /img/graphql/manual/auth/session-variables-in-permissions-simple-example.png
+.. thumbnail:: /img/graphql/core/auth/session-variables-in-permissions-simple-example.png
 
 .. _relationships-in-permissions:
 
@@ -190,7 +190,7 @@ You can leverage :doc:`relationships <../../schema/relationships/index>` to defi
 
 For e.g. let's say you have an object relationship called ``agent`` from the ``authors`` table to another table called ``agent`` (*an author can have an agent*) and we want to allow users with the role ``agent`` to access the details of the authors who they manage in ``authors`` table. We can define the following permission rule that uses the aforementioned object relationship:
 
-.. thumbnail:: /img/graphql/manual/auth/nested-object-permission-simple-example.png
+.. thumbnail:: /img/graphql/core/auth/nested-object-permission-simple-example.png
 
 This permission rule reads as "*if the author's agent's*  ``id``  *is the same as the requesting user's* ``id`` *, allow access to the author's details*.
 
@@ -208,7 +208,7 @@ Column-level permissions
 ^^^^^^^^^^^^^^^^^^^^^^^^
 Column-level permissions determine access to columns in the rows that accessible based on row-level permissions. These permissions are simple selections: 
 
-.. thumbnail:: /img/graphql/manual/auth/column-level-permissions.png
+.. thumbnail:: /img/graphql/core/auth/column-level-permissions.png
 
 In this example, the role ``author`` has only partial access to columns of the accessible rows for the ``select`` operation.
 
@@ -219,7 +219,7 @@ Limiting number of rows
 
 In the case of ``select`` operations, the number of rows to be returned in the response can be limited using this configuration:
 
-.. thumbnail:: /img/graphql/manual/auth/limit-rows-for-select.png
+.. thumbnail:: /img/graphql/core/auth/limit-rows-for-select.png
 
 In the above example, this configuration  restricts the number of accessible rows (*based on the rule*: ``{"id":{"_eq":"X-Hasura-User-Id"}}``) to 20. 
 
@@ -230,7 +230,7 @@ Aggregation queries permissions
 
 In the case of ``select`` operations, access to :doc:`aggregation queries <../../queries/aggregation-queries>` can be restricted for a given role using this configuration.
 
-.. thumbnail:: /img/graphql/manual/auth/aggregation-query-permissions.png
+.. thumbnail:: /img/graphql/core/auth/aggregation-query-permissions.png
 
 In the above example, the role ``user`` is allowed to make aggregation queries.
 
diff --git a/docs/graphql/manual/auth/authorization/role-multiple-rules.rst b/docs/graphql/core/auth/authorization/role-multiple-rules.rst
similarity index 93%
rename from docs/graphql/manual/auth/authorization/role-multiple-rules.rst
rename to docs/graphql/core/auth/authorization/role-multiple-rules.rst
index 144b2799c63..65e3155d73f 100644
--- a/docs/graphql/manual/auth/authorization/role-multiple-rules.rst
+++ b/docs/graphql/core/auth/authorization/role-multiple-rules.rst
@@ -53,7 +53,7 @@ Step 2: Create a relationship
 For the table ``user_info``, :ref:`create a manual object relationship <create_manual_relationships>` called
 ``private_info`` using ``user_info : id -> user_private : user_id``:
 
-.. thumbnail:: /img/graphql/manual/auth/multiple-rules-create-manual-relationship.png
+.. thumbnail:: /img/graphql/core/auth/multiple-rules-create-manual-relationship.png
    :alt: Create a manual object relationship
 
 Step 3: Define permissions
@@ -63,13 +63,13 @@ For the role ``user``, create the following permissions for ``select``:
 
 - Table ``user_info``: allow access to ``id``, ``name`` and ``city`` without any row conditions.
 
-.. thumbnail:: /img/graphql/manual/auth/multiple-rules-define-public-permissions.png
+.. thumbnail:: /img/graphql/core/auth/multiple-rules-define-public-permissions.png
    :alt: Column access for the role user
 
 - View ``user_private``: allow access to ``id``, ``phone``, ``email`` and ``address`` if the ``user-id``
   passed in the session variable is equal to the row's ``user_id``.
 
-.. thumbnail:: /img/graphql/manual/auth/multiple-rules-define-private-permissions.png
+.. thumbnail:: /img/graphql/core/auth/multiple-rules-define-private-permissions.png
    :alt: Column access for the role user based on row level permissions
 
 Step 4: Query with appropriate access control
diff --git a/docs/graphql/manual/auth/authorization/roles-variables.rst b/docs/graphql/core/auth/authorization/roles-variables.rst
similarity index 99%
rename from docs/graphql/manual/auth/authorization/roles-variables.rst
rename to docs/graphql/core/auth/authorization/roles-variables.rst
index 8cc308bbe78..33c7d4bd737 100644
--- a/docs/graphql/manual/auth/authorization/roles-variables.rst
+++ b/docs/graphql/core/auth/authorization/roles-variables.rst
@@ -107,7 +107,7 @@ Roles are typically modelled in two ways:
 1. **Hierarchical roles**: Access scopes are nested depending on available roles. `Roles in Github for organisations <https://help.github.com/en/articles/managing-peoples-access-to-your-organization-with-roles>`_
    is a great example of such modelling where access scopes are inherited by deeper roles:
 
-   .. thumbnail:: /img/graphql/manual/auth/github-org-hierarchical-roles.png
+   .. thumbnail:: /img/graphql/core/auth/github-org-hierarchical-roles.png
       :alt: Hierarchical roles
 
 2. **Flat roles**: Non-hierarchical roles with each role requiring an independent access scope to be defined.
diff --git a/docs/graphql/manual/auth/authorization/use-cases.rst.wip b/docs/graphql/core/auth/authorization/use-cases.rst.wip
similarity index 89%
rename from docs/graphql/manual/auth/authorization/use-cases.rst.wip
rename to docs/graphql/core/auth/authorization/use-cases.rst.wip
index d60149f6412..beb02c744d4 100644
--- a/docs/graphql/manual/auth/authorization/use-cases.rst.wip
+++ b/docs/graphql/core/auth/authorization/use-cases.rst.wip
@@ -18,7 +18,7 @@ Head to the ``Permissions`` tab of the ``author`` table.
 
 Now add a ``select`` access control rule for the ``user`` role on the ``author`` table:
 
-.. thumbnail:: /img/graphql/manual/auth/author-select-perms.png
+.. thumbnail:: /img/graphql/core/auth/author-select-perms.png
 
 This rule reads as:
 
@@ -44,7 +44,7 @@ This rule reads as:
 Now, let's make the same query as above but also include two dynamic authorization variables ``X-Hasura-Role`` and
 ``X-Hasura-User-Id`` via request headers. These will automatically get used according to the permission rule we set up.
 
-.. thumbnail:: /img/graphql/manual/auth/query-with-perms.png
+.. thumbnail:: /img/graphql/core/auth/query-with-perms.png
 
 You can notice above how the same query now only includes the right slice of data.
 
@@ -83,7 +83,7 @@ We can restrict the columns of a table that a particular role has access to.
 
 Head to the ``Permissions`` tab of the table and edit the ``Select`` permissions for the role:
 
-.. thumbnail:: /img/graphql/manual/auth/restrict-columns.png
+.. thumbnail:: /img/graphql/core/auth/restrict-columns.png
 
 .. _limit_rows:
 
@@ -94,7 +94,7 @@ We can set a hard limit on the maximum number of rows that will be returned in a
 
 Head to the ``Permissions`` tab of the table and edit the ``Select`` permissions for the role:
 
-.. thumbnail:: /img/graphql/manual/auth/limit-results.png
+.. thumbnail:: /img/graphql/core/auth/limit-results.png
 
 
 .. _using-relationships-in-permissions:
@@ -105,16 +105,16 @@ You can leverage relationships to define permission rules with fields from a nes
 
 * An author/articles schema where an article can have one or more reviewers i.e. users with the role ``reviewer`` can only edit those articles that have been assigned to them:
 
-.. thumbnail:: /img/graphql/manual/auth/schema-for-nested-object-based-permissions.png
+.. thumbnail:: /img/graphql/core/auth/schema-for-nested-object-based-permissions.png
 
 * The foreign key constraint from ``reviewers`` :: ``article_id``  →  ``articles`` :: ``id`` is used for an array relationship called  ``reviewers`` in the ``articles`` table:
 
-.. thumbnail:: /img/graphql/manual/auth/array-relationship-reviewers.png
+.. thumbnail:: /img/graphql/core/auth/array-relationship-reviewers.png
    :class: no-shadow
 
 We can use this relationship in a permission rule for the ``articles`` table  to limit access for users with the role ``reviewer`` to only assigned rows:
 
-.. thumbnail:: /img/graphql/manual/auth/nested-object-permissions-rule.gif
+.. thumbnail:: /img/graphql/core/auth/nested-object-permissions-rule.gif
 
 Via the relationship, we are using the ``reviewer_id`` field of the nested object ``reviewers`` in the the above permission rule that reads as "Allow updating an article if the **reviewer_id of any of the reviewers assigned to this article** is the same as the requesting user's id (*which is sent in the resolved session variable* ``X-Hasura-User-ID``)".
 
@@ -144,12 +144,12 @@ Let's say we have the following test data for the list of reviewers:
 
 Applying the above permission rule for "update" to "select" operation also, let's query the  ``articles`` table to watch this permission rule in action:
 
-.. thumbnail:: /img/graphql/manual/auth/restricted-data-for-role-reviewer.png
+.. thumbnail:: /img/graphql/core/auth/restricted-data-for-role-reviewer.png
   :class: no-shadow
 
 As we've made this query with the role ``reviewer`` and user ID ``5`` (*highlighted in the request headers in the above image*), we can only query those articles for which this user is a reviewer. This will be the case for update mutations too. As the user with id ``5`` does not have access to article with id ``2`` (*refer to the table above*), the following mutation will not update any rows of the ``articles`` table:
 
-.. thumbnail:: /img/graphql/manual/auth/unsuccessful-mutation-for-role-reviewer.png
+.. thumbnail:: /img/graphql/core/auth/unsuccessful-mutation-for-role-reviewer.png
   :class: no-shadow
    
 .. admonition:: Array and Object relationships work similarly
diff --git a/docs/graphql/manual/auth/config.rst.wip b/docs/graphql/core/auth/config.rst.wip
similarity index 100%
rename from docs/graphql/manual/auth/config.rst.wip
rename to docs/graphql/core/auth/config.rst.wip
diff --git a/docs/graphql/manual/auth/index.rst b/docs/graphql/core/auth/index.rst
similarity index 96%
rename from docs/graphql/manual/auth/index.rst
rename to docs/graphql/core/auth/index.rst
index b1b16f130a4..f0497d9101a 100644
--- a/docs/graphql/manual/auth/index.rst
+++ b/docs/graphql/core/auth/index.rst
@@ -15,7 +15,7 @@ Authentication & Authorization
 In Hasura, access control or authorization is based on **roles**. Let's take a look at how this works
 when the GraphQL engine receives a request:
 
-.. thumbnail:: /img/graphql/manual/auth/auth-high-level-overview.png
+.. thumbnail:: /img/graphql/core/auth/auth-high-level-overview.png
    :alt: Authentication and authorization with Hasura
 
 As you can see from this:
diff --git a/docs/graphql/manual/business-logic/index.rst.wip b/docs/graphql/core/business-logic/index.rst.wip
similarity index 95%
rename from docs/graphql/manual/business-logic/index.rst.wip
rename to docs/graphql/core/business-logic/index.rst.wip
index bbb9bcc7f17..d5e2aaef935 100644
--- a/docs/graphql/manual/business-logic/index.rst.wip
+++ b/docs/graphql/core/business-logic/index.rst.wip
@@ -15,7 +15,7 @@ GraphQL engine/Postgres, different avenues are recommended for introducing such
 - **Post-CRUD**: :ref:`event-triggers`
 - :ref:`derived-data`
 
-.. thumbnail:: /img/graphql/manual/business-logic/custom-business-logic.png
+.. thumbnail:: /img/graphql/core/business-logic/custom-business-logic.png
 
 .. _remote-schemas:
 
@@ -35,7 +35,7 @@ To support these kinds of business logic, a custom GraphQL schema with resolvers
 logic is needed (*see link below for boilerplates*). This remote schema can then be merged with GraphQL engine's
 schema using the console. Here's a reference architecture diagram for such a setup:
 
-.. thumbnail:: /img/graphql/manual/schema/schema-stitching-v1-arch-diagram.png
+.. thumbnail:: /img/graphql/core/schema/schema-stitching-v1-arch-diagram.png
 
 For more details, links to boilerplates for custom GraphQL servers, etc. please head to :doc:`../remote-schemas/index`.
 
@@ -56,7 +56,7 @@ If your business logic is stateful, it can even store its state back in the Post
 with GraphQL engine, allowing your frontend app to offer a reactive user experience, where the app uses GraphQL
 subscriptions to listen to updates from your webhook via Postgres.
 
-.. thumbnail:: /img/graphql/manual/event-triggers/database-event-triggers.png
+.. thumbnail:: /img/graphql/core/event-triggers/database-event-triggers.png
 
 Event triggers are ideal for use cases such as the following:
 
diff --git a/docs/graphql/manual/deployment/allow-list.rst b/docs/graphql/core/deployment/allow-list.rst
similarity index 96%
rename from docs/graphql/manual/deployment/allow-list.rst
rename to docs/graphql/core/deployment/allow-list.rst
index be404a721b9..8a39220cc75 100644
--- a/docs/graphql/manual/deployment/allow-list.rst
+++ b/docs/graphql/core/deployment/allow-list.rst
@@ -12,6 +12,9 @@ Allow-list of operations
   :depth: 1
   :local:
 
+Introduction
+------------
+
 The **Allow-list** is a list of safe operations (*GraphQL queries, mutations or subscriptions*) that is stored by
 the GraphQL engine in its metadata. When enabled, it can be used to restrict the GraphQL engine so that it
 executes **only** those operations that are present in the list *(available after version v1.0.0-beta.1)*.
@@ -42,7 +45,7 @@ You can add or remove a operation in the allow-list in two ways:
     to add multiple operations to the allow-list (each operation needs to have a name).
 
 * **Using metadata APIs:** Queries can be stored in collections and a collection can be added to or removed
-  from the allow-list. See :ref:`Collections & Allow-list APIs<api_query_collections>`
+  from the allow-list. See :ref:`Collections & Allow-list APIs <api_query_collections>`
   for API reference.
 
 .. note::
diff --git a/docs/graphql/manual/deployment/compression.rst b/docs/graphql/core/deployment/compression.rst
similarity index 100%
rename from docs/graphql/manual/deployment/compression.rst
rename to docs/graphql/core/deployment/compression.rst
diff --git a/docs/graphql/manual/deployment/custom-docker-images.rst b/docs/graphql/core/deployment/custom-docker-images.rst
similarity index 100%
rename from docs/graphql/manual/deployment/custom-docker-images.rst
rename to docs/graphql/core/deployment/custom-docker-images.rst
diff --git a/docs/graphql/manual/deployment/deployment-guides/azure-container-instances-postgres.rst b/docs/graphql/core/deployment/deployment-guides/azure-container-instances-postgres.rst
similarity index 100%
rename from docs/graphql/manual/deployment/deployment-guides/azure-container-instances-postgres.rst
rename to docs/graphql/core/deployment/deployment-guides/azure-container-instances-postgres.rst
diff --git a/docs/graphql/manual/deployment/deployment-guides/digital-ocean-one-click.rst b/docs/graphql/core/deployment/deployment-guides/digital-ocean-one-click.rst
similarity index 100%
rename from docs/graphql/manual/deployment/deployment-guides/digital-ocean-one-click.rst
rename to docs/graphql/core/deployment/deployment-guides/digital-ocean-one-click.rst
diff --git a/docs/graphql/manual/deployment/deployment-guides/docker.rst b/docs/graphql/core/deployment/deployment-guides/docker.rst
similarity index 100%
rename from docs/graphql/manual/deployment/deployment-guides/docker.rst
rename to docs/graphql/core/deployment/deployment-guides/docker.rst
diff --git a/docs/graphql/manual/deployment/deployment-guides/google-kubernetes-engine-cloud-sql.rst b/docs/graphql/core/deployment/deployment-guides/google-kubernetes-engine-cloud-sql.rst
similarity index 100%
rename from docs/graphql/manual/deployment/deployment-guides/google-kubernetes-engine-cloud-sql.rst
rename to docs/graphql/core/deployment/deployment-guides/google-kubernetes-engine-cloud-sql.rst
diff --git a/docs/graphql/manual/deployment/deployment-guides/heroku.rst b/docs/graphql/core/deployment/deployment-guides/heroku.rst
similarity index 96%
rename from docs/graphql/manual/deployment/deployment-guides/heroku.rst
rename to docs/graphql/core/deployment/deployment-guides/heroku.rst
index 128f5312161..08b6d22cfdd 100644
--- a/docs/graphql/manual/deployment/deployment-guides/heroku.rst
+++ b/docs/graphql/core/deployment/deployment-guides/heroku.rst
@@ -42,7 +42,7 @@ Click the below button to deploy Hasura on Heroku in a few seconds:
    If you don't have an account on Heroku, you need to sign up on Heroku. You won't need a credit card, and once you
    sign up you'll be redirected to your Heroku app creation page automatically.
 
-.. thumbnail:: /img/graphql/manual/guides/heroku-app.png
+.. thumbnail:: /img/graphql/core/guides/heroku-app.png
    :alt: Deploy to Heroku 
 
 Heroku's free Postgres add-on is automatically provisioned.
@@ -143,7 +143,7 @@ Step 2: Remove the created Postgres add-on in the app
 
 Head to your Heroku dashboard and delete the Postgres add-on created in the previous step:
 
-.. thumbnail:: /img/graphql/manual/deployment/remove-heroku-postgres-addon.png
+.. thumbnail:: /img/graphql/core/deployment/remove-heroku-postgres-addon.png
    :alt: Delete the Postgres add-on
 
 Step 3: Configure environment variables
@@ -152,7 +152,7 @@ Step 3: Configure environment variables
 Now configure the ``DATABASE_URL`` with your existing Heroku Postgres database URL and a ``HASURA_GRAPHQL_ADMIN_SECRET``
 if you want to :ref:`secure your endpoint <heroku_secure>`.
 
-.. thumbnail:: /img/graphql/manual/deployment/heroku-database-url-access.png
+.. thumbnail:: /img/graphql/core/deployment/heroku-database-url-access.png
    :alt: Configure environment variables
 
 .. note::
@@ -221,13 +221,13 @@ Add an admin secret
 
 Head to the config-vars URL on your Heroku dashboard and set the ``HASURA_GRAPHQL_ADMIN_SECRET`` environment variable.
 
-.. thumbnail:: /img/graphql/manual/deployment/secure-heroku.png
+.. thumbnail:: /img/graphql/core/deployment/secure-heroku.png
    :alt: Add an admin secret
 
 Setting this environment variable will automatically restart the dyno. Now when you access your console, you'll be
 prompted for the admin secret key.
 
-.. thumbnail:: /img/graphql/manual/deployment/access-key-console.png
+.. thumbnail:: /img/graphql/core/deployment/access-key-console.png
    :alt: Prompt for the admin secret
 
 .. note::
diff --git a/docs/graphql/manual/deployment/deployment-guides/index.rst b/docs/graphql/core/deployment/deployment-guides/index.rst
similarity index 87%
rename from docs/graphql/manual/deployment/deployment-guides/index.rst
rename to docs/graphql/core/deployment/deployment-guides/index.rst
index a6e1a8a1ea3..75bdd290a50 100644
--- a/docs/graphql/manual/deployment/deployment-guides/index.rst
+++ b/docs/graphql/core/deployment/deployment-guides/index.rst
@@ -26,7 +26,7 @@ One-click deployment options
 
 If you want to take Hasura for a spin and check out the features, the following one-click deployments will be useful for you:
 
-- `Deploy using Hasura Cloud <https://hasura.io/docs/cloud/1.0/manual/getting-started/index.html>`__ (**recommended**)
+- :ref:`Deploy using Hasura Cloud <cloud_getting_started>` (**recommended**)
 - :ref:`Deploy using Heroku <heroku_one_click>`
 - :ref:`Deploy using Render One-click Deploy with Managed PostgreSQL <deploy_render>`
 - :ref:`Deploy using Nhost One-click Deploy with Managed PostgreSQL, Storage, and Auth <deploy_nhost>`
@@ -38,7 +38,7 @@ Deployment guides
 
 Choose from the full list of deployment guides:
 
-- `Deploy using Hasura Cloud <https://hasura.io/docs/cloud/1.0/manual/getting-started/index.html>`__ (**recommended**)
+- :ref:`Deploy using Hasura Cloud <cloud_getting_started>` (**recommended**)
 - :ref:`Deploy using Docker <deployment_docker>`
 - :ref:`Deploy using Kubernetes <deploy_kubernetes>`
 - :ref:`Deploy using Heroku <deploy_heroku>`
@@ -58,7 +58,7 @@ Choose from the full list of deployment guides:
    :titlesonly:
    :hidden:
 
-   Using Hasura Cloud <https://hasura.io/docs/cloud/1.0/manual/getting-started/index.html>
+   Using Hasura Cloud <https://hasura.io/docs/1.0/graphql/cloud/getting-started/index.html>
    Using Docker <docker>
    Using Kubernetes <kubernetes>
    Using Heroku (one-click) <heroku>
diff --git a/docs/graphql/manual/deployment/deployment-guides/kubernetes.rst b/docs/graphql/core/deployment/deployment-guides/kubernetes.rst
similarity index 100%
rename from docs/graphql/manual/deployment/deployment-guides/kubernetes.rst
rename to docs/graphql/core/deployment/deployment-guides/kubernetes.rst
diff --git a/docs/graphql/manual/deployment/deployment-guides/nhost-one-click.rst b/docs/graphql/core/deployment/deployment-guides/nhost-one-click.rst
similarity index 100%
rename from docs/graphql/manual/deployment/deployment-guides/nhost-one-click.rst
rename to docs/graphql/core/deployment/deployment-guides/nhost-one-click.rst
diff --git a/docs/graphql/manual/deployment/deployment-guides/render-one-click.rst b/docs/graphql/core/deployment/deployment-guides/render-one-click.rst
similarity index 92%
rename from docs/graphql/manual/deployment/deployment-guides/render-one-click.rst
rename to docs/graphql/core/deployment/deployment-guides/render-one-click.rst
index 4d4f7e98652..69511737dfb 100644
--- a/docs/graphql/manual/deployment/deployment-guides/render-one-click.rst
+++ b/docs/graphql/core/deployment/deployment-guides/render-one-click.rst
@@ -34,7 +34,7 @@ new managed PostgreSQL database wired up to your Hasura instance.
 
 You will see the Hasura web service and PostgreSQL instance to be created:
 
-.. thumbnail:: /img/graphql/manual/deployment/deploy-to-render-hasura-iac.png
+.. thumbnail:: /img/graphql/core/deployment/deploy-to-render-hasura-iac.png
    :alt: Deploy To Render Hasura Page
 
 That's it! Read on to configure your Hasura instance.
@@ -44,7 +44,7 @@ Access your Hasura Console
 
 Once **Deploy to Render** succeeds, you can click through to your Hasura service page on Render's dashboard.
 
-.. thumbnail:: /img/graphql/manual/deployment/deploy-to-render-hasura-header.png
+.. thumbnail:: /img/graphql/core/deployment/deploy-to-render-hasura-header.png
    :alt: Render Hasura Header
 
 You can monitor the deployment of the Hasura web service from the **Logs** tab. Once the service is up, use the link on the service page to access your Hasura console:
diff --git a/docs/graphql/manual/deployment/downgrading.rst b/docs/graphql/core/deployment/downgrading.rst
similarity index 100%
rename from docs/graphql/manual/deployment/downgrading.rst
rename to docs/graphql/core/deployment/downgrading.rst
diff --git a/docs/graphql/manual/deployment/enable-https.rst b/docs/graphql/core/deployment/enable-https.rst
similarity index 100%
rename from docs/graphql/manual/deployment/enable-https.rst
rename to docs/graphql/core/deployment/enable-https.rst
diff --git a/docs/graphql/manual/deployment/graphql-engine-flags/config-examples.rst b/docs/graphql/core/deployment/graphql-engine-flags/config-examples.rst
similarity index 99%
rename from docs/graphql/manual/deployment/graphql-engine-flags/config-examples.rst
rename to docs/graphql/core/deployment/graphql-engine-flags/config-examples.rst
index 2d0048fc690..ecc48777ed6 100644
--- a/docs/graphql/manual/deployment/graphql-engine-flags/config-examples.rst
+++ b/docs/graphql/core/deployment/graphql-engine-flags/config-examples.rst
@@ -12,6 +12,9 @@ GraphQL engine server config examples
   :depth: 1
   :local:
 
+Introduction
+------------
+
 The following are a few configuration use cases:
 
 .. _add-admin-secret:
diff --git a/docs/graphql/manual/deployment/graphql-engine-flags/index.rst b/docs/graphql/core/deployment/graphql-engine-flags/index.rst
similarity index 96%
rename from docs/graphql/manual/deployment/graphql-engine-flags/index.rst
rename to docs/graphql/core/deployment/graphql-engine-flags/index.rst
index 611b8c3c9d5..250e31138b3 100644
--- a/docs/graphql/manual/deployment/graphql-engine-flags/index.rst
+++ b/docs/graphql/core/deployment/graphql-engine-flags/index.rst
@@ -12,6 +12,9 @@ GraphQL engine server configuration
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Hasura supports various flags and options for customising how you are running the GraphQL engine in your environment.
 
 Server flags
diff --git a/docs/graphql/manual/deployment/graphql-engine-flags/reference.rst b/docs/graphql/core/deployment/graphql-engine-flags/reference.rst
similarity index 99%
rename from docs/graphql/manual/deployment/graphql-engine-flags/reference.rst
rename to docs/graphql/core/deployment/graphql-engine-flags/reference.rst
index e803dcc52b9..69c0e821275 100644
--- a/docs/graphql/manual/deployment/graphql-engine-flags/reference.rst
+++ b/docs/graphql/core/deployment/graphql-engine-flags/reference.rst
@@ -12,6 +12,9 @@ GraphQL engine server flags reference
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Every GraphQL engine command is structured as:
 
 .. code-block:: bash
@@ -21,7 +24,7 @@ Every GraphQL engine command is structured as:
 The flags can be passed as ENV variables as well.
 
 Server flags
-^^^^^^^^^^^^
+------------
 
 For the ``graphql-engine`` command these are the available flags and ENV variables:
 
@@ -67,7 +70,7 @@ Or you can specify the following options *(only via flags)*:
 .. _command-flags:
 
 Command flags
-^^^^^^^^^^^^^
+-------------
 
 For the ``serve`` sub-command these are the available flags and ENV variables:
 
diff --git a/docs/graphql/manual/deployment/index.rst b/docs/graphql/core/deployment/index.rst
similarity index 100%
rename from docs/graphql/manual/deployment/index.rst
rename to docs/graphql/core/deployment/index.rst
diff --git a/docs/graphql/manual/deployment/logging.rst b/docs/graphql/core/deployment/logging.rst
similarity index 100%
rename from docs/graphql/manual/deployment/logging.rst
rename to docs/graphql/core/deployment/logging.rst
diff --git a/docs/graphql/manual/deployment/postgres-requirements.rst b/docs/graphql/core/deployment/postgres-requirements.rst
similarity index 100%
rename from docs/graphql/manual/deployment/postgres-requirements.rst
rename to docs/graphql/core/deployment/postgres-requirements.rst
diff --git a/docs/graphql/manual/deployment/production-checklist.rst b/docs/graphql/core/deployment/production-checklist.rst
similarity index 98%
rename from docs/graphql/manual/deployment/production-checklist.rst
rename to docs/graphql/core/deployment/production-checklist.rst
index 6f696976c0a..daabd5f67ca 100644
--- a/docs/graphql/manual/deployment/production-checklist.rst
+++ b/docs/graphql/core/deployment/production-checklist.rst
@@ -12,6 +12,9 @@ Production checklist
   :depth: 1
   :local:
 
+Introduction
+------------
+
 This guide is a checklist for configuring and securing GraphQL engine for a
 production deployment.
 
@@ -46,7 +49,7 @@ Review the authorization/permission rules set on tables. You can make use of the
 permissions set across all tables and roles. Pay extra attention to roles like
 "anonymous" which allow unauthenticated access.
 
-.. thumbnail:: /img/graphql/manual/deployment/schema_permissions_summary.png
+.. thumbnail:: /img/graphql/core/deployment/schema_permissions_summary.png
    :alt: Hasura console - Schema permissions summary
    :width: 75%
 
diff --git a/docs/graphql/manual/deployment/securing-graphql-endpoint.rst b/docs/graphql/core/deployment/securing-graphql-endpoint.rst
similarity index 91%
rename from docs/graphql/manual/deployment/securing-graphql-endpoint.rst
rename to docs/graphql/core/deployment/securing-graphql-endpoint.rst
index afc9444bc7b..07df5016bf1 100644
--- a/docs/graphql/manual/deployment/securing-graphql-endpoint.rst
+++ b/docs/graphql/core/deployment/securing-graphql-endpoint.rst
@@ -18,7 +18,7 @@ configure an admin secret key.
 Depending on your deployment method, follow one of these guides to configure an admin secret key, and prevent public
 access to your GraphQL endpoint and the Hasura console:
 
-- `For Hasura Cloud <https://hasura.io/docs/cloud/1.0/manual/projects/secure.html>`__
+- :ref:`For Hasura Cloud <secure_project>`
 - :ref:`For Heroku <heroku_secure>`
 - :ref:`For Docker <docker_secure>`
 - :ref:`For Kubernetes <kubernetes_secure>`
diff --git a/docs/graphql/manual/deployment/updating-graphql-engine.rst b/docs/graphql/core/deployment/updating-graphql-engine.rst
similarity index 100%
rename from docs/graphql/manual/deployment/updating-graphql-engine.rst
rename to docs/graphql/core/deployment/updating-graphql-engine.rst
diff --git a/docs/graphql/manual/event-triggers/clean-up.rst b/docs/graphql/core/event-triggers/clean-up.rst
similarity index 98%
rename from docs/graphql/manual/event-triggers/clean-up.rst
rename to docs/graphql/core/event-triggers/clean-up.rst
index 85378a2e980..0ad4541d67a 100644
--- a/docs/graphql/manual/event-triggers/clean-up.rst
+++ b/docs/graphql/core/event-triggers/clean-up.rst
@@ -11,6 +11,8 @@ Clean up event data
   :depth: 1
   :local:
 
+Introduction
+------------
 
 Hasura stores event data associated with Event Triggers in the metadata schema. If there are lots of events, the metadata tables can get huge and you may want to prune them. You can use any of the following options to prune your event data depending on your need.
 
diff --git a/docs/graphql/manual/event-triggers/create-trigger.rst b/docs/graphql/core/event-triggers/create-trigger.rst
similarity index 93%
rename from docs/graphql/manual/event-triggers/create-trigger.rst
rename to docs/graphql/core/event-triggers/create-trigger.rst
index 29aa4d79617..7b561f1f4d5 100644
--- a/docs/graphql/manual/event-triggers/create-trigger.rst
+++ b/docs/graphql/core/event-triggers/create-trigger.rst
@@ -12,12 +12,15 @@ Creating an event trigger
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Event triggers can be created using the Hasura console or metadata APIs.
 
 Open the Hasura console, head to the ``Events`` tab and click on the ``Create`` button to open the
 page below:
 
-.. thumbnail:: /img/graphql/manual/event-triggers/create-event-trigger.png
+.. thumbnail:: /img/graphql/core/event-triggers/create-event-trigger.png
    :alt: Create an event trigger
 
 Parameters
@@ -49,7 +52,7 @@ before using it for this configuration*).
 Advanced Settings
 -----------------
 
-.. thumbnail:: /img/graphql/manual/event-triggers/create-event-trigger-advanced-settings.png
+.. thumbnail:: /img/graphql/core/event-triggers/create-event-trigger-advanced-settings.png
    :alt: Advanced settings for event triggers
 
 Listen columns for update
diff --git a/docs/graphql/manual/event-triggers/index.rst b/docs/graphql/core/event-triggers/index.rst
similarity index 93%
rename from docs/graphql/manual/event-triggers/index.rst
rename to docs/graphql/core/event-triggers/index.rst
index 338d8848dd8..15036fc77ef 100644
--- a/docs/graphql/manual/event-triggers/index.rst
+++ b/docs/graphql/core/event-triggers/index.rst
@@ -18,7 +18,7 @@ Introduction
 Hasura can be used to create event triggers on tables in the Postgres database. Event triggers reliably capture
 events on specified tables and invoke webhooks to carry out any custom logic.
 
-.. thumbnail:: /img/graphql/manual/event-triggers/data-triggers-arch.png
+.. thumbnail:: /img/graphql/core/event-triggers/data-triggers-arch.png
    :class: no-shadow
    :width: 900px
    :alt: Hasura event trigger architecture
diff --git a/docs/graphql/manual/event-triggers/invoke-trigger-console.rst b/docs/graphql/core/event-triggers/invoke-trigger-console.rst
similarity index 87%
rename from docs/graphql/manual/event-triggers/invoke-trigger-console.rst
rename to docs/graphql/core/event-triggers/invoke-trigger-console.rst
index 0d371e70827..3c352e5ac20 100644
--- a/docs/graphql/manual/event-triggers/invoke-trigger-console.rst
+++ b/docs/graphql/core/event-triggers/invoke-trigger-console.rst
@@ -19,12 +19,12 @@ In the ``Data -> [table-name] -> Browse Rows`` tab, clicking the ``invoke trigge
 you invoke "manual event triggers" configured on the table with that row as payload *(the button will be shown
 only if you have any triggers configured)*:
 
-.. thumbnail:: /img/graphql/manual/event-triggers/select-manual-trigger.png
+.. thumbnail:: /img/graphql/core/event-triggers/select-manual-trigger.png
    :alt: Invoke event trigger on console
 
 Click on the event trigger you want to run and a modal will pop up with the request and response.
 
-.. thumbnail:: /img/graphql/manual/event-triggers/run-manual-trigger.png
+.. thumbnail:: /img/graphql/core/event-triggers/run-manual-trigger.png
    :alt: Request and response of event trigger
 
 .. note::
diff --git a/docs/graphql/manual/event-triggers/payload.rst b/docs/graphql/core/event-triggers/payload.rst
similarity index 99%
rename from docs/graphql/manual/event-triggers/payload.rst
rename to docs/graphql/core/event-triggers/payload.rst
index b8f3ac8a4ac..a9b6e524965 100644
--- a/docs/graphql/manual/event-triggers/payload.rst
+++ b/docs/graphql/core/event-triggers/payload.rst
@@ -12,10 +12,14 @@ Event trigger payload
   :depth: 1
   :local:
 
+Introduction
+------------
+
 The following is the payload and delivery mechanism of an event to the webhook when an event trigger is invoked.
 
 HTTP request method
 -------------------
+
 Delivered over ``HTTP POST`` with the following headers:
 
 .. code-block:: none
diff --git a/docs/graphql/manual/event-triggers/samples.rst b/docs/graphql/core/event-triggers/samples.rst
similarity index 100%
rename from docs/graphql/manual/event-triggers/samples.rst
rename to docs/graphql/core/event-triggers/samples.rst
diff --git a/docs/graphql/manual/event-triggers/serverless.rst b/docs/graphql/core/event-triggers/serverless.rst
similarity index 99%
rename from docs/graphql/manual/event-triggers/serverless.rst
rename to docs/graphql/core/event-triggers/serverless.rst
index a7fba6a82f6..0628d2d9f5b 100644
--- a/docs/graphql/manual/event-triggers/serverless.rst
+++ b/docs/graphql/core/event-triggers/serverless.rst
@@ -12,6 +12,9 @@ Using serverless functions
   :depth: 1
   :local:
 
+Introduction
+------------
+
 You can use serverless functions along with event triggers to design an async business workflow without
 having to manage any dedicated infrastructure.
 
diff --git a/docs/graphql/manual/faq/index.rst.wip b/docs/graphql/core/faq/index.rst.wip
similarity index 100%
rename from docs/graphql/manual/faq/index.rst.wip
rename to docs/graphql/core/faq/index.rst.wip
diff --git a/docs/graphql/manual/getting-started/docker-simple.rst b/docs/graphql/core/getting-started/docker-simple.rst
similarity index 100%
rename from docs/graphql/manual/getting-started/docker-simple.rst
rename to docs/graphql/core/getting-started/docker-simple.rst
diff --git a/docs/graphql/manual/getting-started/first-event-trigger.rst b/docs/graphql/core/getting-started/first-event-trigger.rst
similarity index 87%
rename from docs/graphql/manual/getting-started/first-event-trigger.rst
rename to docs/graphql/core/getting-started/first-event-trigger.rst
index 9c2c198d5ba..ea822560944 100644
--- a/docs/graphql/manual/getting-started/first-event-trigger.rst
+++ b/docs/graphql/core/getting-started/first-event-trigger.rst
@@ -12,12 +12,16 @@ Setting up your first event trigger
   :depth: 1
   :local:
 
+Introduction
+------------
+
 You can use Hasura to setup event triggers that call configured webhooks whenever specific database events occur.
 
 Let's create a sample event trigger with https://httpbin.org as our simple webhook.
 
 Create a table
 --------------
+
 Head to the Hasura console, navigate to ``Data -> Create table`` and create a sample table called ``profile`` with
 the following columns:
 
@@ -28,11 +32,12 @@ the following columns:
     name TEXT
   )
 
-.. thumbnail:: /img/graphql/manual/getting-started/create-profile-table.png
+.. thumbnail:: /img/graphql/core/getting-started/create-profile-table.png
    :alt: Create a table
 
 Setup an event trigger
 ----------------------
+
 In the Hasura console, navigate to ``Events -> Create trigger`` and:
 
 1. Enter trigger name as ``echo``.
@@ -40,7 +45,7 @@ In the Hasura console, navigate to ``Events -> Create trigger`` and:
 3. Select operations: ``insert``, ``update`` and ``delete``.
 4. Enter webhook URL as: ``https://httpbin.org/post``.
 
-.. thumbnail:: /img/graphql/manual/getting-started/create-event-trigger.png
+.. thumbnail:: /img/graphql/core/getting-started/create-event-trigger.png
    :alt: Set up an event trigger
 
 This sets up our webhook ``https://httpbin.org/post`` to receive database changes on an insert, update and delete on
@@ -54,7 +59,7 @@ Watch the trigger in action
 2. Now navigate to the ``Events`` tab and click on the ``echo`` trigger in the left sidebar.
 3. Expand the details of an event to see the response from the webhook.
 
-.. thumbnail:: /img/graphql/manual/getting-started/trigger-events.png
+.. thumbnail:: /img/graphql/core/getting-started/trigger-events.png
    :alt: Trigger in action
 
 Next steps
diff --git a/docs/graphql/manual/getting-started/first-graphql-query.rst b/docs/graphql/core/getting-started/first-graphql-query.rst
similarity index 87%
rename from docs/graphql/manual/getting-started/first-graphql-query.rst
rename to docs/graphql/core/getting-started/first-graphql-query.rst
index e58e1506b01..e79919de707 100644
--- a/docs/graphql/manual/getting-started/first-graphql-query.rst
+++ b/docs/graphql/core/getting-started/first-graphql-query.rst
@@ -12,6 +12,9 @@ Making your first GraphQL query
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Let's create a sample table and query data from it using the Hasura console, a UI tool meant for doing exactly this:
 
 Create a table
@@ -27,7 +30,7 @@ the following columns:
     name TEXT
   )
 
-.. thumbnail:: /img/graphql/manual/getting-started/create-profile-table.png
+.. thumbnail:: /img/graphql/core/getting-started/create-profile-table.png
    :alt: Create a table
 
 Now, insert some sample data into the table using the ``Insert Row`` tab of the ``profile`` table.
@@ -48,7 +51,7 @@ Head to the ``GraphiQL`` tab in the console and try running the following query:
 
 You'll see that you get all the inserted data!
 
-.. thumbnail:: /img/graphql/manual/getting-started/profile-query.png
+.. thumbnail:: /img/graphql/core/getting-started/profile-query.png
    :alt: Try out a query
 
 Next steps
diff --git a/docs/graphql/manual/getting-started/index.rst b/docs/graphql/core/getting-started/index.rst
similarity index 77%
rename from docs/graphql/manual/getting-started/index.rst
rename to docs/graphql/core/getting-started/index.rst
index 88283305ac2..0322fa37132 100644
--- a/docs/graphql/manual/getting-started/index.rst
+++ b/docs/graphql/core/getting-started/index.rst
@@ -24,7 +24,7 @@ To use the Hasura GraphQL engine, you need to:
 Get started from scratch
 ------------------------
 
-- `Using Hasura Cloud <https://hasura.io/docs/cloud/1.0/manual/getting-started/index.html>`__ **(recommended)**: Create
+- :ref:`Using Hasura Cloud <cloud_getting_started>` **(recommended)**: Create
   a new Hasura Cloud project with just a few clicks.
 - :ref:`Using Docker <docker_simple>`: Run a **local development** setup that sets up both the Hasura GraphQL
   engine and Postgres using Docker Compose.
@@ -32,7 +32,7 @@ Get started from scratch
 Get started using an existing database
 --------------------------------------
 
-- `Using Hasura Cloud <https://hasura.io/docs/cloud/1.0/manual/getting-started/index.html>`__ **(recommended)**: Create a new Hasura Cloud project connected to an existing Postgres database.
+- :ref:`Using Hasura Cloud <cloud_getting_started>` **(recommended)**: Create a new Hasura Cloud project connected to an existing Postgres database.
 - :ref:`Using Docker <deployment_docker>`: Run as a docker container and connect to an existing Postgres
   database.
 - :ref:`Using Kubernetes <deploy_kubernetes>`: Run on Kubernetes and connect to an existing Postgres
@@ -47,7 +47,7 @@ Get started using an existing database
    :titlesonly:
    :hidden:
 
-   Hasura Cloud quickstart <https://hasura.io/docs/cloud/1.0/manual/getting-started/index.html>
+   Hasura Cloud quickstart <https://hasura.io/docs/1.0/graphql/cloud/getting-started/index.html>
    Docker quickstart <docker-simple>
    Using an existing database <using-existing-database>
    first-graphql-query
diff --git a/docs/graphql/manual/getting-started/using-existing-database.rst b/docs/graphql/core/getting-started/using-existing-database.rst
similarity index 80%
rename from docs/graphql/manual/getting-started/using-existing-database.rst
rename to docs/graphql/core/getting-started/using-existing-database.rst
index 6bfb2fb6b6c..1bef9138ea6 100644
--- a/docs/graphql/manual/getting-started/using-existing-database.rst
+++ b/docs/graphql/core/getting-started/using-existing-database.rst
@@ -14,7 +14,7 @@ Getting started with an existing database
 
 Follow one of these guides to set up Hasura GraphQL engine using an existing database:
 
-- `Using Hasura Cloud <https://hasura.io/docs/cloud/1.0/manual/projects/create.html>`__ **(recommended)**: Create a new Hasura Cloud project connected to an existing Postgres database
+- :ref:`Using Hasura Cloud <cloud_getting_started>` **(recommended)**: Create a new Hasura Cloud project connected to an existing Postgres database
 - :ref:`Using Docker <deployment_docker>`: Run as a docker container and connect to an existing Postgres
   database.
 - :ref:`Using Heroku <heroku_existing_db>`: Run on Heroku and connect to an existing
diff --git a/docs/graphql/manual/guides/auditing-tables.rst b/docs/graphql/core/guides/auditing-tables.rst
similarity index 100%
rename from docs/graphql/manual/guides/auditing-tables.rst
rename to docs/graphql/core/guides/auditing-tables.rst
diff --git a/docs/graphql/manual/guides/code-editor-integrations/index.rst b/docs/graphql/core/guides/code-editor-integrations/index.rst
similarity index 100%
rename from docs/graphql/manual/guides/code-editor-integrations/index.rst
rename to docs/graphql/core/guides/code-editor-integrations/index.rst
diff --git a/docs/graphql/manual/guides/code-editor-integrations/visual-studio-code.rst b/docs/graphql/core/guides/code-editor-integrations/visual-studio-code.rst
similarity index 100%
rename from docs/graphql/manual/guides/code-editor-integrations/visual-studio-code.rst
rename to docs/graphql/core/guides/code-editor-integrations/visual-studio-code.rst
diff --git a/docs/graphql/manual/guides/data-modelling/index.rst b/docs/graphql/core/guides/data-modelling/index.rst
similarity index 100%
rename from docs/graphql/manual/guides/data-modelling/index.rst
rename to docs/graphql/core/guides/data-modelling/index.rst
diff --git a/docs/graphql/manual/guides/data-modelling/soft-deletes.rst b/docs/graphql/core/guides/data-modelling/soft-deletes.rst
similarity index 91%
rename from docs/graphql/manual/guides/data-modelling/soft-deletes.rst
rename to docs/graphql/core/guides/data-modelling/soft-deletes.rst
index 65c4f2a1576..5b659d3c9b2 100644
--- a/docs/graphql/manual/guides/data-modelling/soft-deletes.rst
+++ b/docs/graphql/core/guides/data-modelling/soft-deletes.rst
@@ -24,7 +24,7 @@ there is a timestamp value present, the record should be treated as deleted.
 **For example:** Let's imagine that we have a simple Todo application, our ``todos`` table would resemble
 the following:
 
-.. thumbnail:: /img/graphql/manual/guides/soft-deletes-example-data.png
+.. thumbnail:: /img/graphql/core/guides/soft-deletes-example-data.png
    :alt: Todo table of a todo application
 
 In this example we only have two todos, one has ``deleted_at`` with a timestamp value and the other contains a
@@ -79,17 +79,17 @@ Here are some typical rules we should set:
 
 **Delete permissions** - remove all access
 
-.. thumbnail:: /img/graphql/manual/guides/soft-deletes-delete-perms.png
+.. thumbnail:: /img/graphql/core/guides/soft-deletes-delete-perms.png
    :alt: Delete permissions for role user
 
 **Insert permissions** - remove access for inserting into ``deleted_at`` column
 
-.. thumbnail:: /img/graphql/manual/guides/soft-deletes-insert-perms.png
+.. thumbnail:: /img/graphql/core/guides/soft-deletes-insert-perms.png
    :alt: Insert permissions for role user
 
 **Update permissions** - allow access for updating ``deleted_at`` column
 
-.. thumbnail:: /img/graphql/manual/guides/soft-deletes-update-perms.png
+.. thumbnail:: /img/graphql/core/guides/soft-deletes-update-perms.png
    :alt: Update permissions for role user
 
 Step 4: Restrict access to soft-deleted records
@@ -103,7 +103,7 @@ access to the ``todos`` table.
 For example, let's say that a role ``user`` can only access non-deleted todos, we need to add the following
 permission rule to ensure this:
 
-.. thumbnail:: /img/graphql/manual/guides/soft-deletes-select-perms.png
+.. thumbnail:: /img/graphql/core/guides/soft-deletes-select-perms.png
    :alt: Restrict access to soft-deleted records
 
 Now the role ``user`` can only access non-deleted ``todos``:
diff --git a/docs/graphql/manual/guides/docker-networking.rst b/docs/graphql/core/guides/docker-networking.rst
similarity index 100%
rename from docs/graphql/manual/guides/docker-networking.rst
rename to docs/graphql/core/guides/docker-networking.rst
diff --git a/docs/graphql/manual/guides/index.rst b/docs/graphql/core/guides/index.rst
similarity index 100%
rename from docs/graphql/manual/guides/index.rst
rename to docs/graphql/core/guides/index.rst
diff --git a/docs/graphql/manual/guides/integrations/apollo-subscriptions.rst b/docs/graphql/core/guides/integrations/apollo-subscriptions.rst
similarity index 99%
rename from docs/graphql/manual/guides/integrations/apollo-subscriptions.rst
rename to docs/graphql/core/guides/integrations/apollo-subscriptions.rst
index 6f2e6616d02..47d40bd1b7f 100644
--- a/docs/graphql/manual/guides/integrations/apollo-subscriptions.rst
+++ b/docs/graphql/core/guides/integrations/apollo-subscriptions.rst
@@ -14,6 +14,7 @@ Setting up GraphQL subscriptions using apollo-client
 
 Setup
 -----
+
 This guide assumes you have the basic apollo-client working as per
 https://www.apollographql.com/docs/react/get-started/ and now you want to enable subscriptions.
 
diff --git a/docs/graphql/manual/guides/integrations/auth-guardian-jwt.rst b/docs/graphql/core/guides/integrations/auth-guardian-jwt.rst
similarity index 90%
rename from docs/graphql/manual/guides/integrations/auth-guardian-jwt.rst
rename to docs/graphql/core/guides/integrations/auth-guardian-jwt.rst
index c350ec7d6ce..44d1669d5e7 100644
--- a/docs/graphql/manual/guides/integrations/auth-guardian-jwt.rst
+++ b/docs/graphql/core/guides/integrations/auth-guardian-jwt.rst
@@ -12,10 +12,13 @@ OneGraph's AuthGuardian JWT Integration with Hasura GraphQL engine
   :depth: 1
   :local:
 
+Introduction
+------------
+
 In this guide, we will walk through how to set up AuthGuardian JWT to work with the Hasura GraphQL engine.
 
 About AuthGuardian 
-^^^^^^^^^^^^^^^^^^
+------------------
 
 `AuthGuardian <https://www.onegraph.com/docs/auth_guardian.html>`__
 is a free service by `OneGraph <https://www.onegraph.com/>`__ that allows you to both add sign-on with dozens of services like GitHub, Twitch, Stripe, Salesforce, and more, and also to easily visually describe authentication and authorization rules for your app, API, or service.
@@ -23,14 +26,14 @@ is a free service by `OneGraph <https://www.onegraph.com/>`__ that allows you to
 It will generate JWTs compatible with any service that supports JWTs - like Hasura! And on top of that, AuthGuardian has built-in support for generating Hasura roles to make working with Hasura's permission system as easy as possible.
 
 Step 1: Create an account
-^^^^^^^^^^^^^^^^^^^^^^^^^
+-------------------------
 
 Sign into `OneGraph <https://www.onegraph.com/>`__ with either GitHub or an email/password.
 
 On the left sidebar, chose "Auth Services" and then "AuthGuardian", and we're ready to start!
 
 Step 2: Add an auth rule
-^^^^^^^^^^^^^^^^^^^^^^^^
+------------------------
 
 AuthGuardian works with two basic concepts: ``rules`` and ``effects``. 
 
@@ -53,7 +56,7 @@ The second concept, ``rules`` determines whether the ``effects`` are allowed to
 Let's see how to use these ``rules`` and ``effects`` in action! 
 
 Option 1: Set Hasura ``user_id``
---------------------------------
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 Let's say you're using GitHub as the primary login for your Hasura app, and that you want to use their GitHub ``user_id`` as a primary key:
 
 - For the section "When the user on", select ``GitHub`` -> ``login status`` -> ``is true`` ("When this user is logged into GitHub")
@@ -61,11 +64,11 @@ Let's say you're using GitHub as the primary login for your Hasura app, and that
 - Add set the user id in the "built-in value" field to ``GITHUB_USER_ID``
 - Click the ``save`` button on the right hand side.
 
-.. thumbnail:: /img/graphql/manual/guides/auth-guardian-user-id.png
+.. thumbnail:: /img/graphql/core/guides/auth-guardian-user-id.png
    :alt: Set an AuthGuardian JWT with a user id
 
 Option 2: Set the default Hasura role
--------------------------------------
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 Next, you want to assign a *default* role for all users, even those who haven't logged in with GitHub yet.
 
 Add a new rule (the ``+`` button in the top-left), and fill it out:
@@ -75,7 +78,7 @@ Add a new rule (the ``+`` button in the top-left), and fill it out:
 - Add the default role, e.g. ``user``.
 - Click the ``save`` button on the right hand side.
 
-.. thumbnail:: /img/graphql/manual/guides/auth-guardian-default-role.png
+.. thumbnail:: /img/graphql/core/guides/auth-guardian-default-role.png
    :alt: Set an AuthGuardian JWT with default role
 
 .. note::
@@ -83,7 +86,7 @@ Add a new rule (the ``+`` button in the top-left), and fill it out:
    Note that AuthGuardian knows that Hasura requires that the ``default role`` *also* appear in the list of ``x-hasura-allowed-roles``, and added it in both places automatically.
 
 Option 3: Allow additional Hasura roles
----------------------------------------
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 Now, you want to restrict access to some data in Hasura so that only you and your teammates can read it. We'll use Hasura's permissions to restrict data to those who have an ``admin`` role, and use AuthGuardian's rules to set that role in the JWT to people who belong to your GitHub organization:
 
 - For the section "When the user is on", select ``GitHub`` -> ``is member of organization named`` -> ``<your org name, e.g. AcmeCo>`` ("When this user is a member of AcmeCo on GitHub")
@@ -91,11 +94,11 @@ Now, you want to restrict access to some data in Hasura so that only you and you
 - Click on "Add" and add an additional role, e.g. ``admin``.
 - Click the ``save`` button on the right hand side.
 
-.. thumbnail:: /img/graphql/manual/guides/auth-guardian-additional-role.png
+.. thumbnail:: /img/graphql/core/guides/auth-guardian-additional-role.png
    :alt: Set an AuthGuardian JWT with additional roles
 
 Option 4: Set a session variable
---------------------------------
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 Hasura can use **session variables** for all sorts of :ref:`powerful cases <dynamic_session_variables>`. AuthGuardian also supports setting these in your JWT!
 
 Let's say we want to restrict access to some super-interesting data in our Hasura backend to users who have starred a particular GitHub repository:
@@ -105,7 +108,7 @@ Let's say we want to restrict access to some super-interesting data in our Hasur
 - Add your session variable name ``is-our-biggest-fan`` and value to JSON ``true``.
 - Click the ``save`` button on the right hand side.
 
-.. thumbnail:: /img/graphql/manual/guides/auth-guardian-session-variable.png
+.. thumbnail:: /img/graphql/core/guides/auth-guardian-session-variable.png
    :alt: Set an AuthGuardian JWT with session variables for Hasura to use
 
 .. note::
@@ -122,7 +125,7 @@ Nice!
 
 
 Step 3: Generate Hasura's JWT config to securely verify your new tokens
-^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+-----------------------------------------------------------------------
 Next we'll configure Hasura to verify our new JWTs - don't worry, AuthGuardian also has built-in support for that!
 
 - On the left sidebar, click on "JWT Settings" and scroll down to "Configuration generator".
@@ -140,11 +143,11 @@ The generated config has the following structure:
 
 - Add the generated config as a value for the environment variable ``HASURA_GRAPHQL_JWT_SECRET`` or for the ``--jwt-secret`` server flag.
 
-.. thumbnail:: /img/graphql/manual/guides/auth-guardian-config-generator.png
+.. thumbnail:: /img/graphql/core/guides/auth-guardian-config-generator.png
    :alt: AuthGuardian lets you copy/paste the required JWT configuration for either Hasura or Hasura-on-Heroku
 
 Step 4: Test the config and tokens
-^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+----------------------------------
 When configuring your permissions in Hasura, it's useful to be able to quickly generate test tokens to make sure everything works as you expect.
 
 - Copy the JWT that you created in step 2.
@@ -152,14 +155,14 @@ When configuring your permissions in Hasura, it's useful to be able to quickly g
 - Paste the copied JWT (or optionally write your own JSON if you want to test alternative scenarios).
 - Copy the signed token and add it as a header in the Hasura console.
 
-.. thumbnail:: /img/graphql/manual/guides/auth-guardian-generate-test-jwt.png
+.. thumbnail:: /img/graphql/core/guides/auth-guardian-generate-test-jwt.png
    :alt: Use the JWT-signer form to quickly sign any JSON and test in the Hasura console
 
 - In GraphiQL, try out queries to test that the integration works as expected by adding an ``Authorization`` header, with a value of ``Bearer <the-copied-JWT-text>``. Hasura's GraphiQL will recognize this header, show you its content, and confirm whether it recognizes the JWT as securely signed.
 
-.. thumbnail:: /img/graphql/manual/guides/auth-guardian-test-jwt.png
+.. thumbnail:: /img/graphql/core/guides/auth-guardian-test-jwt.png
    :alt: Test AuthGuardian JWT
 
 Next Steps
-^^^^^^^^^^
+----------
 AuthGuardian supports much more, including the ability to eject your rules as a pair of GraphQL request and JavaScript function so you can customize the auth as necessary. To read more about it, please visit the `AuthGuardian docs <https://www.onegraph.com/docs/>`__.
diff --git a/docs/graphql/manual/guides/integrations/auth0-jwt.rst b/docs/graphql/core/guides/integrations/auth0-jwt.rst
similarity index 96%
rename from docs/graphql/manual/guides/integrations/auth0-jwt.rst
rename to docs/graphql/core/guides/integrations/auth0-jwt.rst
index 60d6b5754dc..5fb61e1852c 100644
--- a/docs/graphql/manual/guides/integrations/auth0-jwt.rst
+++ b/docs/graphql/core/guides/integrations/auth0-jwt.rst
@@ -12,21 +12,24 @@ Auth0 JWT Integration with Hasura GraphQL engine
   :depth: 1
   :local:
 
+Introduction
+------------
+
 In this guide, we will walk through how to set up Auth0 to work with the Hasura GraphQL engine.
 
 Create an Auth0 Application
-^^^^^^^^^^^^^^^^^^^^^^^^^^^
+---------------------------
 
 - Navigate to the `Auth0 dashboard <https://manage.auth0.com>`__.
 - Click on the ``Applications`` menu option on the left and then click the ``+ Create Application`` button.
 - In the ``Create Application`` window, set a name for your application and select ``Single Page Web Applications``
   (assuming your application is React/Angular/Vue etc).
 
-.. thumbnail:: /img/graphql/manual/guides/create-client-popup.png
+.. thumbnail:: /img/graphql/core/guides/create-client-popup.png
    :alt: Create an Auth0 application
 
 Configure Auth0 Rules & Callback URLs
-^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+-------------------------------------
 
 In the settings of the application, add appropriate (e.g: http://localhost:3000/callback) URLs as ``Allowed Callback
 URLs`` and ``Allowed Web Origins``. Add domain specific URLs as well for production apps (e.g: https://myapp.com/callback).
@@ -75,7 +78,7 @@ For auth0-spa-js:
 .. _test-auth0:
 
 Create an Auth0 API
-^^^^^^^^^^^^^^^^^^^
+-------------------
 
 In case you are using auth0-spa-js, you also need to create an API so that the access token issued by Auth0 is following the JWT standard. Read more about this `here <https://auth0.com/docs/tokens/access-tokens#json-web-token-access-tokens>`__.
 
@@ -96,7 +99,7 @@ In case you are using auth0-spa-js, you also need to create an API so that the a
 
 
 Test auth0 login and generate sample JWTs for testing
-^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+-----------------------------------------------------
 
 You don't need to integrate your UI with auth0 for testing. You can follow the steps below:
 
@@ -139,7 +142,7 @@ You don't need to integrate your UI with auth0 for testing. You can follow the s
 
 
 Configure Hasura to use Auth0 Keys
-^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+----------------------------------
 
 Auth0 publishes their JWK under:
 
@@ -189,12 +192,12 @@ The generated config can be used in env ``HASURA_GRAPHQL_JWT_SECRET`` or ``--jwt
 The config generated from this page can be directly pasted in ``yaml`` files and command line arguments as it takes care of
 escaping new lines.
 
-.. thumbnail:: /img/graphql/manual/auth/jwt-config-generated.png
+.. thumbnail:: /img/graphql/core/auth/jwt-config-generated.png
    :width: 75%
    :alt: Generated JWT config
 
 Add Access Control Rules via Hasura Console
-^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+-------------------------------------------
 
 Auth0 is configured and ready to be used in the application. You can now set up access control rules that
 will automatically get applied whenever a client makes a GraphQL request with the Auth0 token.
@@ -219,7 +222,7 @@ This can be useful for data that you would like anyone to be able to access and
 just like any other role.
 
 Sync Users from Auth0
-^^^^^^^^^^^^^^^^^^^^^
+---------------------
 
 Now that you have created an Auth0 application and can signup/login, you will need a way to sync your users in Postgres as well.
 All you really need is the Auth0 ``user_id`` in something like a ``users`` table.
diff --git a/docs/graphql/manual/guides/integrations/aws-cognito.rst b/docs/graphql/core/guides/integrations/aws-cognito.rst
similarity index 93%
rename from docs/graphql/manual/guides/integrations/aws-cognito.rst
rename to docs/graphql/core/guides/integrations/aws-cognito.rst
index fde890cf988..0a6540160b1 100644
--- a/docs/graphql/manual/guides/integrations/aws-cognito.rst
+++ b/docs/graphql/core/guides/integrations/aws-cognito.rst
@@ -23,7 +23,7 @@ Set up user pools and hosted web UI
 Follow `these instructions <https://docs.aws.amazon.com/cognito/latest/developerguide/getting-started-with-cognito-user-pools.html>`__ 
 to set up a user pool, add an app and enable the hosted web UI in AWS cognito. While enabling the hosted web UI, you need to select the checkbox ``Implicit Grant``.
 
-.. thumbnail:: /img/graphql/manual/guides/cognito-app-client-settings.png
+.. thumbnail:: /img/graphql/core/guides/cognito-app-client-settings.png
    :alt: Cognito App Client Settings
 
 
@@ -53,7 +53,7 @@ To add custom claims to the JWT, we need to create a lambda function and configu
         callback(null, event)
     }
 
-.. thumbnail:: /img/graphql/manual/guides/cognito-lambda.png
+.. thumbnail:: /img/graphql/core/guides/cognito-lambda.png
    :alt: Cognito Lambda function to add claims to the JWT
 
 Configure Cognito to trigger the lambda function
@@ -61,11 +61,11 @@ Configure Cognito to trigger the lambda function
 
 In cognito, select ``Triggers`` -> ``Pre Token Generation`` and choose the lambda function created above:
 
-.. thumbnail:: /img/graphql/manual/guides/cognito-triggers-1.png
+.. thumbnail:: /img/graphql/core/guides/cognito-triggers-1.png
    :alt: Select lambda for the trigger
 
 
-.. thumbnail:: /img/graphql/manual/guides/cognito-triggers-2.png
+.. thumbnail:: /img/graphql/core/guides/cognito-triggers-2.png
    :alt: Select lambda for the trigger
 
 
@@ -76,13 +76,13 @@ You don't need to integrate your UI with Cognito for testing. You can follow the
 
 1. Launch the hosted UI from AWS Cognito.
 
-.. thumbnail:: /img/graphql/manual/guides/cognito-launch-hosted-ui.png
+.. thumbnail:: /img/graphql/core/guides/cognito-launch-hosted-ui.png
    :alt: Launch Cognito Login UI
 
 
 2. You should see the Cognito login page where you can log in or sign up.
 
-.. thumbnail:: /img/graphql/manual/guides/cognito-login.png
+.. thumbnail:: /img/graphql/core/guides/cognito-login.png
    :alt: Cognito Login Page
 
 .. _test-cognito:
@@ -90,13 +90,13 @@ You don't need to integrate your UI with Cognito for testing. You can follow the
 3. After successfully logging in, you will be redirected to ``https://localhost:3000/cognito-callback#id_token=xxxxxx&yyyyyy``.
 This page may be a 404 if you don't have a UI running on localhost:3000. Extract the ``id_token`` value from this URL.
 
-.. thumbnail:: /img/graphql/manual/guides/cognito-redirect.png
+.. thumbnail:: /img/graphql/core/guides/cognito-redirect.png
    :alt: JWT from id_token query param
 
 
 4. To test this JWT, and to see if all the Hasura claims are added as per the sections above, let's test this out with `jwt.io <https://jwt.io>`__!
 
-.. thumbnail:: /img/graphql/manual/guides/cognito-jwt.png
+.. thumbnail:: /img/graphql/core/guides/cognito-jwt.png
    :alt: JWT debug on jwt.io
 
 **Save this JWT token value so that we can use it later to test the authorization using the Hasura console.**
diff --git a/docs/graphql/manual/guides/integrations/index.rst b/docs/graphql/core/guides/integrations/index.rst
similarity index 100%
rename from docs/graphql/manual/guides/integrations/index.rst
rename to docs/graphql/core/guides/integrations/index.rst
diff --git a/docs/graphql/manual/guides/monitoring/index.rst b/docs/graphql/core/guides/monitoring/index.rst
similarity index 100%
rename from docs/graphql/manual/guides/monitoring/index.rst
rename to docs/graphql/core/guides/monitoring/index.rst
diff --git a/docs/graphql/manual/guides/sample-apps/index.rst b/docs/graphql/core/guides/sample-apps/index.rst
similarity index 100%
rename from docs/graphql/manual/guides/sample-apps/index.rst
rename to docs/graphql/core/guides/sample-apps/index.rst
diff --git a/docs/graphql/manual/guides/telemetry.rst b/docs/graphql/core/guides/telemetry.rst
similarity index 99%
rename from docs/graphql/manual/guides/telemetry.rst
rename to docs/graphql/core/guides/telemetry.rst
index 1b2f7844db6..e118e407569 100644
--- a/docs/graphql/manual/guides/telemetry.rst
+++ b/docs/graphql/core/guides/telemetry.rst
@@ -12,6 +12,9 @@ Telemetry Guide/FAQ
   :depth: 1
   :local:
 
+Introduction
+------------
+
 The Hasura GraphQL engine collects anonymous telemetry data that helps the
 Hasura team in understanding how the product is being used and in deciding
 what to focus on next.
diff --git a/docs/graphql/manual/hasura-cli/config-reference.rst b/docs/graphql/core/hasura-cli/config-reference.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/config-reference.rst
rename to docs/graphql/core/hasura-cli/config-reference.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura.rst b/docs/graphql/core/hasura-cli/hasura.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura.rst
rename to docs/graphql/core/hasura-cli/hasura.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_actions.rst b/docs/graphql/core/hasura-cli/hasura_actions.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_actions.rst
rename to docs/graphql/core/hasura-cli/hasura_actions.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_actions_codegen.rst b/docs/graphql/core/hasura-cli/hasura_actions_codegen.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_actions_codegen.rst
rename to docs/graphql/core/hasura-cli/hasura_actions_codegen.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_actions_create.rst b/docs/graphql/core/hasura-cli/hasura_actions_create.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_actions_create.rst
rename to docs/graphql/core/hasura-cli/hasura_actions_create.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_actions_use-codegen.rst b/docs/graphql/core/hasura-cli/hasura_actions_use-codegen.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_actions_use-codegen.rst
rename to docs/graphql/core/hasura-cli/hasura_actions_use-codegen.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_completion.rst b/docs/graphql/core/hasura-cli/hasura_completion.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_completion.rst
rename to docs/graphql/core/hasura-cli/hasura_completion.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_console.rst b/docs/graphql/core/hasura-cli/hasura_console.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_console.rst
rename to docs/graphql/core/hasura-cli/hasura_console.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_init.rst b/docs/graphql/core/hasura-cli/hasura_init.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_init.rst
rename to docs/graphql/core/hasura-cli/hasura_init.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_metadata.rst b/docs/graphql/core/hasura-cli/hasura_metadata.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_metadata.rst
rename to docs/graphql/core/hasura-cli/hasura_metadata.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_metadata_apply.rst b/docs/graphql/core/hasura-cli/hasura_metadata_apply.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_metadata_apply.rst
rename to docs/graphql/core/hasura-cli/hasura_metadata_apply.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_metadata_clear.rst b/docs/graphql/core/hasura-cli/hasura_metadata_clear.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_metadata_clear.rst
rename to docs/graphql/core/hasura-cli/hasura_metadata_clear.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_metadata_diff.rst b/docs/graphql/core/hasura-cli/hasura_metadata_diff.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_metadata_diff.rst
rename to docs/graphql/core/hasura-cli/hasura_metadata_diff.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_metadata_export.rst b/docs/graphql/core/hasura-cli/hasura_metadata_export.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_metadata_export.rst
rename to docs/graphql/core/hasura-cli/hasura_metadata_export.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_metadata_inconsistency.rst b/docs/graphql/core/hasura-cli/hasura_metadata_inconsistency.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_metadata_inconsistency.rst
rename to docs/graphql/core/hasura-cli/hasura_metadata_inconsistency.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_metadata_inconsistency_drop.rst b/docs/graphql/core/hasura-cli/hasura_metadata_inconsistency_drop.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_metadata_inconsistency_drop.rst
rename to docs/graphql/core/hasura-cli/hasura_metadata_inconsistency_drop.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_metadata_inconsistency_list.rst b/docs/graphql/core/hasura-cli/hasura_metadata_inconsistency_list.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_metadata_inconsistency_list.rst
rename to docs/graphql/core/hasura-cli/hasura_metadata_inconsistency_list.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_metadata_inconsistency_status.rst b/docs/graphql/core/hasura-cli/hasura_metadata_inconsistency_status.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_metadata_inconsistency_status.rst
rename to docs/graphql/core/hasura-cli/hasura_metadata_inconsistency_status.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_metadata_reload.rst b/docs/graphql/core/hasura-cli/hasura_metadata_reload.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_metadata_reload.rst
rename to docs/graphql/core/hasura-cli/hasura_metadata_reload.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_migrate.rst b/docs/graphql/core/hasura-cli/hasura_migrate.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_migrate.rst
rename to docs/graphql/core/hasura-cli/hasura_migrate.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_migrate_apply.rst b/docs/graphql/core/hasura-cli/hasura_migrate_apply.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_migrate_apply.rst
rename to docs/graphql/core/hasura-cli/hasura_migrate_apply.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_migrate_create.rst b/docs/graphql/core/hasura-cli/hasura_migrate_create.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_migrate_create.rst
rename to docs/graphql/core/hasura-cli/hasura_migrate_create.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_migrate_squash.rst b/docs/graphql/core/hasura-cli/hasura_migrate_squash.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_migrate_squash.rst
rename to docs/graphql/core/hasura-cli/hasura_migrate_squash.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_migrate_status.rst b/docs/graphql/core/hasura-cli/hasura_migrate_status.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_migrate_status.rst
rename to docs/graphql/core/hasura-cli/hasura_migrate_status.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_plugins.rst b/docs/graphql/core/hasura-cli/hasura_plugins.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_plugins.rst
rename to docs/graphql/core/hasura-cli/hasura_plugins.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_plugins_install.rst b/docs/graphql/core/hasura-cli/hasura_plugins_install.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_plugins_install.rst
rename to docs/graphql/core/hasura-cli/hasura_plugins_install.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_plugins_list.rst b/docs/graphql/core/hasura-cli/hasura_plugins_list.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_plugins_list.rst
rename to docs/graphql/core/hasura-cli/hasura_plugins_list.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_plugins_uninstall.rst b/docs/graphql/core/hasura-cli/hasura_plugins_uninstall.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_plugins_uninstall.rst
rename to docs/graphql/core/hasura-cli/hasura_plugins_uninstall.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_plugins_upgrade.rst b/docs/graphql/core/hasura-cli/hasura_plugins_upgrade.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_plugins_upgrade.rst
rename to docs/graphql/core/hasura-cli/hasura_plugins_upgrade.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_scripts.rst b/docs/graphql/core/hasura-cli/hasura_scripts.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_scripts.rst
rename to docs/graphql/core/hasura-cli/hasura_scripts.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_scripts_update-project-v2.rst b/docs/graphql/core/hasura-cli/hasura_scripts_update-project-v2.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_scripts_update-project-v2.rst
rename to docs/graphql/core/hasura-cli/hasura_scripts_update-project-v2.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_seeds.rst b/docs/graphql/core/hasura-cli/hasura_seeds.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_seeds.rst
rename to docs/graphql/core/hasura-cli/hasura_seeds.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_seeds_apply.rst b/docs/graphql/core/hasura-cli/hasura_seeds_apply.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_seeds_apply.rst
rename to docs/graphql/core/hasura-cli/hasura_seeds_apply.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_seeds_create.rst b/docs/graphql/core/hasura-cli/hasura_seeds_create.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_seeds_create.rst
rename to docs/graphql/core/hasura-cli/hasura_seeds_create.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_update-cli.rst b/docs/graphql/core/hasura-cli/hasura_update-cli.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_update-cli.rst
rename to docs/graphql/core/hasura-cli/hasura_update-cli.rst
diff --git a/docs/graphql/manual/hasura-cli/hasura_version.rst b/docs/graphql/core/hasura-cli/hasura_version.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/hasura_version.rst
rename to docs/graphql/core/hasura-cli/hasura_version.rst
diff --git a/docs/graphql/manual/hasura-cli/index.rst b/docs/graphql/core/hasura-cli/index.rst
similarity index 99%
rename from docs/graphql/manual/hasura-cli/index.rst
rename to docs/graphql/core/hasura-cli/index.rst
index df25c62545d..55564fa819c 100644
--- a/docs/graphql/manual/hasura-cli/index.rst
+++ b/docs/graphql/core/hasura-cli/index.rst
@@ -14,9 +14,10 @@ Hasura CLI
   :depth: 1
   :local:
 
-The ``Hasura CLI`` is a command line tool which is the primary mode of managing Hasura projects and migrations.
+Introduction
+------------
 
-.. _hasuractl_installation:
+The ``Hasura CLI`` is a command line tool which is the primary mode of managing Hasura projects and migrations.
 
 Installation
 ------------
diff --git a/docs/graphql/manual/hasura-cli/install-hasura-cli.rst b/docs/graphql/core/hasura-cli/install-hasura-cli.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/install-hasura-cli.rst
rename to docs/graphql/core/hasura-cli/install-hasura-cli.rst
diff --git a/docs/graphql/manual/hasura-cli/uninstall-hasura-cli.rst b/docs/graphql/core/hasura-cli/uninstall-hasura-cli.rst
similarity index 100%
rename from docs/graphql/manual/hasura-cli/uninstall-hasura-cli.rst
rename to docs/graphql/core/hasura-cli/uninstall-hasura-cli.rst
diff --git a/docs/graphql/manual/how-it-works/index.rst b/docs/graphql/core/how-it-works/index.rst
similarity index 99%
rename from docs/graphql/manual/how-it-works/index.rst
rename to docs/graphql/core/how-it-works/index.rst
index cc3be6b2933..5aef7a14bcb 100644
--- a/docs/graphql/manual/how-it-works/index.rst
+++ b/docs/graphql/core/how-it-works/index.rst
@@ -12,6 +12,9 @@ How Hasura GraphQL engine works
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Given a Postgres database, the Hasura GraphQL engine can automatically generate a GraphQL schema and process GraphQL
 queries, subscriptions and mutations. Here’s what the Hasura GraphQL engine does under the hood.
 
diff --git a/docs/graphql/manual/how-it-works/metadata-schema.rst b/docs/graphql/core/how-it-works/metadata-schema.rst
similarity index 98%
rename from docs/graphql/manual/how-it-works/metadata-schema.rst
rename to docs/graphql/core/how-it-works/metadata-schema.rst
index 1459139f3b5..4527553b5f6 100644
--- a/docs/graphql/manual/how-it-works/metadata-schema.rst
+++ b/docs/graphql/core/how-it-works/metadata-schema.rst
@@ -40,7 +40,7 @@ the metadata API.
 Schema
 """"""
 
-.. thumbnail:: /img/graphql/manual/engine-internals/hdb_table.jpg
+.. thumbnail:: /img/graphql/core/engine-internals/hdb_table.jpg
   :width: 30%
   :alt: hdb_table schema
 
@@ -66,7 +66,7 @@ the metadata API.
 Schema
 """"""
 
-.. thumbnail:: /img/graphql/manual/engine-internals/hdb_relationship.jpg
+.. thumbnail:: /img/graphql/core/engine-internals/hdb_relationship.jpg
   :width: 30%
   :alt: hdb_relationship schema
 
@@ -110,7 +110,7 @@ the metadata API.
 Schema
 """"""
 
-.. thumbnail:: /img/graphql/manual/engine-internals/hdb_permission.jpg
+.. thumbnail:: /img/graphql/core/engine-internals/hdb_permission.jpg
   :width: 30%
   :alt: hdb_permission schema
 
diff --git a/docs/graphql/manual/index.rst b/docs/graphql/core/index.rst
similarity index 97%
rename from docs/graphql/manual/index.rst
rename to docs/graphql/core/index.rst
index 49e6b95dfd6..f60f08fd475 100644
--- a/docs/graphql/manual/index.rst
+++ b/docs/graphql/core/index.rst
@@ -4,6 +4,8 @@
 
 .. title:: Hasura GraphQL Engine Documentation
 
+.. _core_docs:
+
 Hasura GraphQL Engine Documentation
 ===================================
 
@@ -68,7 +70,7 @@ The Hasura GraphQL engine makes your data instantly accessible over a real-time
       - :ref:`Basics <migrations_basics>`
       - :ref:`Setting Up Migrations <migrations_setup>`
       - :ref:`Managing Metadata <manage_hasura_metadata>`
-      - `Deploy Using Hasura Cloud <https://hasura.io/docs/cloud/1.0/manual/index.html>`__
+      - :ref:`Deploy Using Hasura Cloud <cloud_docs>`
       - :ref:`Deploy Using Docker <deployment_docker>`
       - :ref:`Deploy Using Kubernetes <deploy_kubernetes>`
 
diff --git a/docs/graphql/manual/integration/index.rst.wip b/docs/graphql/core/integration/index.rst.wip
similarity index 100%
rename from docs/graphql/manual/integration/index.rst.wip
rename to docs/graphql/core/integration/index.rst.wip
diff --git a/docs/graphql/manual/introduction/index.rst.wip b/docs/graphql/core/introduction/index.rst.wip
similarity index 100%
rename from docs/graphql/manual/introduction/index.rst.wip
rename to docs/graphql/core/introduction/index.rst.wip
diff --git a/docs/graphql/manual/migrations/advanced/auto-apply-migrations.rst b/docs/graphql/core/migrations/advanced/auto-apply-migrations.rst
similarity index 100%
rename from docs/graphql/manual/migrations/advanced/auto-apply-migrations.rst
rename to docs/graphql/core/migrations/advanced/auto-apply-migrations.rst
diff --git a/docs/graphql/manual/migrations/advanced/collaboration.rst.wip b/docs/graphql/core/migrations/advanced/collaboration.rst.wip
similarity index 100%
rename from docs/graphql/manual/migrations/advanced/collaboration.rst.wip
rename to docs/graphql/core/migrations/advanced/collaboration.rst.wip
diff --git a/docs/graphql/manual/migrations/advanced/index.rst b/docs/graphql/core/migrations/advanced/index.rst
similarity index 100%
rename from docs/graphql/manual/migrations/advanced/index.rst
rename to docs/graphql/core/migrations/advanced/index.rst
diff --git a/docs/graphql/manual/migrations/advanced/rolling-back-migrations.rst b/docs/graphql/core/migrations/advanced/rolling-back-migrations.rst
similarity index 100%
rename from docs/graphql/manual/migrations/advanced/rolling-back-migrations.rst
rename to docs/graphql/core/migrations/advanced/rolling-back-migrations.rst
diff --git a/docs/graphql/manual/migrations/advanced/seed-data-migration.rst b/docs/graphql/core/migrations/advanced/seed-data-migration.rst
similarity index 100%
rename from docs/graphql/manual/migrations/advanced/seed-data-migration.rst
rename to docs/graphql/core/migrations/advanced/seed-data-migration.rst
diff --git a/docs/graphql/manual/migrations/advanced/writing-migrations-manually.rst b/docs/graphql/core/migrations/advanced/writing-migrations-manually.rst
similarity index 100%
rename from docs/graphql/manual/migrations/advanced/writing-migrations-manually.rst
rename to docs/graphql/core/migrations/advanced/writing-migrations-manually.rst
diff --git a/docs/graphql/manual/migrations/basics.rst b/docs/graphql/core/migrations/basics.rst
similarity index 100%
rename from docs/graphql/manual/migrations/basics.rst
rename to docs/graphql/core/migrations/basics.rst
diff --git a/docs/graphql/manual/migrations/config-v1/advanced/auto-apply-migrations.rst b/docs/graphql/core/migrations/config-v1/advanced/auto-apply-migrations.rst
similarity index 100%
rename from docs/graphql/manual/migrations/config-v1/advanced/auto-apply-migrations.rst
rename to docs/graphql/core/migrations/config-v1/advanced/auto-apply-migrations.rst
diff --git a/docs/graphql/manual/migrations/config-v1/advanced/index.rst b/docs/graphql/core/migrations/config-v1/advanced/index.rst
similarity index 100%
rename from docs/graphql/manual/migrations/config-v1/advanced/index.rst
rename to docs/graphql/core/migrations/config-v1/advanced/index.rst
diff --git a/docs/graphql/manual/migrations/config-v1/advanced/rolling-back-migrations.rst b/docs/graphql/core/migrations/config-v1/advanced/rolling-back-migrations.rst
similarity index 100%
rename from docs/graphql/manual/migrations/config-v1/advanced/rolling-back-migrations.rst
rename to docs/graphql/core/migrations/config-v1/advanced/rolling-back-migrations.rst
diff --git a/docs/graphql/manual/migrations/config-v1/advanced/writing-migrations-manually.rst b/docs/graphql/core/migrations/config-v1/advanced/writing-migrations-manually.rst
similarity index 100%
rename from docs/graphql/manual/migrations/config-v1/advanced/writing-migrations-manually.rst
rename to docs/graphql/core/migrations/config-v1/advanced/writing-migrations-manually.rst
diff --git a/docs/graphql/manual/migrations/config-v1/index.rst b/docs/graphql/core/migrations/config-v1/index.rst
similarity index 100%
rename from docs/graphql/manual/migrations/config-v1/index.rst
rename to docs/graphql/core/migrations/config-v1/index.rst
diff --git a/docs/graphql/manual/migrations/config-v1/manage-metadata.rst b/docs/graphql/core/migrations/config-v1/manage-metadata.rst
similarity index 100%
rename from docs/graphql/manual/migrations/config-v1/manage-metadata.rst
rename to docs/graphql/core/migrations/config-v1/manage-metadata.rst
diff --git a/docs/graphql/manual/migrations/config-v1/manage-migrations.rst b/docs/graphql/core/migrations/config-v1/manage-migrations.rst
similarity index 99%
rename from docs/graphql/manual/migrations/config-v1/manage-migrations.rst
rename to docs/graphql/core/migrations/config-v1/manage-migrations.rst
index 18fce6dc74e..4d694e34bd3 100644
--- a/docs/graphql/manual/migrations/config-v1/manage-migrations.rst
+++ b/docs/graphql/core/migrations/config-v1/manage-migrations.rst
@@ -182,7 +182,7 @@ mounted into a directory.
 
 If you now open the console of the new instance, you can see that the three tables have been created and are tracked:
 
-.. thumbnail:: /img/graphql/manual/migrations/tracked-tables.png
+.. thumbnail:: /img/graphql/core/migrations/tracked-tables.png
    :alt: Tracked tables from Hasura migrations
    :width: 30%
 
diff --git a/docs/graphql/manual/migrations/config-v1/reference/index.rst b/docs/graphql/core/migrations/config-v1/reference/index.rst
similarity index 100%
rename from docs/graphql/manual/migrations/config-v1/reference/index.rst
rename to docs/graphql/core/migrations/config-v1/reference/index.rst
diff --git a/docs/graphql/manual/migrations/config-v1/reference/metadata-file-format.rst b/docs/graphql/core/migrations/config-v1/reference/metadata-file-format.rst
similarity index 100%
rename from docs/graphql/manual/migrations/config-v1/reference/metadata-file-format.rst
rename to docs/graphql/core/migrations/config-v1/reference/metadata-file-format.rst
diff --git a/docs/graphql/manual/migrations/config-v1/reference/migration-file-format.rst b/docs/graphql/core/migrations/config-v1/reference/migration-file-format.rst
similarity index 100%
rename from docs/graphql/manual/migrations/config-v1/reference/migration-file-format.rst
rename to docs/graphql/core/migrations/config-v1/reference/migration-file-format.rst
diff --git a/docs/graphql/manual/migrations/index.rst b/docs/graphql/core/migrations/index.rst
similarity index 100%
rename from docs/graphql/manual/migrations/index.rst
rename to docs/graphql/core/migrations/index.rst
diff --git a/docs/graphql/manual/migrations/manage-metadata.rst b/docs/graphql/core/migrations/manage-metadata.rst
similarity index 100%
rename from docs/graphql/manual/migrations/manage-metadata.rst
rename to docs/graphql/core/migrations/manage-metadata.rst
diff --git a/docs/graphql/manual/migrations/migrations-setup.rst b/docs/graphql/core/migrations/migrations-setup.rst
similarity index 99%
rename from docs/graphql/manual/migrations/migrations-setup.rst
rename to docs/graphql/core/migrations/migrations-setup.rst
index 4253a3ea380..2835bda89a1 100644
--- a/docs/graphql/manual/migrations/migrations-setup.rst
+++ b/docs/graphql/core/migrations/migrations-setup.rst
@@ -267,7 +267,7 @@ mounted onto directories.
 If you now open the console of the new instance, you can see that the three tables have
 been created and are tracked:
 
-.. thumbnail:: /img/graphql/manual/migrations/tracked-tables.png
+.. thumbnail:: /img/graphql/core/migrations/tracked-tables.png
    :alt: Tracked tables from Hasura migrations
    :width: 30%
 
diff --git a/docs/graphql/manual/migrations/reference/how-it-works.rst b/docs/graphql/core/migrations/reference/how-it-works.rst
similarity index 100%
rename from docs/graphql/manual/migrations/reference/how-it-works.rst
rename to docs/graphql/core/migrations/reference/how-it-works.rst
diff --git a/docs/graphql/manual/migrations/reference/index.rst b/docs/graphql/core/migrations/reference/index.rst
similarity index 100%
rename from docs/graphql/manual/migrations/reference/index.rst
rename to docs/graphql/core/migrations/reference/index.rst
diff --git a/docs/graphql/manual/migrations/reference/metadata-format.rst b/docs/graphql/core/migrations/reference/metadata-format.rst
similarity index 100%
rename from docs/graphql/manual/migrations/reference/metadata-format.rst
rename to docs/graphql/core/migrations/reference/metadata-format.rst
diff --git a/docs/graphql/manual/migrations/reference/migration-file-format.rst b/docs/graphql/core/migrations/reference/migration-file-format.rst
similarity index 100%
rename from docs/graphql/manual/migrations/reference/migration-file-format.rst
rename to docs/graphql/core/migrations/reference/migration-file-format.rst
diff --git a/docs/graphql/manual/migrations/upgrade-v2.rst b/docs/graphql/core/migrations/upgrade-v2.rst
similarity index 100%
rename from docs/graphql/manual/migrations/upgrade-v2.rst
rename to docs/graphql/core/migrations/upgrade-v2.rst
diff --git a/docs/graphql/manual/mutations/delete.rst b/docs/graphql/core/mutations/delete.rst
similarity index 100%
rename from docs/graphql/manual/mutations/delete.rst
rename to docs/graphql/core/mutations/delete.rst
diff --git a/docs/graphql/manual/mutations/index.rst b/docs/graphql/core/mutations/index.rst
similarity index 100%
rename from docs/graphql/manual/mutations/index.rst
rename to docs/graphql/core/mutations/index.rst
diff --git a/docs/graphql/manual/mutations/insert.rst b/docs/graphql/core/mutations/insert.rst
similarity index 100%
rename from docs/graphql/manual/mutations/insert.rst
rename to docs/graphql/core/mutations/insert.rst
diff --git a/docs/graphql/manual/mutations/multiple-mutations.rst b/docs/graphql/core/mutations/multiple-mutations.rst
similarity index 100%
rename from docs/graphql/manual/mutations/multiple-mutations.rst
rename to docs/graphql/core/mutations/multiple-mutations.rst
diff --git a/docs/graphql/manual/mutations/update.rst b/docs/graphql/core/mutations/update.rst
similarity index 100%
rename from docs/graphql/manual/mutations/update.rst
rename to docs/graphql/core/mutations/update.rst
diff --git a/docs/graphql/manual/mutations/upsert.rst b/docs/graphql/core/mutations/upsert.rst
similarity index 100%
rename from docs/graphql/manual/mutations/upsert.rst
rename to docs/graphql/core/mutations/upsert.rst
diff --git a/docs/graphql/manual/performance/index.rst.wip b/docs/graphql/core/performance/index.rst.wip
similarity index 100%
rename from docs/graphql/manual/performance/index.rst.wip
rename to docs/graphql/core/performance/index.rst.wip
diff --git a/docs/graphql/manual/queries/aggregation-queries.rst b/docs/graphql/core/queries/aggregation-queries.rst
similarity index 99%
rename from docs/graphql/manual/queries/aggregation-queries.rst
rename to docs/graphql/core/queries/aggregation-queries.rst
index a29841079f4..634a32b1616 100644
--- a/docs/graphql/manual/queries/aggregation-queries.rst
+++ b/docs/graphql/core/queries/aggregation-queries.rst
@@ -12,8 +12,9 @@ Aggregation queries
   :depth: 2
   :local:
 
-Aggregate fields
-----------------
+**Aggregate** fields
+--------------------
+
 You can fetch aggregations on columns along with nodes using an aggregation query.
 
 The **name of the aggregate field** is of the form ``<field-name> + _aggregate``.
diff --git a/docs/graphql/manual/queries/distinct-queries.rst b/docs/graphql/core/queries/distinct-queries.rst
similarity index 100%
rename from docs/graphql/manual/queries/distinct-queries.rst
rename to docs/graphql/core/queries/distinct-queries.rst
diff --git a/docs/graphql/manual/queries/index.rst b/docs/graphql/core/queries/index.rst
similarity index 100%
rename from docs/graphql/manual/queries/index.rst
rename to docs/graphql/core/queries/index.rst
diff --git a/docs/graphql/manual/queries/multiple-arguments.rst b/docs/graphql/core/queries/multiple-arguments.rst
similarity index 100%
rename from docs/graphql/manual/queries/multiple-arguments.rst
rename to docs/graphql/core/queries/multiple-arguments.rst
diff --git a/docs/graphql/manual/queries/multiple-queries.rst b/docs/graphql/core/queries/multiple-queries.rst
similarity index 100%
rename from docs/graphql/manual/queries/multiple-queries.rst
rename to docs/graphql/core/queries/multiple-queries.rst
diff --git a/docs/graphql/manual/queries/nested-object-queries.rst b/docs/graphql/core/queries/nested-object-queries.rst
similarity index 99%
rename from docs/graphql/manual/queries/nested-object-queries.rst
rename to docs/graphql/core/queries/nested-object-queries.rst
index bb3bd8f7bee..51159b744da 100644
--- a/docs/graphql/manual/queries/nested-object-queries.rst
+++ b/docs/graphql/core/queries/nested-object-queries.rst
@@ -12,6 +12,9 @@ Nested object queries
   :depth: 2
   :local:
 
+Introduction
+------------
+
 You can use the object (one-to-one) or array (one-to-many) :ref:`relationships <table_relationships>` defined
 in your schema to make a nested query i.e. fetch data for a type along with data from a nested or related type.
 
diff --git a/docs/graphql/manual/queries/pagination.rst b/docs/graphql/core/queries/pagination.rst
similarity index 100%
rename from docs/graphql/manual/queries/pagination.rst
rename to docs/graphql/core/queries/pagination.rst
diff --git a/docs/graphql/manual/queries/performance.rst b/docs/graphql/core/queries/performance.rst
similarity index 97%
rename from docs/graphql/manual/queries/performance.rst
rename to docs/graphql/core/queries/performance.rst
index ac077b59643..21d0b258517 100644
--- a/docs/graphql/manual/queries/performance.rst
+++ b/docs/graphql/core/queries/performance.rst
@@ -36,14 +36,14 @@ Let's say we want to analyse the following query:
 
 In order to analyse the performance of a query, you can click on the ``Analyze`` button on the Hasura console:
 
-.. thumbnail:: ../../../img/graphql/manual/queries/analyze-query.png
+.. thumbnail:: /img/graphql/core/queries/analyze-query.png
    :class: no-shadow
    :width: 75%
    :alt: Query analyze button on Hasura console
 
 The following query execution plan is generated:
 
-.. thumbnail:: ../../../img/graphql/manual/queries/query-analysis-before-index.png
+.. thumbnail:: /img/graphql/core/queries/query-analysis-before-index.png
    :class: no-shadow
    :width: 75%
    :alt: Execution plan for Hasura GraphQL query
@@ -227,7 +227,7 @@ Let's compare the performance analysis to :ref:`the one before adding the index
 What was a ``sequential scan`` in the example earlier is now an ``index scan``. ``Index scans`` are usually more performant than ``sequential scans``.
 We can also see that the ``cost`` of the query is now lower than the one before we added the index.
 
-.. thumbnail:: ../../../img/graphql/manual/queries/query-analysis-after-index.png
+.. thumbnail:: /img/graphql/core/queries/query-analysis-after-index.png
    :class: no-shadow
    :width: 75%
    :alt: Execution plan for Hasura GraphQL query
diff --git a/docs/graphql/manual/queries/query-filters.rst b/docs/graphql/core/queries/query-filters.rst
similarity index 100%
rename from docs/graphql/manual/queries/query-filters.rst
rename to docs/graphql/core/queries/query-filters.rst
diff --git a/docs/graphql/manual/queries/simple-object-queries.rst b/docs/graphql/core/queries/simple-object-queries.rst
similarity index 98%
rename from docs/graphql/manual/queries/simple-object-queries.rst
rename to docs/graphql/core/queries/simple-object-queries.rst
index 5c2d6186881..b130eb103fc 100644
--- a/docs/graphql/manual/queries/simple-object-queries.rst
+++ b/docs/graphql/core/queries/simple-object-queries.rst
@@ -12,6 +12,9 @@ Simple object queries
   :depth: 2
   :local:
 
+Introduction
+------------
+
 You can fetch a single node or multiple nodes of the same type using a simple object query.
 
 Fetch list of objects
diff --git a/docs/graphql/manual/queries/sorting.rst b/docs/graphql/core/queries/sorting.rst
similarity index 100%
rename from docs/graphql/manual/queries/sorting.rst
rename to docs/graphql/core/queries/sorting.rst
diff --git a/docs/graphql/manual/queries/variables-aliases-fragments-directives.rst b/docs/graphql/core/queries/variables-aliases-fragments-directives.rst
similarity index 100%
rename from docs/graphql/manual/queries/variables-aliases-fragments-directives.rst
rename to docs/graphql/core/queries/variables-aliases-fragments-directives.rst
diff --git a/docs/graphql/manual/remote-schemas/adding-schema.rst b/docs/graphql/core/remote-schemas/adding-schema.rst
similarity index 98%
rename from docs/graphql/manual/remote-schemas/adding-schema.rst
rename to docs/graphql/core/remote-schemas/adding-schema.rst
index 84eef707b18..1b096007f3c 100644
--- a/docs/graphql/manual/remote-schemas/adding-schema.rst
+++ b/docs/graphql/core/remote-schemas/adding-schema.rst
@@ -37,7 +37,7 @@ To merge your remote schema with the GraphQL engine's auto-generated schema:
 
 Head to the ``Remote Schemas`` tab of the console and click on the ``Add`` button.
 
-.. thumbnail:: /img/graphql/manual/business-logic/add-remote-schemas-interface.png
+.. thumbnail:: /img/graphql/core/business-logic/add-remote-schemas-interface.png
    :alt: Merge remote schema
 
 You need to enter the following information:
diff --git a/docs/graphql/manual/remote-schemas/index.rst b/docs/graphql/core/remote-schemas/index.rst
similarity index 96%
rename from docs/graphql/manual/remote-schemas/index.rst
rename to docs/graphql/core/remote-schemas/index.rst
index 43a7b1fc5fa..59474d48feb 100644
--- a/docs/graphql/manual/remote-schemas/index.rst
+++ b/docs/graphql/core/remote-schemas/index.rst
@@ -26,7 +26,7 @@ endpoint to Hasura. Your GraphQL service can be written in any language or frame
 This is what Hasura running with "Remote schemas" looks like:
 
 
-.. thumbnail:: /img/graphql/manual/remote-schemas/remote-schema-arch.png
+.. thumbnail:: /img/graphql/core/remote-schemas/remote-schema-arch.png
    :class: no-shadow
    :width: 900px
    :alt: Architecture of Hasura with remote schemas
diff --git a/docs/graphql/manual/remote-schemas/schema-auth.rst b/docs/graphql/core/remote-schemas/schema-auth.rst
similarity index 100%
rename from docs/graphql/manual/remote-schemas/schema-auth.rst
rename to docs/graphql/core/remote-schemas/schema-auth.rst
diff --git a/docs/graphql/manual/scheduled-triggers/create-cron-trigger.rst b/docs/graphql/core/scheduled-triggers/create-cron-trigger.rst
similarity index 94%
rename from docs/graphql/manual/scheduled-triggers/create-cron-trigger.rst
rename to docs/graphql/core/scheduled-triggers/create-cron-trigger.rst
index 93cb6207091..40d8a5b1181 100644
--- a/docs/graphql/manual/scheduled-triggers/create-cron-trigger.rst
+++ b/docs/graphql/core/scheduled-triggers/create-cron-trigger.rst
@@ -26,7 +26,7 @@ Step 1: Navigate to Cron Triggers
 - Click ``Cron Triggers``.
 - Click ``Create``.
 
-.. thumbnail:: /img/graphql/manual/event-triggers/create-cron.png
+.. thumbnail:: /img/graphql/core/event-triggers/create-cron.png
    :alt: Adding a cron trigger
    :width: 1000px
 
@@ -47,7 +47,7 @@ Let's define the cron trigger.
       - **Cron schedule**: Enter a schedule for the cron. You can use the link next to the field to help `build a cron expression <https://crontab.guru/#*_*_*_*_*>`__, or use the ``Frequently used crons`` dropdown as a shortcut. Cron events are created based on the UTC timezone.
       - **Payload**: The JSON payload which will be sent to the webhook.
 
-      .. thumbnail:: /img/graphql/manual/event-triggers/define-cron-trigger.png
+      .. thumbnail:: /img/graphql/core/event-triggers/define-cron-trigger.png
          :alt: Defining a cron trigger
          :width: 550px
 
@@ -109,7 +109,7 @@ If you like, you can also define the following values:
 
       Expand the ``Advanced`` section.
 
-      .. thumbnail:: /img/graphql/manual/event-triggers/advanced-cron.png
+      .. thumbnail:: /img/graphql/core/event-triggers/advanced-cron.png
          :alt: Defining advanced options for a cron trigger
          :width: 700px
 
@@ -170,6 +170,6 @@ Schedule & logs
 
 Once you've created your cron trigger, you can see ``Pending events``, ``Processed events``, and ``Invocation logs`` in their respective tabs.
 
-.. thumbnail:: /img/graphql/manual/event-triggers/pending-cron.png
+.. thumbnail:: /img/graphql/core/event-triggers/pending-cron.png
    :alt: Schedule and logs for cron triggers
    :width: 1200px
diff --git a/docs/graphql/manual/scheduled-triggers/create-one-off-scheduled-event.rst b/docs/graphql/core/scheduled-triggers/create-one-off-scheduled-event.rst
similarity index 92%
rename from docs/graphql/manual/scheduled-triggers/create-one-off-scheduled-event.rst
rename to docs/graphql/core/scheduled-triggers/create-one-off-scheduled-event.rst
index e7c93aee052..a0776e202cb 100644
--- a/docs/graphql/manual/scheduled-triggers/create-one-off-scheduled-event.rst
+++ b/docs/graphql/core/scheduled-triggers/create-one-off-scheduled-event.rst
@@ -26,7 +26,7 @@ Step 1: Navigate to One-off Scheduled Events
 - Click ``One-off Scheduled Events``.
 - Click ``Schedule an event``.
 
-.. thumbnail:: /img/graphql/manual/event-triggers/one-off.png
+.. thumbnail:: /img/graphql/core/event-triggers/one-off.png
    :alt: Adding a one-off scheduled event
    :width: 900px
 
@@ -46,7 +46,7 @@ Define the following values for a scheduled event:
 
       In the form opened by the above step, fill out the following fields:
 
-      .. thumbnail:: /img/graphql/manual/event-triggers/define-one-off-event.png
+      .. thumbnail:: /img/graphql/core/event-triggers/define-one-off-event.png
          :alt: Defining the scheduled event
          :width: 550px
 
@@ -85,7 +85,7 @@ If you like, you can also define advanced values:
 
       Expand the ``Advanced`` section.
 
-      .. thumbnail:: /img/graphql/manual/event-triggers/advanced-one-off.png
+      .. thumbnail:: /img/graphql/core/event-triggers/advanced-one-off.png
          :alt: Defining advanced options for a scheduled event
          :width: 700px
 
@@ -128,6 +128,6 @@ Schedule & logs
 
 Once you've created your scheduled trigger, you can see ``Pending events``, ``Processed events``, and ``Invocation logs`` in their respective tabs.
 
-.. thumbnail:: /img/graphql/manual/event-triggers/pending-one-off.png
+.. thumbnail:: /img/graphql/core/event-triggers/pending-one-off.png
    :alt: Schedule and logs for scheduled events
    :width: 1200px
diff --git a/docs/graphql/manual/scheduled-triggers/index.rst b/docs/graphql/core/scheduled-triggers/index.rst
similarity index 91%
rename from docs/graphql/manual/scheduled-triggers/index.rst
rename to docs/graphql/core/scheduled-triggers/index.rst
index 1d585480cc7..73061f72238 100644
--- a/docs/graphql/manual/scheduled-triggers/index.rst
+++ b/docs/graphql/core/scheduled-triggers/index.rst
@@ -17,7 +17,7 @@ Introduction
 
 Scheduled triggers are used to execute custom business logic at specific points in time.
 
-.. thumbnail:: /img/graphql/manual/scheduled-triggers/scheduled-trigger-arch.png
+.. thumbnail:: /img/graphql/core/scheduled-triggers/scheduled-trigger-arch.png
   :class: no-shadow
   :width: 700px
   :alt: Hasura scheduled trigger architecture
diff --git a/docs/graphql/manual/schema/basics.rst b/docs/graphql/core/schema/basics.rst
similarity index 97%
rename from docs/graphql/manual/schema/basics.rst
rename to docs/graphql/core/schema/basics.rst
index 43890f6a0ae..7522097b94d 100644
--- a/docs/graphql/manual/schema/basics.rst
+++ b/docs/graphql/core/schema/basics.rst
@@ -12,6 +12,9 @@ Schema design basics
   :depth: 1
   :local:
 
+Introduction
+------------
+
 The Hasura GraphQL engine creates GraphQL schema object types and corresponding query/mutation fields with resolvers
 automatically as we create tables/views in the Postgres database.
 
@@ -48,7 +51,7 @@ automatically generated.
 
 For example, here is the schema for the ``article`` table in this interface:
 
-.. thumbnail:: /img/graphql/manual/schema/create-table-graphql.png
+.. thumbnail:: /img/graphql/core/schema/create-table-graphql.png
    :alt: Schema for an article table
 
 The following object type and query/mutation fields are generated for the ``article`` table we just created:
diff --git a/docs/graphql/manual/schema/computed-fields.rst b/docs/graphql/core/schema/computed-fields.rst
similarity index 99%
rename from docs/graphql/manual/schema/computed-fields.rst
rename to docs/graphql/core/schema/computed-fields.rst
index 8fa2e890210..8eae983792b 100644
--- a/docs/graphql/manual/schema/computed-fields.rst
+++ b/docs/graphql/core/schema/computed-fields.rst
@@ -173,7 +173,7 @@ Adding a computed field to a table
      Head to the ``Modify`` tab of the table and click on the ``Add`` button in the ``Computed fields``
      section:
 
-     .. thumbnail:: /img/graphql/manual/schema/computed-field-create.png
+     .. thumbnail:: /img/graphql/core/schema/computed-field-create.png
 
      .. admonition:: Supported from
 
diff --git a/docs/graphql/manual/schema/custom-field-names.rst b/docs/graphql/core/schema/custom-field-names.rst
similarity index 90%
rename from docs/graphql/manual/schema/custom-field-names.rst
rename to docs/graphql/core/schema/custom-field-names.rst
index bd6473453a2..8bb8aa06d3b 100644
--- a/docs/graphql/manual/schema/custom-field-names.rst
+++ b/docs/graphql/core/schema/custom-field-names.rst
@@ -12,6 +12,9 @@ Customise auto-generated field names
   :depth: 2
   :local:
 
+Introduction
+------------
+
 It is possible to override the auto-generated table and column field names exposed over the GraphQL API.
 
 ..  note::
@@ -28,7 +31,7 @@ Expose columns with a different name in the GraphQL API
 
      Head to the ``Data -> [table-name] -> Modify``
 
-     .. thumbnail:: /img/graphql/manual/schema/custom-field-name-column.png
+     .. thumbnail:: /img/graphql/core/schema/custom-field-name-column.png
         :alt: Customise GraphQL field name
 
   .. tab:: Metadata API
@@ -50,7 +53,7 @@ Expose table root fields with a different name in the GraphQL API
 
      Head to the ``Data -> [table-name] -> Modify``
 
-     .. thumbnail:: /img/graphql/manual/schema/custom-field-name-root-fields.png
+     .. thumbnail:: /img/graphql/core/schema/custom-field-name-root-fields.png
         :alt: Customise GraphQL root field
 
   .. tab:: Metadata API
diff --git a/docs/graphql/manual/schema/custom-functions.rst b/docs/graphql/core/schema/custom-functions.rst
similarity index 100%
rename from docs/graphql/manual/schema/custom-functions.rst
rename to docs/graphql/core/schema/custom-functions.rst
diff --git a/docs/graphql/manual/schema/data-validations.rst b/docs/graphql/core/schema/data-validations.rst
similarity index 96%
rename from docs/graphql/manual/schema/data-validations.rst
rename to docs/graphql/core/schema/data-validations.rst
index 64f87423c3d..d46e2fb238e 100644
--- a/docs/graphql/manual/schema/data-validations.rst
+++ b/docs/graphql/core/schema/data-validations.rst
@@ -51,7 +51,7 @@ Let's say we have a table:
 Now, we can head to the ``Modify`` tab in the table page and add a check
 constraint in the ``Check Constraints`` section:
 
-.. thumbnail:: /img/graphql/manual/schema/validation-add-check-constraint.png
+.. thumbnail:: /img/graphql/core/schema/validation-add-check-constraint.png
    :alt: Add check constraint
 
 If someone now tries to add an author with a rating of ``11``, the following
@@ -185,7 +185,7 @@ Suppose, we have a table:
 
 Now, we can create a role ``user`` and add the following rule:
 
-.. thumbnail:: /img/graphql/manual/schema/validation-not-empty.png
+.. thumbnail:: /img/graphql/core/schema/validation-not-empty.png
    :alt: validation using permission: title cannot be empty
 
 If we try to insert an article with ``title = ""``, we will get a ``permission-error``:
@@ -233,7 +233,7 @@ Also, suppose there is an :ref:`object relationship <graphql_relationships>` ``a
 
 Now, we can create a role ``user`` and add the following rule:
 
-.. thumbnail:: /img/graphql/manual/schema/validation-author-isactive.png
+.. thumbnail:: /img/graphql/core/schema/validation-author-isactive.png
    :alt: validation using permissions: author should be active
 
 If we try to insert an article for an author for whom ``is_active = false``, we
@@ -291,7 +291,7 @@ or not.
 
 The validation process looks as follows:
 
-.. thumbnail:: /img/graphql/manual/schema/diagram-actions-data-validation.png
+.. thumbnail:: /img/graphql/core/schema/diagram-actions-data-validation.png
    :alt: validation using actions: article not deny-listed
    :width: 60%
 
@@ -301,7 +301,7 @@ Actions allow us to define :ref:`custom types <custom_types>` in our GraphQL sch
 We create a new action called ``InsertAuthor`` that takes an ``author`` object with type ``AuthorInput`` as input and
 returns an object of type ``AuthorOutput``:
 
-.. thumbnail:: /img/graphql/manual/schema/validation-actions-def.png
+.. thumbnail:: /img/graphql/core/schema/validation-actions-def.png
    :alt: Create action
 
 The business logic of an action - in our case the author validation - happens in the :ref:`action handler <action_handlers>`
diff --git a/docs/graphql/manual/schema/default-values/column-presets.rst b/docs/graphql/core/schema/default-values/column-presets.rst
similarity index 91%
rename from docs/graphql/manual/schema/default-values/column-presets.rst
rename to docs/graphql/core/schema/default-values/column-presets.rst
index 38873034238..31199e33ed9 100644
--- a/docs/graphql/manual/schema/default-values/column-presets.rst
+++ b/docs/graphql/core/schema/default-values/column-presets.rst
@@ -12,6 +12,9 @@ Setting default values for fields using role-based column presets
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Let's say you want certain fields to have their values set automatically when not explicitly passed using session
 variables or fixed values when a new row is created with a particular :ref:`user role <roles_variables>`.
 
@@ -32,13 +35,13 @@ Step 1: Configure a column preset
 The column preset option is available under the ``Permissions`` tab of a table. Open the console and head to
 ``Data -> article -> Permissions``:
 
-.. thumbnail:: /img/graphql/manual/schema/column-presets-option.png
+.. thumbnail:: /img/graphql/core/schema/column-presets-option.png
    :alt: Add a column preset in the permissions tab
 
 Enable the column preset option to define presets for one or more columns. For each column, you can pick between
 setting the preset using a static value or from a session variable.
 
-.. thumbnail:: /img/graphql/manual/schema/column-presets-value-options.png
+.. thumbnail:: /img/graphql/core/schema/column-presets-value-options.png
    :alt: Configure the column preset
 
 For our chosen example, we'll use the ``from session variable`` option and configure the ``user_id`` column to be
@@ -62,13 +65,13 @@ to select from the* ``article`` *table*):
 As mentioned earlier, you'll notice when you add the ``X-Hasura-Role`` header that the field, ``user_id``, is no longer
 available as the mutation type's field:
 
-.. thumbnail:: /img/graphql/manual/schema/column-preset-schema-change-for-role.png
+.. thumbnail:: /img/graphql/core/schema/column-preset-schema-change-for-role.png
    :alt: Write an insert mutation
 
 Now, if we run the following insert mutation, we'll see that the ``user_id`` field is indeed being set with the value
 passed in the ``X-Hasura-User-Id`` variable:
 
-.. thumbnail:: /img/graphql/manual/schema/column-preset-mutation-result.png
+.. thumbnail:: /img/graphql/core/schema/column-preset-mutation-result.png
    :alt: Run the insert mutation
 
 .. note::
diff --git a/docs/graphql/manual/schema/default-values/created-updated-timestamps.rst b/docs/graphql/core/schema/default-values/created-updated-timestamps.rst
similarity index 97%
rename from docs/graphql/manual/schema/default-values/created-updated-timestamps.rst
rename to docs/graphql/core/schema/default-values/created-updated-timestamps.rst
index 5f88b0576e1..2cc091a290c 100644
--- a/docs/graphql/manual/schema/default-values/created-updated-timestamps.rst
+++ b/docs/graphql/core/schema/default-values/created-updated-timestamps.rst
@@ -29,7 +29,7 @@ Add a created_at timestamp
     On the Hasura console, click on the ``Modify`` tab of a table. When clicking on the ``+Frequently used columns`` button, 
     choose ``created_at``:
 
-    .. thumbnail:: /img/graphql/manual/schema/created-at.png
+    .. thumbnail:: /img/graphql/core/schema/created-at.png
         :alt: Add a created_at time on the Hasura console
 
     Click the ``Add column`` button.
@@ -83,7 +83,7 @@ Add an updated_at timestamp
     On the Hasura console, click on the ``Modify`` tab of a table. When clicking on the ``+Frequently used columns`` button, 
     choose ``updated_at``:
 
-    .. thumbnail:: /img/graphql/manual/schema/updated-at.png
+    .. thumbnail:: /img/graphql/core/schema/updated-at.png
         :alt: Add an updated_at time on the Hasura console
 
     Click the ``Add column`` button.
diff --git a/docs/graphql/manual/schema/default-values/index.rst b/docs/graphql/core/schema/default-values/index.rst
similarity index 100%
rename from docs/graphql/manual/schema/default-values/index.rst
rename to docs/graphql/core/schema/default-values/index.rst
diff --git a/docs/graphql/manual/schema/default-values/postgres-defaults.rst b/docs/graphql/core/schema/default-values/postgres-defaults.rst
similarity index 96%
rename from docs/graphql/manual/schema/default-values/postgres-defaults.rst
rename to docs/graphql/core/schema/default-values/postgres-defaults.rst
index 14bcf940136..c2ccf400ede 100644
--- a/docs/graphql/manual/schema/default-values/postgres-defaults.rst
+++ b/docs/graphql/core/schema/default-values/postgres-defaults.rst
@@ -12,6 +12,9 @@ Setting default values for fields using Postgres defaults
   :depth: 1
   :local:
 
+Introduction
+------------
+
 You can set values of certain fields automatically when not explicitly passed to a fixed value, e.g. true for a boolean
 field, or output of a simple SQL function, e.g. now() for a timestamp field, by setting column default values in the
 table definition.
@@ -30,7 +33,7 @@ Edit the ``created_at`` field and set its default value as the SQL function ``no
 
 Open the console and head to ``Data -> article -> Modify``:
 
-.. thumbnail:: /img/graphql/manual/schema/add-default-value.png
+.. thumbnail:: /img/graphql/core/schema/add-default-value.png
    :alt: Modify the table in the console
 
 .. admonition:: To set an auto-incrementing default value
diff --git a/docs/graphql/manual/schema/default-values/sql-functions.rst b/docs/graphql/core/schema/default-values/sql-functions.rst
similarity index 95%
rename from docs/graphql/manual/schema/default-values/sql-functions.rst
rename to docs/graphql/core/schema/default-values/sql-functions.rst
index 87af713a7c1..38065dc8e8a 100644
--- a/docs/graphql/manual/schema/default-values/sql-functions.rst
+++ b/docs/graphql/core/schema/default-values/sql-functions.rst
@@ -12,6 +12,9 @@ Setting values of fields using SQL functions/stored procedures
   :depth: 1
   :local:
 
+Introduction
+------------
+
 Let's say you want to set the value of some fields as the output of some custom SQL functions or stored procedures.
 This is useful to set values of fields which depend on other fields passed in the input. E.g. set
 ``submission_time`` of an online quiz as 1 hour from the ``start_time``.
@@ -39,7 +42,7 @@ Modify the table ``sql_function_table`` and make its ``output`` column nullable.
 
 Open the console and head to ``Data -> sql_function_table -> Modify``:
 
-.. thumbnail:: /img/graphql/manual/schema/modify-sql-fn-table.png
+.. thumbnail:: /img/graphql/core/schema/modify-sql-fn-table.png
    :alt: Modify the table
 
 Step 2: Create a trigger
@@ -62,7 +65,7 @@ the ``output`` field whenever an insert or update is made to the ``sql_function_
 
 Head to ``Data -> SQL`` and run the above SQL:
 
-.. thumbnail:: /img/graphql/manual/schema/create-trigger.png
+.. thumbnail:: /img/graphql/core/schema/create-trigger.png
    :alt: Create a trigger with SQL
 
 Step 3: Run an insert mutation
diff --git a/docs/graphql/manual/schema/derived-data.rst.wip b/docs/graphql/core/schema/derived-data.rst.wip
similarity index 100%
rename from docs/graphql/manual/schema/derived-data.rst.wip
rename to docs/graphql/core/schema/derived-data.rst.wip
diff --git a/docs/graphql/manual/schema/enums.rst b/docs/graphql/core/schema/enums.rst
similarity index 99%
rename from docs/graphql/manual/schema/enums.rst
rename to docs/graphql/core/schema/enums.rst
index e08d5b5b7d5..97db53a2c28 100644
--- a/docs/graphql/manual/schema/enums.rst
+++ b/docs/graphql/core/schema/enums.rst
@@ -147,7 +147,7 @@ we need to tell Hasura that this table represents an enum.
     Head to the ``Modify`` tab of the table and toggle the switch in the
     ``Set table as enum`` section:
 
-    .. thumbnail:: /img/graphql/manual/schema/enum-set.png
+    .. thumbnail:: /img/graphql/core/schema/enum-set.png
        :alt: Set table as enum
 
   .. tab:: API
diff --git a/docs/graphql/manual/schema/export-graphql-schema.rst b/docs/graphql/core/schema/export-graphql-schema.rst
similarity index 98%
rename from docs/graphql/manual/schema/export-graphql-schema.rst
rename to docs/graphql/core/schema/export-graphql-schema.rst
index 551ee675865..7f312b0a007 100644
--- a/docs/graphql/manual/schema/export-graphql-schema.rst
+++ b/docs/graphql/core/schema/export-graphql-schema.rst
@@ -12,6 +12,9 @@ Exporting the Hasura GraphQL schema
   :depth: 1
   :local:
 
+Introduction
+------------
+
 If you need to share, introspect or export the GraphQL schema, you can use community tooling such as
 `graphqurl <https://github.com/hasura/graphqurl>`__, `Apollo CLI <https://github.com/apollographql/apollo-tooling>`__,
 `get-graphql-schema <https://github.com/prismagraphql/get-graphql-schema>`__, etc.
diff --git a/docs/graphql/manual/schema/import-database.rst.wip b/docs/graphql/core/schema/import-database.rst.wip
similarity index 100%
rename from docs/graphql/manual/schema/import-database.rst.wip
rename to docs/graphql/core/schema/import-database.rst.wip
diff --git a/docs/graphql/manual/schema/index.rst b/docs/graphql/core/schema/index.rst
similarity index 100%
rename from docs/graphql/manual/schema/index.rst
rename to docs/graphql/core/schema/index.rst
diff --git a/docs/graphql/manual/schema/relay-schema.rst b/docs/graphql/core/schema/relay-schema.rst
similarity index 98%
rename from docs/graphql/manual/schema/relay-schema.rst
rename to docs/graphql/core/schema/relay-schema.rst
index 973d4895b56..54b3f80386c 100644
--- a/docs/graphql/manual/schema/relay-schema.rst
+++ b/docs/graphql/core/schema/relay-schema.rst
@@ -17,7 +17,7 @@ Introduction
 
 The Hasura GraphQL engine serves a `Relay <https://relay.dev/>`__ schema for Postgres tables which have a primary key defined. The Relay schema can be accessed through the ``/v1beta1/relay`` endpoint.
 
-.. thumbnail:: /img/graphql/manual/schema/relay.png
+.. thumbnail:: /img/graphql/core/schema/relay.png
    :alt: Relay API toggle
 
 .. admonition:: Supported from
diff --git a/docs/graphql/manual/schema/remote-relationships/action-relationships.rst b/docs/graphql/core/schema/remote-relationships/action-relationships.rst
similarity index 97%
rename from docs/graphql/manual/schema/remote-relationships/action-relationships.rst
rename to docs/graphql/core/schema/remote-relationships/action-relationships.rst
index b9954c3a273..a4053db0bbb 100644
--- a/docs/graphql/manual/schema/remote-relationships/action-relationships.rst
+++ b/docs/graphql/core/schema/remote-relationships/action-relationships.rst
@@ -34,7 +34,7 @@ Step 1: Open the action relationship section
 - From your action, go to the ``Relationships`` tab.
 - Click ``Add a relationship``.
 
-.. thumbnail:: /img/graphql/manual/remote-joins/action-rel.png
+.. thumbnail:: /img/graphql/core/remote-joins/action-rel.png
    :alt: Opening the action relationship section
    :width: 559px
 
@@ -63,7 +63,7 @@ The following values can be defined for an action relationship:
 
     In the section opened by the above step, fill out the following fields:
 
-    .. thumbnail:: /img/graphql/manual/remote-joins/define-action-rel.png
+    .. thumbnail:: /img/graphql/core/remote-joins/define-action-rel.png
       :alt: Defining the relationship
       :width: 850px
 
diff --git a/docs/graphql/manual/schema/remote-relationships/index.rst b/docs/graphql/core/schema/remote-relationships/index.rst
similarity index 100%
rename from docs/graphql/manual/schema/remote-relationships/index.rst
rename to docs/graphql/core/schema/remote-relationships/index.rst
diff --git a/docs/graphql/manual/schema/remote-relationships/remote-schema-relationships.rst b/docs/graphql/core/schema/remote-relationships/remote-schema-relationships.rst
similarity index 97%
rename from docs/graphql/manual/schema/remote-relationships/remote-schema-relationships.rst
rename to docs/graphql/core/schema/remote-relationships/remote-schema-relationships.rst
index bcf9a85b169..37da0474a8c 100644
--- a/docs/graphql/manual/schema/remote-relationships/remote-schema-relationships.rst
+++ b/docs/graphql/core/schema/remote-relationships/remote-schema-relationships.rst
@@ -43,7 +43,7 @@ Step 1: Open the remote relationship section
 - From your table, go to the ``Relationships`` tab.
 - Click the ``Add a remote relationship`` button.
 
-.. thumbnail:: /img/graphql/manual/remote-joins/add.png
+.. thumbnail:: /img/graphql/core/remote-joins/add.png
    :alt: Opening the remote relationship section
    :width: 1000px
 
@@ -66,7 +66,7 @@ For this example, we assume that our schema has a ``users`` table with the field
 
   .. tab:: Console
 
-    .. thumbnail:: /img/graphql/manual/remote-joins/define.png
+    .. thumbnail:: /img/graphql/core/remote-joins/define.png
       :alt: Defining the relationship
       :width: 800px
 
diff --git a/docs/graphql/manual/schema/table-relationships/create.rst b/docs/graphql/core/schema/table-relationships/create.rst
similarity index 94%
rename from docs/graphql/manual/schema/table-relationships/create.rst
rename to docs/graphql/core/schema/table-relationships/create.rst
index 3859ecb3109..34083252665 100644
--- a/docs/graphql/manual/schema/table-relationships/create.rst
+++ b/docs/graphql/core/schema/table-relationships/create.rst
@@ -38,7 +38,7 @@ In the console, navigate to the ``Modify`` tab of the ``article`` table. Click t
 the Foreign Keys section and configure the ``author_id`` column as a foreign-key for the ``id`` column in
 the ``author`` table:
 
-.. thumbnail:: /img/graphql/manual/schema/add-foreign-key.png
+.. thumbnail:: /img/graphql/core/schema/add-foreign-key.png
    :alt: Add foreign-key constraint
 
 Step 2: Create an object relationship
@@ -51,7 +51,7 @@ The console infers this using the foreign-key created above and recommends the p
 
 Add an ``object relationship`` named ``author`` for the ``article`` table as shown here:
 
-.. thumbnail:: /img/graphql/manual/schema/add-1-1-relationship.png
+.. thumbnail:: /img/graphql/core/schema/add-1-1-relationship.png
    :alt: Create an object relationship
 
 We can now run a nested object query that is based on this ``object relationship``.
@@ -112,7 +112,7 @@ You can add an ``array relationship`` in the same fashion as an ``object relatio
 
 Add an ``array relationship`` named ``articles`` for the ``author`` table as shown here:
 
-.. thumbnail:: /img/graphql/manual/schema/add-1-many-relationship.png
+.. thumbnail:: /img/graphql/core/schema/add-1-many-relationship.png
    :alt: Create an array relationship
 
 We can now run a nested object query that is based on this ``array relationship``.
@@ -203,7 +203,7 @@ Step 1: Open the manual relationship section
 - Open the console and navigate to the ``Data -> author -> Relationships`` tab.
 - Click on the ``Configure`` button:
 
-.. thumbnail:: /img/graphql/manual/schema/manual-relationship-btn.png
+.. thumbnail:: /img/graphql/core/schema/manual-relationship-btn.png
    :alt: Open the manual relationship section
 
 Step 2: Define the relationship
@@ -211,7 +211,7 @@ Step 2: Define the relationship
 
 The above step will open up a section as shown below:
 
-.. thumbnail:: /img/graphql/manual/schema/manual-relationship-create.png
+.. thumbnail:: /img/graphql/core/schema/manual-relationship-create.png
    :alt: Define the relationship
 
 In this case:
diff --git a/docs/graphql/manual/schema/table-relationships/database-modelling/index.rst b/docs/graphql/core/schema/table-relationships/database-modelling/index.rst
similarity index 100%
rename from docs/graphql/manual/schema/table-relationships/database-modelling/index.rst
rename to docs/graphql/core/schema/table-relationships/database-modelling/index.rst
diff --git a/docs/graphql/manual/schema/table-relationships/database-modelling/many-to-many.rst b/docs/graphql/core/schema/table-relationships/database-modelling/many-to-many.rst
similarity index 100%
rename from docs/graphql/manual/schema/table-relationships/database-modelling/many-to-many.rst
rename to docs/graphql/core/schema/table-relationships/database-modelling/many-to-many.rst
diff --git a/docs/graphql/manual/schema/table-relationships/database-modelling/one-to-many.rst b/docs/graphql/core/schema/table-relationships/database-modelling/one-to-many.rst
similarity index 100%
rename from docs/graphql/manual/schema/table-relationships/database-modelling/one-to-many.rst
rename to docs/graphql/core/schema/table-relationships/database-modelling/one-to-many.rst
diff --git a/docs/graphql/manual/schema/table-relationships/database-modelling/one-to-one.rst b/docs/graphql/core/schema/table-relationships/database-modelling/one-to-one.rst
similarity index 100%
rename from docs/graphql/manual/schema/table-relationships/database-modelling/one-to-one.rst
rename to docs/graphql/core/schema/table-relationships/database-modelling/one-to-one.rst
diff --git a/docs/graphql/manual/schema/table-relationships/index.rst b/docs/graphql/core/schema/table-relationships/index.rst
similarity index 100%
rename from docs/graphql/manual/schema/table-relationships/index.rst
rename to docs/graphql/core/schema/table-relationships/index.rst
diff --git a/docs/graphql/manual/schema/table-relationships/rename.rst b/docs/graphql/core/schema/table-relationships/rename.rst
similarity index 100%
rename from docs/graphql/manual/schema/table-relationships/rename.rst
rename to docs/graphql/core/schema/table-relationships/rename.rst
diff --git a/docs/graphql/manual/schema/using-existing-database.rst b/docs/graphql/core/schema/using-existing-database.rst
similarity index 99%
rename from docs/graphql/manual/schema/using-existing-database.rst
rename to docs/graphql/core/schema/using-existing-database.rst
index edffb38915f..dd2bf89281c 100644
--- a/docs/graphql/manual/schema/using-existing-database.rst
+++ b/docs/graphql/core/schema/using-existing-database.rst
@@ -12,6 +12,9 @@ Setting up a GraphQL schema using an existing database
   :depth: 1
   :local:
 
+Introduction
+------------
+
 When you have an existing database with a schema already present, you don't need to create tables or views or run
 DDL queries through the Hasura console.
 
diff --git a/docs/graphql/manual/schema/views.rst b/docs/graphql/core/schema/views.rst
similarity index 100%
rename from docs/graphql/manual/schema/views.rst
rename to docs/graphql/core/schema/views.rst
diff --git a/docs/graphql/manual/security-disclosure/index.rst b/docs/graphql/core/security-disclosure/index.rst
similarity index 100%
rename from docs/graphql/manual/security-disclosure/index.rst
rename to docs/graphql/core/security-disclosure/index.rst
diff --git a/docs/graphql/manual/subscriptions/index.rst b/docs/graphql/core/subscriptions/index.rst
similarity index 100%
rename from docs/graphql/manual/subscriptions/index.rst
rename to docs/graphql/core/subscriptions/index.rst
diff --git a/docs/graphql/manual/subscriptions/use-cases.rst b/docs/graphql/core/subscriptions/use-cases.rst
similarity index 99%
rename from docs/graphql/manual/subscriptions/use-cases.rst
rename to docs/graphql/core/subscriptions/use-cases.rst
index 6c788eaa632..787df5c4588 100644
--- a/docs/graphql/manual/subscriptions/use-cases.rst
+++ b/docs/graphql/core/subscriptions/use-cases.rst
@@ -12,6 +12,9 @@ Subscriptions sample use cases
   :depth: 1
   :local:
 
+Introduction
+------------
+
 The following are a few use cases for using subscriptions:
 
 .. _subscribe_field:
diff --git a/docs/graphql/manual/troubleshooting/index.rst b/docs/graphql/core/troubleshooting/index.rst
similarity index 100%
rename from docs/graphql/manual/troubleshooting/index.rst
rename to docs/graphql/core/troubleshooting/index.rst
diff --git a/docs/graphql/manual/version-control/index.rst.wip b/docs/graphql/core/version-control/index.rst.wip
similarity index 100%
rename from docs/graphql/manual/version-control/index.rst.wip
rename to docs/graphql/core/version-control/index.rst.wip
diff --git a/docs/img/graphql/cloud/getting-started/connect-db.png b/docs/img/graphql/cloud/getting-started/connect-db.png
new file mode 100644
index 00000000000..90cf2a52ac4
Binary files /dev/null and b/docs/img/graphql/cloud/getting-started/connect-db.png differ
diff --git a/docs/img/graphql/cloud/getting-started/connect-existing-db.png b/docs/img/graphql/cloud/getting-started/connect-existing-db.png
new file mode 100644
index 00000000000..c5811fc1f78
Binary files /dev/null and b/docs/img/graphql/cloud/getting-started/connect-existing-db.png differ
diff --git a/docs/img/graphql/cloud/getting-started/create-project-existing-db.png b/docs/img/graphql/cloud/getting-started/create-project-existing-db.png
new file mode 100644
index 00000000000..47ea6e46092
Binary files /dev/null and b/docs/img/graphql/cloud/getting-started/create-project-existing-db.png differ
diff --git a/docs/img/graphql/cloud/getting-started/create-project-new-db.png b/docs/img/graphql/cloud/getting-started/create-project-new-db.png
new file mode 100644
index 00000000000..7b7f284b374
Binary files /dev/null and b/docs/img/graphql/cloud/getting-started/create-project-new-db.png differ
diff --git a/docs/img/graphql/cloud/getting-started/project-actions.png b/docs/img/graphql/cloud/getting-started/project-actions.png
new file mode 100644
index 00000000000..e02abd6cac5
Binary files /dev/null and b/docs/img/graphql/cloud/getting-started/project-actions.png differ
diff --git a/docs/img/graphql/cloud/getting-started/project-functionalities.png b/docs/img/graphql/cloud/getting-started/project-functionalities.png
new file mode 100644
index 00000000000..46bcb1661ca
Binary files /dev/null and b/docs/img/graphql/cloud/getting-started/project-functionalities.png differ
diff --git a/docs/img/graphql/cloud/metrics/inspect-error.png b/docs/img/graphql/cloud/metrics/inspect-error.png
new file mode 100644
index 00000000000..4a3a58aa61c
Binary files /dev/null and b/docs/img/graphql/cloud/metrics/inspect-error.png differ
diff --git a/docs/img/graphql/cloud/metrics/pro-tab-errors.png b/docs/img/graphql/cloud/metrics/pro-tab-errors.png
new file mode 100644
index 00000000000..6f31becc565
Binary files /dev/null and b/docs/img/graphql/cloud/metrics/pro-tab-errors.png differ
diff --git a/docs/img/graphql/cloud/metrics/pro-tab-operations-inspect.png b/docs/img/graphql/cloud/metrics/pro-tab-operations-inspect.png
new file mode 100644
index 00000000000..e1276aacc3c
Binary files /dev/null and b/docs/img/graphql/cloud/metrics/pro-tab-operations-inspect.png differ
diff --git a/docs/img/graphql/cloud/metrics/pro-tab-operations.png b/docs/img/graphql/cloud/metrics/pro-tab-operations.png
new file mode 100644
index 00000000000..c919fe822db
Binary files /dev/null and b/docs/img/graphql/cloud/metrics/pro-tab-operations.png differ
diff --git a/docs/img/graphql/cloud/metrics/pro-tab-overview.png b/docs/img/graphql/cloud/metrics/pro-tab-overview.png
new file mode 100644
index 00000000000..c53e8b7e295
Binary files /dev/null and b/docs/img/graphql/cloud/metrics/pro-tab-overview.png differ
diff --git a/docs/img/graphql/cloud/metrics/pro-tab-subscription-workers.png b/docs/img/graphql/cloud/metrics/pro-tab-subscription-workers.png
new file mode 100644
index 00000000000..541a6c5d415
Binary files /dev/null and b/docs/img/graphql/cloud/metrics/pro-tab-subscription-workers.png differ
diff --git a/docs/img/graphql/cloud/metrics/pro-tab-usage.png b/docs/img/graphql/cloud/metrics/pro-tab-usage.png
new file mode 100644
index 00000000000..f786e22675a
Binary files /dev/null and b/docs/img/graphql/cloud/metrics/pro-tab-usage.png differ
diff --git a/docs/img/graphql/cloud/metrics/pro-tab-websockets.png b/docs/img/graphql/cloud/metrics/pro-tab-websockets.png
new file mode 100644
index 00000000000..193768e3f72
Binary files /dev/null and b/docs/img/graphql/cloud/metrics/pro-tab-websockets.png differ
diff --git a/docs/img/graphql/cloud/projects/add-collaborator.png b/docs/img/graphql/cloud/projects/add-collaborator.png
new file mode 100644
index 00000000000..ef64b8bb0e0
Binary files /dev/null and b/docs/img/graphql/cloud/projects/add-collaborator.png differ
diff --git a/docs/img/graphql/cloud/projects/add-custom-domain.png b/docs/img/graphql/cloud/projects/add-custom-domain.png
new file mode 100644
index 00000000000..9c23d8ab155
Binary files /dev/null and b/docs/img/graphql/cloud/projects/add-custom-domain.png differ
diff --git a/docs/img/graphql/cloud/projects/add-env-var.png b/docs/img/graphql/cloud/projects/add-env-var.png
new file mode 100644
index 00000000000..bd64e92f717
Binary files /dev/null and b/docs/img/graphql/cloud/projects/add-env-var.png differ
diff --git a/docs/img/graphql/cloud/projects/choose-custom-domain.png b/docs/img/graphql/cloud/projects/choose-custom-domain.png
new file mode 100644
index 00000000000..02dec627248
Binary files /dev/null and b/docs/img/graphql/cloud/projects/choose-custom-domain.png differ
diff --git a/docs/img/graphql/cloud/projects/cloud-create-project.png b/docs/img/graphql/cloud/projects/cloud-create-project.png
new file mode 100644
index 00000000000..fc8ea149714
Binary files /dev/null and b/docs/img/graphql/cloud/projects/cloud-create-project.png differ
diff --git a/docs/img/graphql/cloud/projects/cloud-project-invitation.png b/docs/img/graphql/cloud/projects/cloud-project-invitation.png
new file mode 100644
index 00000000000..fc86089fde3
Binary files /dev/null and b/docs/img/graphql/cloud/projects/cloud-project-invitation.png differ
diff --git a/docs/img/graphql/cloud/projects/cloud-projects-dashboard.png b/docs/img/graphql/cloud/projects/cloud-projects-dashboard.png
new file mode 100644
index 00000000000..12b765aa5ce
Binary files /dev/null and b/docs/img/graphql/cloud/projects/cloud-projects-dashboard.png differ
diff --git a/docs/img/graphql/cloud/projects/create-new-project.png b/docs/img/graphql/cloud/projects/create-new-project.png
new file mode 100644
index 00000000000..fdc6923d4e2
Binary files /dev/null and b/docs/img/graphql/cloud/projects/create-new-project.png differ
diff --git a/docs/img/graphql/cloud/projects/create-project-heroku.png b/docs/img/graphql/cloud/projects/create-project-heroku.png
new file mode 100644
index 00000000000..8e0206aa168
Binary files /dev/null and b/docs/img/graphql/cloud/projects/create-project-heroku.png differ
diff --git a/docs/img/graphql/cloud/projects/dns-settings.png b/docs/img/graphql/cloud/projects/dns-settings.png
new file mode 100644
index 00000000000..9f2e38924ae
Binary files /dev/null and b/docs/img/graphql/cloud/projects/dns-settings.png differ
diff --git a/docs/img/graphql/cloud/projects/dns-validated.png b/docs/img/graphql/cloud/projects/dns-validated.png
new file mode 100644
index 00000000000..43832145b67
Binary files /dev/null and b/docs/img/graphql/cloud/projects/dns-validated.png differ
diff --git a/docs/img/graphql/cloud/projects/dns-validation-pending.png b/docs/img/graphql/cloud/projects/dns-validation-pending.png
new file mode 100644
index 00000000000..2220bc23dcb
Binary files /dev/null and b/docs/img/graphql/cloud/projects/dns-validation-pending.png differ
diff --git a/docs/img/graphql/cloud/projects/existing-db-setup.png b/docs/img/graphql/cloud/projects/existing-db-setup.png
new file mode 100644
index 00000000000..04baa4173bf
Binary files /dev/null and b/docs/img/graphql/cloud/projects/existing-db-setup.png differ
diff --git a/docs/img/graphql/cloud/projects/gcp-postgres-authorized-network.png b/docs/img/graphql/cloud/projects/gcp-postgres-authorized-network.png
new file mode 100644
index 00000000000..3289a668d3a
Binary files /dev/null and b/docs/img/graphql/cloud/projects/gcp-postgres-authorized-network.png differ
diff --git a/docs/img/graphql/cloud/projects/hasura-cloud-ip.png b/docs/img/graphql/cloud/projects/hasura-cloud-ip.png
new file mode 100644
index 00000000000..30248e7443a
Binary files /dev/null and b/docs/img/graphql/cloud/projects/hasura-cloud-ip.png differ
diff --git a/docs/img/graphql/cloud/projects/manage-project.png b/docs/img/graphql/cloud/projects/manage-project.png
new file mode 100644
index 00000000000..8c96ae227ed
Binary files /dev/null and b/docs/img/graphql/cloud/projects/manage-project.png differ
diff --git a/docs/img/graphql/cloud/projects/new-project-hosted.png b/docs/img/graphql/cloud/projects/new-project-hosted.png
new file mode 100644
index 00000000000..d8cb321cb47
Binary files /dev/null and b/docs/img/graphql/cloud/projects/new-project-hosted.png differ
diff --git a/docs/img/graphql/cloud/projects/new-project-self-hosted.png b/docs/img/graphql/cloud/projects/new-project-self-hosted.png
new file mode 100644
index 00000000000..d4e3a182ed1
Binary files /dev/null and b/docs/img/graphql/cloud/projects/new-project-self-hosted.png differ
diff --git a/docs/img/graphql/cloud/projects/project-details.png b/docs/img/graphql/cloud/projects/project-details.png
new file mode 100644
index 00000000000..182cc9c7db2
Binary files /dev/null and b/docs/img/graphql/cloud/projects/project-details.png differ
diff --git a/docs/img/graphql/cloud/projects/projects-delete.png b/docs/img/graphql/cloud/projects/projects-delete.png
new file mode 100644
index 00000000000..4f88d14fb0f
Binary files /dev/null and b/docs/img/graphql/cloud/projects/projects-delete.png differ
diff --git a/docs/img/graphql/cloud/projects/projects-list.png b/docs/img/graphql/cloud/projects/projects-list.png
new file mode 100644
index 00000000000..aa3a4f43c1e
Binary files /dev/null and b/docs/img/graphql/cloud/projects/projects-list.png differ
diff --git a/docs/img/graphql/cloud/projects/secure-add-envvar.png b/docs/img/graphql/cloud/projects/secure-add-envvar.png
new file mode 100644
index 00000000000..f13d8c65a07
Binary files /dev/null and b/docs/img/graphql/cloud/projects/secure-add-envvar.png differ
diff --git a/docs/img/graphql/cloud/projects/secure-envvars.png b/docs/img/graphql/cloud/projects/secure-envvars.png
new file mode 100644
index 00000000000..a4aad0977c0
Binary files /dev/null and b/docs/img/graphql/cloud/projects/secure-envvars.png differ
diff --git a/docs/img/graphql/cloud/projects/secure-settings.png b/docs/img/graphql/cloud/projects/secure-settings.png
new file mode 100644
index 00000000000..759720f2c42
Binary files /dev/null and b/docs/img/graphql/cloud/projects/secure-settings.png differ
diff --git a/docs/img/graphql/cloud/projects/team-view.png b/docs/img/graphql/cloud/projects/team-view.png
new file mode 100644
index 00000000000..6e6247dd841
Binary files /dev/null and b/docs/img/graphql/cloud/projects/team-view.png differ
diff --git a/docs/img/graphql/cloud/reliability/regression-testing-diagram.png b/docs/img/graphql/cloud/reliability/regression-testing-diagram.png
new file mode 100644
index 00000000000..36c6b7eb43e
Binary files /dev/null and b/docs/img/graphql/cloud/reliability/regression-testing-diagram.png differ
diff --git a/docs/img/graphql/cloud/reliability/regression-tests-add-operations.png b/docs/img/graphql/cloud/reliability/regression-tests-add-operations.png
new file mode 100644
index 00000000000..a175a0d4c08
Binary files /dev/null and b/docs/img/graphql/cloud/reliability/regression-tests-add-operations.png differ
diff --git a/docs/img/graphql/cloud/reliability/regression-tests-past-runs.png b/docs/img/graphql/cloud/reliability/regression-tests-past-runs.png
new file mode 100644
index 00000000000..955a116666e
Binary files /dev/null and b/docs/img/graphql/cloud/reliability/regression-tests-past-runs.png differ
diff --git a/docs/img/graphql/cloud/reliability/regression-tests-results.png b/docs/img/graphql/cloud/reliability/regression-tests-results.png
new file mode 100644
index 00000000000..2e83c2bc2ee
Binary files /dev/null and b/docs/img/graphql/cloud/reliability/regression-tests-results.png differ
diff --git a/docs/img/graphql/cloud/reliability/regression-tests-run-cli.png b/docs/img/graphql/cloud/reliability/regression-tests-run-cli.png
new file mode 100644
index 00000000000..52ed955e607
Binary files /dev/null and b/docs/img/graphql/cloud/reliability/regression-tests-run-cli.png differ
diff --git a/docs/img/graphql/cloud/reliability/regression-tests-run-tests.png b/docs/img/graphql/cloud/reliability/regression-tests-run-tests.png
new file mode 100644
index 00000000000..922766d7e57
Binary files /dev/null and b/docs/img/graphql/cloud/reliability/regression-tests-run-tests.png differ
diff --git a/docs/img/graphql/cloud/reliability/regression-tests-suites.png b/docs/img/graphql/cloud/reliability/regression-tests-suites.png
new file mode 100644
index 00000000000..b7f52ec9571
Binary files /dev/null and b/docs/img/graphql/cloud/reliability/regression-tests-suites.png differ
diff --git a/docs/img/graphql/cloud/reliability/regressions-run-prod-tests-on-dev.png b/docs/img/graphql/cloud/reliability/regressions-run-prod-tests-on-dev.png
new file mode 100644
index 00000000000..df808a6316b
Binary files /dev/null and b/docs/img/graphql/cloud/reliability/regressions-run-prod-tests-on-dev.png differ
diff --git a/docs/img/graphql/cloud/security/allowlist-add-new-op.png b/docs/img/graphql/cloud/security/allowlist-add-new-op.png
new file mode 100644
index 00000000000..cece5e69020
Binary files /dev/null and b/docs/img/graphql/cloud/security/allowlist-add-new-op.png differ
diff --git a/docs/img/graphql/cloud/security/pro-tab-apilimit-config.png b/docs/img/graphql/cloud/security/pro-tab-apilimit-config.png
new file mode 100644
index 00000000000..45a68e00857
Binary files /dev/null and b/docs/img/graphql/cloud/security/pro-tab-apilimit-config.png differ
diff --git a/docs/img/graphql/cloud/security/pro-tab-apilimits.png b/docs/img/graphql/cloud/security/pro-tab-apilimits.png
new file mode 100644
index 00000000000..413b98938b3
Binary files /dev/null and b/docs/img/graphql/cloud/security/pro-tab-apilimits.png differ
diff --git a/docs/img/graphql/cloud/security/pro-tabs-allowlist.png b/docs/img/graphql/cloud/security/pro-tabs-allowlist.png
new file mode 100644
index 00000000000..ae16a14b968
Binary files /dev/null and b/docs/img/graphql/cloud/security/pro-tabs-allowlist.png differ
diff --git a/docs/img/graphql/cloud/tracing/tracing-operations-timing.png b/docs/img/graphql/cloud/tracing/tracing-operations-timing.png
new file mode 100644
index 00000000000..aee7ee14c16
Binary files /dev/null and b/docs/img/graphql/cloud/tracing/tracing-operations-timing.png differ
diff --git a/docs/img/graphql/manual/actions/action-array-relationship.png b/docs/img/graphql/core/actions/action-array-relationship.png
similarity index 100%
rename from docs/img/graphql/manual/actions/action-array-relationship.png
rename to docs/img/graphql/core/actions/action-array-relationship.png
diff --git a/docs/img/graphql/manual/actions/action-object-relationship.png b/docs/img/graphql/core/actions/action-object-relationship.png
similarity index 100%
rename from docs/img/graphql/manual/actions/action-object-relationship.png
rename to docs/img/graphql/core/actions/action-object-relationship.png
diff --git a/docs/img/graphql/manual/actions/action-secret-header.png b/docs/img/graphql/core/actions/action-secret-header.png
similarity index 100%
rename from docs/img/graphql/manual/actions/action-secret-header.png
rename to docs/img/graphql/core/actions/action-secret-header.png
diff --git a/docs/img/graphql/manual/actions/actions-arch.png b/docs/img/graphql/core/actions/actions-arch.png
similarity index 100%
rename from docs/img/graphql/manual/actions/actions-arch.png
rename to docs/img/graphql/core/actions/actions-arch.png
diff --git a/docs/img/graphql/manual/actions/actions-derive-button.png b/docs/img/graphql/core/actions/actions-derive-button.png
similarity index 100%
rename from docs/img/graphql/manual/actions/actions-derive-button.png
rename to docs/img/graphql/core/actions/actions-derive-button.png
diff --git a/docs/img/graphql/manual/actions/actions-derive-codegen.png b/docs/img/graphql/core/actions/actions-derive-codegen.png
similarity index 100%
rename from docs/img/graphql/manual/actions/actions-derive-codegen.png
rename to docs/img/graphql/core/actions/actions-derive-codegen.png
diff --git a/docs/img/graphql/manual/actions/actions-derive-types.png b/docs/img/graphql/core/actions/actions-derive-types.png
similarity index 100%
rename from docs/img/graphql/manual/actions/actions-derive-types.png
rename to docs/img/graphql/core/actions/actions-derive-types.png
diff --git a/docs/img/graphql/manual/actions/actions-permissions.png b/docs/img/graphql/core/actions/actions-permissions.png
similarity index 100%
rename from docs/img/graphql/manual/actions/actions-permissions.png
rename to docs/img/graphql/core/actions/actions-permissions.png
diff --git a/docs/img/graphql/manual/actions/actions-relationship.png b/docs/img/graphql/core/actions/actions-relationship.png
similarity index 100%
rename from docs/img/graphql/manual/actions/actions-relationship.png
rename to docs/img/graphql/core/actions/actions-relationship.png
diff --git a/docs/img/graphql/manual/actions/cli-framework-prompt.png b/docs/img/graphql/core/actions/cli-framework-prompt.png
similarity index 100%
rename from docs/img/graphql/manual/actions/cli-framework-prompt.png
rename to docs/img/graphql/core/actions/cli-framework-prompt.png
diff --git a/docs/img/graphql/manual/actions/cli-output-dir-prompt.png b/docs/img/graphql/core/actions/cli-output-dir-prompt.png
similarity index 100%
rename from docs/img/graphql/manual/actions/cli-output-dir-prompt.png
rename to docs/img/graphql/core/actions/cli-output-dir-prompt.png
diff --git a/docs/img/graphql/manual/actions/cli-starter-kit-prompt.png b/docs/img/graphql/core/actions/cli-starter-kit-prompt.png
similarity index 100%
rename from docs/img/graphql/manual/actions/cli-starter-kit-prompt.png
rename to docs/img/graphql/core/actions/cli-starter-kit-prompt.png
diff --git a/docs/img/graphql/manual/actions/console-codegen-tab.png b/docs/img/graphql/core/actions/console-codegen-tab.png
similarity index 100%
rename from docs/img/graphql/manual/actions/console-codegen-tab.png
rename to docs/img/graphql/core/actions/console-codegen-tab.png
diff --git a/docs/img/graphql/manual/actions/mutation-action-create.png b/docs/img/graphql/core/actions/mutation-action-create.png
similarity index 100%
rename from docs/img/graphql/manual/actions/mutation-action-create.png
rename to docs/img/graphql/core/actions/mutation-action-create.png
diff --git a/docs/img/graphql/manual/actions/query-action-create.png b/docs/img/graphql/core/actions/query-action-create.png
similarity index 100%
rename from docs/img/graphql/manual/actions/query-action-create.png
rename to docs/img/graphql/core/actions/query-action-create.png
diff --git a/docs/img/graphql/manual/actions/update-address-action-definition.png b/docs/img/graphql/core/actions/update-address-action-definition.png
similarity index 100%
rename from docs/img/graphql/manual/actions/update-address-action-definition.png
rename to docs/img/graphql/core/actions/update-address-action-definition.png
diff --git a/docs/img/graphql/manual/actions/update-author-action-definition.png b/docs/img/graphql/core/actions/update-author-action-definition.png
similarity index 100%
rename from docs/img/graphql/manual/actions/update-author-action-definition.png
rename to docs/img/graphql/core/actions/update-author-action-definition.png
diff --git a/docs/img/graphql/manual/auth/aggregation-query-permissions.png b/docs/img/graphql/core/auth/aggregation-query-permissions.png
similarity index 100%
rename from docs/img/graphql/manual/auth/aggregation-query-permissions.png
rename to docs/img/graphql/core/auth/aggregation-query-permissions.png
diff --git a/docs/img/graphql/manual/auth/anonymous-role-examples.png b/docs/img/graphql/core/auth/anonymous-role-examples.png
similarity index 100%
rename from docs/img/graphql/manual/auth/anonymous-role-examples.png
rename to docs/img/graphql/core/auth/anonymous-role-examples.png
diff --git a/docs/img/graphql/manual/auth/array-relationship-reviewers.png b/docs/img/graphql/core/auth/array-relationship-reviewers.png
similarity index 100%
rename from docs/img/graphql/manual/auth/array-relationship-reviewers.png
rename to docs/img/graphql/core/auth/array-relationship-reviewers.png
diff --git a/docs/img/graphql/manual/auth/auth-high-level-overview.png b/docs/img/graphql/core/auth/auth-high-level-overview.png
similarity index 100%
rename from docs/img/graphql/manual/auth/auth-high-level-overview.png
rename to docs/img/graphql/core/auth/auth-high-level-overview.png
diff --git a/docs/img/graphql/manual/auth/auth-jwt-overview.png b/docs/img/graphql/core/auth/auth-jwt-overview.png
similarity index 100%
rename from docs/img/graphql/manual/auth/auth-jwt-overview.png
rename to docs/img/graphql/core/auth/auth-jwt-overview.png
diff --git a/docs/img/graphql/manual/auth/auth-webhook-overview.png b/docs/img/graphql/core/auth/auth-webhook-overview.png
similarity index 100%
rename from docs/img/graphql/manual/auth/auth-webhook-overview.png
rename to docs/img/graphql/core/auth/auth-webhook-overview.png
diff --git a/docs/img/graphql/manual/auth/author-insert-permissions.png b/docs/img/graphql/core/auth/author-insert-permissions.png
similarity index 100%
rename from docs/img/graphql/manual/auth/author-insert-permissions.png
rename to docs/img/graphql/core/auth/author-insert-permissions.png
diff --git a/docs/img/graphql/manual/auth/author-select-perms.png b/docs/img/graphql/core/auth/author-select-perms.png
similarity index 100%
rename from docs/img/graphql/manual/auth/author-select-perms.png
rename to docs/img/graphql/core/auth/author-select-perms.png
diff --git a/docs/img/graphql/manual/auth/author-table.png b/docs/img/graphql/core/auth/author-table.png
similarity index 100%
rename from docs/img/graphql/manual/auth/author-table.png
rename to docs/img/graphql/core/auth/author-table.png
diff --git a/docs/img/graphql/manual/auth/boolean-operators.png b/docs/img/graphql/core/auth/boolean-operators.png
similarity index 100%
rename from docs/img/graphql/manual/auth/boolean-operators.png
rename to docs/img/graphql/core/auth/boolean-operators.png
diff --git a/docs/img/graphql/manual/auth/collaborator-relationship.png b/docs/img/graphql/core/auth/collaborator-relationship.png
similarity index 100%
rename from docs/img/graphql/manual/auth/collaborator-relationship.png
rename to docs/img/graphql/core/auth/collaborator-relationship.png
diff --git a/docs/img/graphql/manual/auth/column-level-permissions.png b/docs/img/graphql/core/auth/column-level-permissions.png
similarity index 100%
rename from docs/img/graphql/manual/auth/column-level-permissions.png
rename to docs/img/graphql/core/auth/column-level-permissions.png
diff --git a/docs/img/graphql/manual/auth/composite-boolean-expression.png b/docs/img/graphql/core/auth/composite-boolean-expression.png
similarity index 100%
rename from docs/img/graphql/manual/auth/composite-boolean-expression.png
rename to docs/img/graphql/core/auth/composite-boolean-expression.png
diff --git a/docs/img/graphql/manual/auth/dev-mode-auth.png b/docs/img/graphql/core/auth/dev-mode-auth.png
similarity index 100%
rename from docs/img/graphql/manual/auth/dev-mode-auth.png
rename to docs/img/graphql/core/auth/dev-mode-auth.png
diff --git a/docs/img/graphql/manual/auth/dev-mode-role-header-access-key.png b/docs/img/graphql/core/auth/dev-mode-role-header-access-key.png
similarity index 100%
rename from docs/img/graphql/manual/auth/dev-mode-role-header-access-key.png
rename to docs/img/graphql/core/auth/dev-mode-role-header-access-key.png
diff --git a/docs/img/graphql/manual/auth/dev-mode-role-header.png b/docs/img/graphql/core/auth/dev-mode-role-header.png
similarity index 100%
rename from docs/img/graphql/manual/auth/dev-mode-role-header.png
rename to docs/img/graphql/core/auth/dev-mode-role-header.png
diff --git a/docs/img/graphql/manual/auth/exists-permission-example.png b/docs/img/graphql/core/auth/exists-permission-example.png
similarity index 100%
rename from docs/img/graphql/manual/auth/exists-permission-example.png
rename to docs/img/graphql/core/auth/exists-permission-example.png
diff --git a/docs/img/graphql/manual/auth/fetch-authors.png b/docs/img/graphql/core/auth/fetch-authors.png
similarity index 100%
rename from docs/img/graphql/manual/auth/fetch-authors.png
rename to docs/img/graphql/core/auth/fetch-authors.png
diff --git a/docs/img/graphql/manual/auth/github-org-hierarchical-roles.png b/docs/img/graphql/core/auth/github-org-hierarchical-roles.png
similarity index 100%
rename from docs/img/graphql/manual/auth/github-org-hierarchical-roles.png
rename to docs/img/graphql/core/auth/github-org-hierarchical-roles.png
diff --git a/docs/img/graphql/manual/auth/hasura-perms.png b/docs/img/graphql/core/auth/hasura-perms.png
similarity index 100%
rename from docs/img/graphql/manual/auth/hasura-perms.png
rename to docs/img/graphql/core/auth/hasura-perms.png
diff --git a/docs/img/graphql/manual/auth/jwt-auth.png b/docs/img/graphql/core/auth/jwt-auth.png
similarity index 100%
rename from docs/img/graphql/manual/auth/jwt-auth.png
rename to docs/img/graphql/core/auth/jwt-auth.png
diff --git a/docs/img/graphql/manual/auth/jwt-config-generated.png b/docs/img/graphql/core/auth/jwt-config-generated.png
similarity index 100%
rename from docs/img/graphql/manual/auth/jwt-config-generated.png
rename to docs/img/graphql/core/auth/jwt-config-generated.png
diff --git a/docs/img/graphql/manual/auth/limit-results.png b/docs/img/graphql/core/auth/limit-results.png
similarity index 100%
rename from docs/img/graphql/manual/auth/limit-results.png
rename to docs/img/graphql/core/auth/limit-results.png
diff --git a/docs/img/graphql/manual/auth/limit-rows-for-select.png b/docs/img/graphql/core/auth/limit-rows-for-select.png
similarity index 100%
rename from docs/img/graphql/manual/auth/limit-rows-for-select.png
rename to docs/img/graphql/core/auth/limit-rows-for-select.png
diff --git a/docs/img/graphql/manual/auth/multiple-rules-create-manual-relationship.png b/docs/img/graphql/core/auth/multiple-rules-create-manual-relationship.png
similarity index 100%
rename from docs/img/graphql/manual/auth/multiple-rules-create-manual-relationship.png
rename to docs/img/graphql/core/auth/multiple-rules-create-manual-relationship.png
diff --git a/docs/img/graphql/manual/auth/multiple-rules-define-private-permissions.png b/docs/img/graphql/core/auth/multiple-rules-define-private-permissions.png
similarity index 100%
rename from docs/img/graphql/manual/auth/multiple-rules-define-private-permissions.png
rename to docs/img/graphql/core/auth/multiple-rules-define-private-permissions.png
diff --git a/docs/img/graphql/manual/auth/multiple-rules-define-public-permissions.png b/docs/img/graphql/core/auth/multiple-rules-define-public-permissions.png
similarity index 100%
rename from docs/img/graphql/manual/auth/multiple-rules-define-public-permissions.png
rename to docs/img/graphql/core/auth/multiple-rules-define-public-permissions.png
diff --git a/docs/img/graphql/manual/auth/multirole-example-author-insert.png b/docs/img/graphql/core/auth/multirole-example-author-insert.png
similarity index 100%
rename from docs/img/graphql/manual/auth/multirole-example-author-insert.png
rename to docs/img/graphql/core/auth/multirole-example-author-insert.png
diff --git a/docs/img/graphql/manual/auth/multirole-example-author-select.png b/docs/img/graphql/core/auth/multirole-example-author-select.png
similarity index 100%
rename from docs/img/graphql/manual/auth/multirole-example-author-select.png
rename to docs/img/graphql/core/auth/multirole-example-author-select.png
diff --git a/docs/img/graphql/manual/auth/multirole-example-db-schema.png b/docs/img/graphql/core/auth/multirole-example-db-schema.png
similarity index 100%
rename from docs/img/graphql/manual/auth/multirole-example-db-schema.png
rename to docs/img/graphql/core/auth/multirole-example-db-schema.png
diff --git a/docs/img/graphql/manual/auth/multirole-example-editor-select.png b/docs/img/graphql/core/auth/multirole-example-editor-select.png
similarity index 100%
rename from docs/img/graphql/manual/auth/multirole-example-editor-select.png
rename to docs/img/graphql/core/auth/multirole-example-editor-select.png
diff --git a/docs/img/graphql/manual/auth/multirole-example-editor-update.png b/docs/img/graphql/core/auth/multirole-example-editor-update.png
similarity index 100%
rename from docs/img/graphql/manual/auth/multirole-example-editor-update.png
rename to docs/img/graphql/core/auth/multirole-example-editor-update.png
diff --git a/docs/img/graphql/manual/auth/multirole-example-reviewer-select.png b/docs/img/graphql/core/auth/multirole-example-reviewer-select.png
similarity index 100%
rename from docs/img/graphql/manual/auth/multirole-example-reviewer-select.png
rename to docs/img/graphql/core/auth/multirole-example-reviewer-select.png
diff --git a/docs/img/graphql/manual/auth/multirole-example-reviewer-update.png b/docs/img/graphql/core/auth/multirole-example-reviewer-update.png
similarity index 100%
rename from docs/img/graphql/manual/auth/multirole-example-reviewer-update.png
rename to docs/img/graphql/core/auth/multirole-example-reviewer-update.png
diff --git a/docs/img/graphql/manual/auth/multirole-example-reviewers-array-relationship.png b/docs/img/graphql/core/auth/multirole-example-reviewers-array-relationship.png
similarity index 100%
rename from docs/img/graphql/manual/auth/multirole-example-reviewers-array-relationship.png
rename to docs/img/graphql/core/auth/multirole-example-reviewers-array-relationship.png
diff --git a/docs/img/graphql/manual/auth/multirole-setup.png b/docs/img/graphql/core/auth/multirole-setup.png
similarity index 100%
rename from docs/img/graphql/manual/auth/multirole-setup.png
rename to docs/img/graphql/core/auth/multirole-setup.png
diff --git a/docs/img/graphql/manual/auth/nested-object-permission-reviewer-role.png b/docs/img/graphql/core/auth/nested-object-permission-reviewer-role.png
similarity index 100%
rename from docs/img/graphql/manual/auth/nested-object-permission-reviewer-role.png
rename to docs/img/graphql/core/auth/nested-object-permission-reviewer-role.png
diff --git a/docs/img/graphql/manual/auth/nested-object-permission-simple-example.png b/docs/img/graphql/core/auth/nested-object-permission-simple-example.png
similarity index 100%
rename from docs/img/graphql/manual/auth/nested-object-permission-simple-example.png
rename to docs/img/graphql/core/auth/nested-object-permission-simple-example.png
diff --git a/docs/img/graphql/manual/auth/nested-object-permissions-rule.gif b/docs/img/graphql/core/auth/nested-object-permissions-rule.gif
similarity index 100%
rename from docs/img/graphql/manual/auth/nested-object-permissions-rule.gif
rename to docs/img/graphql/core/auth/nested-object-permissions-rule.gif
diff --git a/docs/img/graphql/manual/auth/operators-for-integer-types.png b/docs/img/graphql/core/auth/operators-for-integer-types.png
similarity index 100%
rename from docs/img/graphql/manual/auth/operators-for-integer-types.png
rename to docs/img/graphql/core/auth/operators-for-integer-types.png
diff --git a/docs/img/graphql/manual/auth/operators-for-text-types.png b/docs/img/graphql/core/auth/operators-for-text-types.png
similarity index 100%
rename from docs/img/graphql/manual/auth/operators-for-text-types.png
rename to docs/img/graphql/core/auth/operators-for-text-types.png
diff --git a/docs/img/graphql/manual/auth/org-manager-graphiql.png b/docs/img/graphql/core/auth/org-manager-graphiql.png
similarity index 100%
rename from docs/img/graphql/manual/auth/org-manager-graphiql.png
rename to docs/img/graphql/core/auth/org-manager-graphiql.png
diff --git a/docs/img/graphql/manual/auth/permission-basics-query-with-access-control.png b/docs/img/graphql/core/auth/permission-basics-query-with-access-control.png
similarity index 100%
rename from docs/img/graphql/manual/auth/permission-basics-query-with-access-control.png
rename to docs/img/graphql/core/auth/permission-basics-query-with-access-control.png
diff --git a/docs/img/graphql/manual/auth/permission-basics-simple-example.png b/docs/img/graphql/core/auth/permission-basics-simple-example.png
similarity index 100%
rename from docs/img/graphql/manual/auth/permission-basics-simple-example.png
rename to docs/img/graphql/core/auth/permission-basics-simple-example.png
diff --git a/docs/img/graphql/manual/auth/permission-rule-granularity.png b/docs/img/graphql/core/auth/permission-rule-granularity.png
similarity index 100%
rename from docs/img/graphql/manual/auth/permission-rule-granularity.png
rename to docs/img/graphql/core/auth/permission-rule-granularity.png
diff --git a/docs/img/graphql/manual/auth/permissions-rule-analogy.png b/docs/img/graphql/core/auth/permissions-rule-analogy.png
similarity index 100%
rename from docs/img/graphql/manual/auth/permissions-rule-analogy.png
rename to docs/img/graphql/core/auth/permissions-rule-analogy.png
diff --git a/docs/img/graphql/manual/auth/query-with-perms.png b/docs/img/graphql/core/auth/query-with-perms.png
similarity index 100%
rename from docs/img/graphql/manual/auth/query-with-perms.png
rename to docs/img/graphql/core/auth/query-with-perms.png
diff --git a/docs/img/graphql/manual/auth/restrict-columns.png b/docs/img/graphql/core/auth/restrict-columns.png
similarity index 100%
rename from docs/img/graphql/manual/auth/restrict-columns.png
rename to docs/img/graphql/core/auth/restrict-columns.png
diff --git a/docs/img/graphql/manual/auth/restricted-data-for-reviewer-role.png b/docs/img/graphql/core/auth/restricted-data-for-reviewer-role.png
similarity index 100%
rename from docs/img/graphql/manual/auth/restricted-data-for-reviewer-role.png
rename to docs/img/graphql/core/auth/restricted-data-for-reviewer-role.png
diff --git a/docs/img/graphql/manual/auth/restricted-data-for-role-reviewer.png b/docs/img/graphql/core/auth/restricted-data-for-role-reviewer.png
similarity index 100%
rename from docs/img/graphql/manual/auth/restricted-data-for-role-reviewer.png
rename to docs/img/graphql/core/auth/restricted-data-for-role-reviewer.png
diff --git a/docs/img/graphql/manual/auth/schema-for-nested-object-based-permissions.png b/docs/img/graphql/core/auth/schema-for-nested-object-based-permissions.png
similarity index 100%
rename from docs/img/graphql/manual/auth/schema-for-nested-object-based-permissions.png
rename to docs/img/graphql/core/auth/schema-for-nested-object-based-permissions.png
diff --git a/docs/img/graphql/manual/auth/session-variables-in-permissions-simple-example.png b/docs/img/graphql/core/auth/session-variables-in-permissions-simple-example.png
similarity index 100%
rename from docs/img/graphql/manual/auth/session-variables-in-permissions-simple-example.png
rename to docs/img/graphql/core/auth/session-variables-in-permissions-simple-example.png
diff --git a/docs/img/graphql/manual/auth/simple-boolean-expression.png b/docs/img/graphql/core/auth/simple-boolean-expression.png
similarity index 100%
rename from docs/img/graphql/manual/auth/simple-boolean-expression.png
rename to docs/img/graphql/core/auth/simple-boolean-expression.png
diff --git a/docs/img/graphql/manual/auth/unsuccessful-mutation-for-role-reviewer.png b/docs/img/graphql/core/auth/unsuccessful-mutation-for-role-reviewer.png
similarity index 100%
rename from docs/img/graphql/manual/auth/unsuccessful-mutation-for-role-reviewer.png
rename to docs/img/graphql/core/auth/unsuccessful-mutation-for-role-reviewer.png
diff --git a/docs/img/graphql/manual/auth/user-select-graphiql.png b/docs/img/graphql/core/auth/user-select-graphiql.png
similarity index 100%
rename from docs/img/graphql/manual/auth/user-select-graphiql.png
rename to docs/img/graphql/core/auth/user-select-graphiql.png
diff --git a/docs/img/graphql/manual/auth/webhook-auth.png b/docs/img/graphql/core/auth/webhook-auth.png
similarity index 100%
rename from docs/img/graphql/manual/auth/webhook-auth.png
rename to docs/img/graphql/core/auth/webhook-auth.png
diff --git a/docs/img/graphql/manual/business-logic/add-remote-schemas-interface.png b/docs/img/graphql/core/business-logic/add-remote-schemas-interface.png
similarity index 100%
rename from docs/img/graphql/manual/business-logic/add-remote-schemas-interface.png
rename to docs/img/graphql/core/business-logic/add-remote-schemas-interface.png
diff --git a/docs/img/graphql/manual/business-logic/custom-business-logic.png b/docs/img/graphql/core/business-logic/custom-business-logic.png
similarity index 100%
rename from docs/img/graphql/manual/business-logic/custom-business-logic.png
rename to docs/img/graphql/core/business-logic/custom-business-logic.png
diff --git a/docs/img/graphql/manual/business-logic/graphql-schema-stitching.png b/docs/img/graphql/core/business-logic/graphql-schema-stitching.png
similarity index 100%
rename from docs/img/graphql/manual/business-logic/graphql-schema-stitching.png
rename to docs/img/graphql/core/business-logic/graphql-schema-stitching.png
diff --git a/docs/img/graphql/manual/business-logic/using-custom-resolvers-and-stitching.png b/docs/img/graphql/core/business-logic/using-custom-resolvers-and-stitching.png
similarity index 100%
rename from docs/img/graphql/manual/business-logic/using-custom-resolvers-and-stitching.png
rename to docs/img/graphql/core/business-logic/using-custom-resolvers-and-stitching.png
diff --git a/docs/img/graphql/manual/deployment/access-key-console.png b/docs/img/graphql/core/deployment/access-key-console.png
similarity index 100%
rename from docs/img/graphql/manual/deployment/access-key-console.png
rename to docs/img/graphql/core/deployment/access-key-console.png
diff --git a/docs/img/graphql/manual/deployment/deploy-to-render-hasura-header.png b/docs/img/graphql/core/deployment/deploy-to-render-hasura-header.png
similarity index 100%
rename from docs/img/graphql/manual/deployment/deploy-to-render-hasura-header.png
rename to docs/img/graphql/core/deployment/deploy-to-render-hasura-header.png
diff --git a/docs/img/graphql/manual/deployment/deploy-to-render-hasura-iac.png b/docs/img/graphql/core/deployment/deploy-to-render-hasura-iac.png
similarity index 100%
rename from docs/img/graphql/manual/deployment/deploy-to-render-hasura-iac.png
rename to docs/img/graphql/core/deployment/deploy-to-render-hasura-iac.png
diff --git a/docs/img/graphql/manual/deployment/heroku-database-url-access.png b/docs/img/graphql/core/deployment/heroku-database-url-access.png
similarity index 100%
rename from docs/img/graphql/manual/deployment/heroku-database-url-access.png
rename to docs/img/graphql/core/deployment/heroku-database-url-access.png
diff --git a/docs/img/graphql/manual/deployment/remove-heroku-postgres-addon.png b/docs/img/graphql/core/deployment/remove-heroku-postgres-addon.png
similarity index 100%
rename from docs/img/graphql/manual/deployment/remove-heroku-postgres-addon.png
rename to docs/img/graphql/core/deployment/remove-heroku-postgres-addon.png
diff --git a/docs/img/graphql/manual/deployment/schema_permissions_summary.png b/docs/img/graphql/core/deployment/schema_permissions_summary.png
similarity index 100%
rename from docs/img/graphql/manual/deployment/schema_permissions_summary.png
rename to docs/img/graphql/core/deployment/schema_permissions_summary.png
diff --git a/docs/img/graphql/manual/deployment/secure-heroku.png b/docs/img/graphql/core/deployment/secure-heroku.png
similarity index 100%
rename from docs/img/graphql/manual/deployment/secure-heroku.png
rename to docs/img/graphql/core/deployment/secure-heroku.png
diff --git a/docs/img/graphql/manual/engine-internals/hdb_permission.jpg b/docs/img/graphql/core/engine-internals/hdb_permission.jpg
similarity index 100%
rename from docs/img/graphql/manual/engine-internals/hdb_permission.jpg
rename to docs/img/graphql/core/engine-internals/hdb_permission.jpg
diff --git a/docs/img/graphql/manual/engine-internals/hdb_relationship.jpg b/docs/img/graphql/core/engine-internals/hdb_relationship.jpg
similarity index 100%
rename from docs/img/graphql/manual/engine-internals/hdb_relationship.jpg
rename to docs/img/graphql/core/engine-internals/hdb_relationship.jpg
diff --git a/docs/img/graphql/manual/engine-internals/hdb_table.jpg b/docs/img/graphql/core/engine-internals/hdb_table.jpg
similarity index 100%
rename from docs/img/graphql/manual/engine-internals/hdb_table.jpg
rename to docs/img/graphql/core/engine-internals/hdb_table.jpg
diff --git a/docs/img/graphql/manual/event-triggers/advanced-cron.png b/docs/img/graphql/core/event-triggers/advanced-cron.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/advanced-cron.png
rename to docs/img/graphql/core/event-triggers/advanced-cron.png
diff --git a/docs/img/graphql/manual/event-triggers/advanced-one-off.png b/docs/img/graphql/core/event-triggers/advanced-one-off.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/advanced-one-off.png
rename to docs/img/graphql/core/event-triggers/advanced-one-off.png
diff --git a/docs/img/graphql/manual/event-triggers/create-cron.png b/docs/img/graphql/core/event-triggers/create-cron.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/create-cron.png
rename to docs/img/graphql/core/event-triggers/create-cron.png
diff --git a/docs/img/graphql/manual/event-triggers/create-event-trigger-advanced-settings.png b/docs/img/graphql/core/event-triggers/create-event-trigger-advanced-settings.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/create-event-trigger-advanced-settings.png
rename to docs/img/graphql/core/event-triggers/create-event-trigger-advanced-settings.png
diff --git a/docs/img/graphql/manual/event-triggers/create-event-trigger.png b/docs/img/graphql/core/event-triggers/create-event-trigger.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/create-event-trigger.png
rename to docs/img/graphql/core/event-triggers/create-event-trigger.png
diff --git a/docs/img/graphql/manual/event-triggers/data-triggers-arch.png b/docs/img/graphql/core/event-triggers/data-triggers-arch.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/data-triggers-arch.png
rename to docs/img/graphql/core/event-triggers/data-triggers-arch.png
diff --git a/docs/img/graphql/manual/event-triggers/define-cron-trigger.png b/docs/img/graphql/core/event-triggers/define-cron-trigger.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/define-cron-trigger.png
rename to docs/img/graphql/core/event-triggers/define-cron-trigger.png
diff --git a/docs/img/graphql/manual/event-triggers/define-one-off-event.png b/docs/img/graphql/core/event-triggers/define-one-off-event.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/define-one-off-event.png
rename to docs/img/graphql/core/event-triggers/define-one-off-event.png
diff --git a/docs/img/graphql/manual/event-triggers/one-off.png b/docs/img/graphql/core/event-triggers/one-off.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/one-off.png
rename to docs/img/graphql/core/event-triggers/one-off.png
diff --git a/docs/img/graphql/manual/event-triggers/pending-cron.png b/docs/img/graphql/core/event-triggers/pending-cron.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/pending-cron.png
rename to docs/img/graphql/core/event-triggers/pending-cron.png
diff --git a/docs/img/graphql/manual/event-triggers/pending-one-off.png b/docs/img/graphql/core/event-triggers/pending-one-off.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/pending-one-off.png
rename to docs/img/graphql/core/event-triggers/pending-one-off.png
diff --git a/docs/img/graphql/manual/event-triggers/run-manual-trigger.png b/docs/img/graphql/core/event-triggers/run-manual-trigger.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/run-manual-trigger.png
rename to docs/img/graphql/core/event-triggers/run-manual-trigger.png
diff --git a/docs/img/graphql/manual/event-triggers/select-manual-trigger.png b/docs/img/graphql/core/event-triggers/select-manual-trigger.png
similarity index 100%
rename from docs/img/graphql/manual/event-triggers/select-manual-trigger.png
rename to docs/img/graphql/core/event-triggers/select-manual-trigger.png
diff --git a/docs/img/graphql/manual/getting-started/GraphQLAPI.jpg b/docs/img/graphql/core/getting-started/GraphQLAPI.jpg
similarity index 100%
rename from docs/img/graphql/manual/getting-started/GraphQLAPI.jpg
rename to docs/img/graphql/core/getting-started/GraphQLAPI.jpg
diff --git a/docs/img/graphql/manual/getting-started/InstallSuccess.jpg b/docs/img/graphql/core/getting-started/InstallSuccess.jpg
similarity index 100%
rename from docs/img/graphql/manual/getting-started/InstallSuccess.jpg
rename to docs/img/graphql/core/getting-started/InstallSuccess.jpg
diff --git a/docs/img/graphql/manual/getting-started/TableTracked.jpg b/docs/img/graphql/core/getting-started/TableTracked.jpg
similarity index 100%
rename from docs/img/graphql/manual/getting-started/TableTracked.jpg
rename to docs/img/graphql/core/getting-started/TableTracked.jpg
diff --git a/docs/img/graphql/manual/getting-started/TrackTable.jpg b/docs/img/graphql/core/getting-started/TrackTable.jpg
similarity index 100%
rename from docs/img/graphql/manual/getting-started/TrackTable.jpg
rename to docs/img/graphql/core/getting-started/TrackTable.jpg
diff --git a/docs/img/graphql/manual/getting-started/UntrackedTables.jpg b/docs/img/graphql/core/getting-started/UntrackedTables.jpg
similarity index 100%
rename from docs/img/graphql/manual/getting-started/UntrackedTables.jpg
rename to docs/img/graphql/core/getting-started/UntrackedTables.jpg
diff --git a/docs/img/graphql/manual/getting-started/console-local.png b/docs/img/graphql/core/getting-started/console-local.png
similarity index 100%
rename from docs/img/graphql/manual/getting-started/console-local.png
rename to docs/img/graphql/core/getting-started/console-local.png
diff --git a/docs/img/graphql/manual/getting-started/console.png b/docs/img/graphql/core/getting-started/console.png
similarity index 100%
rename from docs/img/graphql/manual/getting-started/console.png
rename to docs/img/graphql/core/getting-started/console.png
diff --git a/docs/img/graphql/manual/getting-started/create-event-trigger.png b/docs/img/graphql/core/getting-started/create-event-trigger.png
similarity index 100%
rename from docs/img/graphql/manual/getting-started/create-event-trigger.png
rename to docs/img/graphql/core/getting-started/create-event-trigger.png
diff --git a/docs/img/graphql/manual/getting-started/create-profile-table.png b/docs/img/graphql/core/getting-started/create-profile-table.png
similarity index 100%
rename from docs/img/graphql/manual/getting-started/create-profile-table.png
rename to docs/img/graphql/core/getting-started/create-profile-table.png
diff --git a/docs/img/graphql/manual/getting-started/hasura-graphql-console.png b/docs/img/graphql/core/getting-started/hasura-graphql-console.png
similarity index 100%
rename from docs/img/graphql/manual/getting-started/hasura-graphql-console.png
rename to docs/img/graphql/core/getting-started/hasura-graphql-console.png
diff --git a/docs/img/graphql/manual/getting-started/heroku-env.png b/docs/img/graphql/core/getting-started/heroku-env.png
similarity index 100%
rename from docs/img/graphql/manual/getting-started/heroku-env.png
rename to docs/img/graphql/core/getting-started/heroku-env.png
diff --git a/docs/img/graphql/manual/getting-started/profile-query.png b/docs/img/graphql/core/getting-started/profile-query.png
similarity index 100%
rename from docs/img/graphql/manual/getting-started/profile-query.png
rename to docs/img/graphql/core/getting-started/profile-query.png
diff --git a/docs/img/graphql/manual/getting-started/running-hasura.png b/docs/img/graphql/core/getting-started/running-hasura.png
similarity index 100%
rename from docs/img/graphql/manual/getting-started/running-hasura.png
rename to docs/img/graphql/core/getting-started/running-hasura.png
diff --git a/docs/img/graphql/manual/getting-started/trigger-details.png b/docs/img/graphql/core/getting-started/trigger-details.png
similarity index 100%
rename from docs/img/graphql/manual/getting-started/trigger-details.png
rename to docs/img/graphql/core/getting-started/trigger-details.png
diff --git a/docs/img/graphql/manual/getting-started/trigger-events.png b/docs/img/graphql/core/getting-started/trigger-events.png
similarity index 100%
rename from docs/img/graphql/manual/getting-started/trigger-events.png
rename to docs/img/graphql/core/getting-started/trigger-events.png
diff --git a/docs/img/graphql/manual/guides/auth-guardian-additional-role.png b/docs/img/graphql/core/guides/auth-guardian-additional-role.png
similarity index 100%
rename from docs/img/graphql/manual/guides/auth-guardian-additional-role.png
rename to docs/img/graphql/core/guides/auth-guardian-additional-role.png
diff --git a/docs/img/graphql/manual/guides/auth-guardian-config-generator.png b/docs/img/graphql/core/guides/auth-guardian-config-generator.png
similarity index 100%
rename from docs/img/graphql/manual/guides/auth-guardian-config-generator.png
rename to docs/img/graphql/core/guides/auth-guardian-config-generator.png
diff --git a/docs/img/graphql/manual/guides/auth-guardian-default-role.png b/docs/img/graphql/core/guides/auth-guardian-default-role.png
similarity index 100%
rename from docs/img/graphql/manual/guides/auth-guardian-default-role.png
rename to docs/img/graphql/core/guides/auth-guardian-default-role.png
diff --git a/docs/img/graphql/manual/guides/auth-guardian-generate-test-jwt.png b/docs/img/graphql/core/guides/auth-guardian-generate-test-jwt.png
similarity index 100%
rename from docs/img/graphql/manual/guides/auth-guardian-generate-test-jwt.png
rename to docs/img/graphql/core/guides/auth-guardian-generate-test-jwt.png
diff --git a/docs/img/graphql/manual/guides/auth-guardian-session-variable.png b/docs/img/graphql/core/guides/auth-guardian-session-variable.png
similarity index 100%
rename from docs/img/graphql/manual/guides/auth-guardian-session-variable.png
rename to docs/img/graphql/core/guides/auth-guardian-session-variable.png
diff --git a/docs/img/graphql/manual/guides/auth-guardian-test-jwt.png b/docs/img/graphql/core/guides/auth-guardian-test-jwt.png
similarity index 100%
rename from docs/img/graphql/manual/guides/auth-guardian-test-jwt.png
rename to docs/img/graphql/core/guides/auth-guardian-test-jwt.png
diff --git a/docs/img/graphql/manual/guides/auth-guardian-user-id.png b/docs/img/graphql/core/guides/auth-guardian-user-id.png
similarity index 100%
rename from docs/img/graphql/manual/guides/auth-guardian-user-id.png
rename to docs/img/graphql/core/guides/auth-guardian-user-id.png
diff --git a/docs/img/graphql/manual/guides/cognito-app-client-settings.png b/docs/img/graphql/core/guides/cognito-app-client-settings.png
similarity index 100%
rename from docs/img/graphql/manual/guides/cognito-app-client-settings.png
rename to docs/img/graphql/core/guides/cognito-app-client-settings.png
diff --git a/docs/img/graphql/manual/guides/cognito-jwt.png b/docs/img/graphql/core/guides/cognito-jwt.png
similarity index 100%
rename from docs/img/graphql/manual/guides/cognito-jwt.png
rename to docs/img/graphql/core/guides/cognito-jwt.png
diff --git a/docs/img/graphql/manual/guides/cognito-lambda.png b/docs/img/graphql/core/guides/cognito-lambda.png
similarity index 100%
rename from docs/img/graphql/manual/guides/cognito-lambda.png
rename to docs/img/graphql/core/guides/cognito-lambda.png
diff --git a/docs/img/graphql/manual/guides/cognito-launch-hosted-ui.png b/docs/img/graphql/core/guides/cognito-launch-hosted-ui.png
similarity index 100%
rename from docs/img/graphql/manual/guides/cognito-launch-hosted-ui.png
rename to docs/img/graphql/core/guides/cognito-launch-hosted-ui.png
diff --git a/docs/img/graphql/manual/guides/cognito-login.png b/docs/img/graphql/core/guides/cognito-login.png
similarity index 100%
rename from docs/img/graphql/manual/guides/cognito-login.png
rename to docs/img/graphql/core/guides/cognito-login.png
diff --git a/docs/img/graphql/manual/guides/cognito-redirect.png b/docs/img/graphql/core/guides/cognito-redirect.png
similarity index 100%
rename from docs/img/graphql/manual/guides/cognito-redirect.png
rename to docs/img/graphql/core/guides/cognito-redirect.png
diff --git a/docs/img/graphql/manual/guides/cognito-triggers-1.png b/docs/img/graphql/core/guides/cognito-triggers-1.png
similarity index 100%
rename from docs/img/graphql/manual/guides/cognito-triggers-1.png
rename to docs/img/graphql/core/guides/cognito-triggers-1.png
diff --git a/docs/img/graphql/manual/guides/cognito-triggers-2.png b/docs/img/graphql/core/guides/cognito-triggers-2.png
similarity index 100%
rename from docs/img/graphql/manual/guides/cognito-triggers-2.png
rename to docs/img/graphql/core/guides/cognito-triggers-2.png
diff --git a/docs/img/graphql/manual/guides/create-client-popup.png b/docs/img/graphql/core/guides/create-client-popup.png
similarity index 100%
rename from docs/img/graphql/manual/guides/create-client-popup.png
rename to docs/img/graphql/core/guides/create-client-popup.png
diff --git a/docs/img/graphql/manual/guides/heroku-app-deployed.png b/docs/img/graphql/core/guides/heroku-app-deployed.png
similarity index 100%
rename from docs/img/graphql/manual/guides/heroku-app-deployed.png
rename to docs/img/graphql/core/guides/heroku-app-deployed.png
diff --git a/docs/img/graphql/manual/guides/heroku-app.png b/docs/img/graphql/core/guides/heroku-app.png
similarity index 100%
rename from docs/img/graphql/manual/guides/heroku-app.png
rename to docs/img/graphql/core/guides/heroku-app.png
diff --git a/docs/img/graphql/manual/guides/soft-deletes-delete-perms.png b/docs/img/graphql/core/guides/soft-deletes-delete-perms.png
similarity index 100%
rename from docs/img/graphql/manual/guides/soft-deletes-delete-perms.png
rename to docs/img/graphql/core/guides/soft-deletes-delete-perms.png
diff --git a/docs/img/graphql/manual/guides/soft-deletes-example-data.png b/docs/img/graphql/core/guides/soft-deletes-example-data.png
similarity index 100%
rename from docs/img/graphql/manual/guides/soft-deletes-example-data.png
rename to docs/img/graphql/core/guides/soft-deletes-example-data.png
diff --git a/docs/img/graphql/manual/guides/soft-deletes-insert-perms.png b/docs/img/graphql/core/guides/soft-deletes-insert-perms.png
similarity index 100%
rename from docs/img/graphql/manual/guides/soft-deletes-insert-perms.png
rename to docs/img/graphql/core/guides/soft-deletes-insert-perms.png
diff --git a/docs/img/graphql/manual/guides/soft-deletes-select-perms.png b/docs/img/graphql/core/guides/soft-deletes-select-perms.png
similarity index 100%
rename from docs/img/graphql/manual/guides/soft-deletes-select-perms.png
rename to docs/img/graphql/core/guides/soft-deletes-select-perms.png
diff --git a/docs/img/graphql/manual/guides/soft-deletes-update-perms.png b/docs/img/graphql/core/guides/soft-deletes-update-perms.png
similarity index 100%
rename from docs/img/graphql/manual/guides/soft-deletes-update-perms.png
rename to docs/img/graphql/core/guides/soft-deletes-update-perms.png
diff --git a/docs/img/graphql/manual/migrations/tracked-tables.png b/docs/img/graphql/core/migrations/tracked-tables.png
similarity index 100%
rename from docs/img/graphql/manual/migrations/tracked-tables.png
rename to docs/img/graphql/core/migrations/tracked-tables.png
diff --git a/docs/img/graphql/manual/queries/analyze-query.png b/docs/img/graphql/core/queries/analyze-query.png
similarity index 100%
rename from docs/img/graphql/manual/queries/analyze-query.png
rename to docs/img/graphql/core/queries/analyze-query.png
diff --git a/docs/img/graphql/manual/queries/query-analysis-after-index.png b/docs/img/graphql/core/queries/query-analysis-after-index.png
similarity index 100%
rename from docs/img/graphql/manual/queries/query-analysis-after-index.png
rename to docs/img/graphql/core/queries/query-analysis-after-index.png
diff --git a/docs/img/graphql/manual/queries/query-analysis-before-index.png b/docs/img/graphql/core/queries/query-analysis-before-index.png
similarity index 100%
rename from docs/img/graphql/manual/queries/query-analysis-before-index.png
rename to docs/img/graphql/core/queries/query-analysis-before-index.png
diff --git a/docs/img/graphql/manual/queries/query-execution-plan-after-index.png b/docs/img/graphql/core/queries/query-execution-plan-after-index.png
similarity index 100%
rename from docs/img/graphql/manual/queries/query-execution-plan-after-index.png
rename to docs/img/graphql/core/queries/query-execution-plan-after-index.png
diff --git a/docs/img/graphql/manual/queries/query-execution-plan.png b/docs/img/graphql/core/queries/query-execution-plan.png
similarity index 100%
rename from docs/img/graphql/manual/queries/query-execution-plan.png
rename to docs/img/graphql/core/queries/query-execution-plan.png
diff --git a/docs/img/graphql/manual/remote-joins/action-rel.png b/docs/img/graphql/core/remote-joins/action-rel.png
similarity index 100%
rename from docs/img/graphql/manual/remote-joins/action-rel.png
rename to docs/img/graphql/core/remote-joins/action-rel.png
diff --git a/docs/img/graphql/manual/remote-joins/add.png b/docs/img/graphql/core/remote-joins/add.png
similarity index 100%
rename from docs/img/graphql/manual/remote-joins/add.png
rename to docs/img/graphql/core/remote-joins/add.png
diff --git a/docs/img/graphql/manual/remote-joins/define-action-rel.png b/docs/img/graphql/core/remote-joins/define-action-rel.png
similarity index 100%
rename from docs/img/graphql/manual/remote-joins/define-action-rel.png
rename to docs/img/graphql/core/remote-joins/define-action-rel.png
diff --git a/docs/img/graphql/manual/remote-joins/define.png b/docs/img/graphql/core/remote-joins/define.png
similarity index 100%
rename from docs/img/graphql/manual/remote-joins/define.png
rename to docs/img/graphql/core/remote-joins/define.png
diff --git a/docs/img/graphql/manual/remote-schemas/remote-schema-arch.png b/docs/img/graphql/core/remote-schemas/remote-schema-arch.png
similarity index 100%
rename from docs/img/graphql/manual/remote-schemas/remote-schema-arch.png
rename to docs/img/graphql/core/remote-schemas/remote-schema-arch.png
diff --git a/docs/img/graphql/manual/scheduled-triggers/scheduled-trigger-arch.png b/docs/img/graphql/core/scheduled-triggers/scheduled-trigger-arch.png
similarity index 100%
rename from docs/img/graphql/manual/scheduled-triggers/scheduled-trigger-arch.png
rename to docs/img/graphql/core/scheduled-triggers/scheduled-trigger-arch.png
diff --git a/docs/img/graphql/manual/schema/add-1-1-relationship.png b/docs/img/graphql/core/schema/add-1-1-relationship.png
similarity index 100%
rename from docs/img/graphql/manual/schema/add-1-1-relationship.png
rename to docs/img/graphql/core/schema/add-1-1-relationship.png
diff --git a/docs/img/graphql/manual/schema/add-1-many-relationship.png b/docs/img/graphql/core/schema/add-1-many-relationship.png
similarity index 100%
rename from docs/img/graphql/manual/schema/add-1-many-relationship.png
rename to docs/img/graphql/core/schema/add-1-many-relationship.png
diff --git a/docs/img/graphql/manual/schema/add-default-value.png b/docs/img/graphql/core/schema/add-default-value.png
similarity index 100%
rename from docs/img/graphql/manual/schema/add-default-value.png
rename to docs/img/graphql/core/schema/add-default-value.png
diff --git a/docs/img/graphql/manual/schema/add-foreign-key.png b/docs/img/graphql/core/schema/add-foreign-key.png
similarity index 100%
rename from docs/img/graphql/manual/schema/add-foreign-key.png
rename to docs/img/graphql/core/schema/add-foreign-key.png
diff --git a/docs/img/graphql/manual/schema/column-preset-mutation-result.png b/docs/img/graphql/core/schema/column-preset-mutation-result.png
similarity index 100%
rename from docs/img/graphql/manual/schema/column-preset-mutation-result.png
rename to docs/img/graphql/core/schema/column-preset-mutation-result.png
diff --git a/docs/img/graphql/manual/schema/column-preset-schema-change-for-role.png b/docs/img/graphql/core/schema/column-preset-schema-change-for-role.png
similarity index 100%
rename from docs/img/graphql/manual/schema/column-preset-schema-change-for-role.png
rename to docs/img/graphql/core/schema/column-preset-schema-change-for-role.png
diff --git a/docs/img/graphql/manual/schema/column-presets-option.png b/docs/img/graphql/core/schema/column-presets-option.png
similarity index 100%
rename from docs/img/graphql/manual/schema/column-presets-option.png
rename to docs/img/graphql/core/schema/column-presets-option.png
diff --git a/docs/img/graphql/manual/schema/column-presets-value-options.png b/docs/img/graphql/core/schema/column-presets-value-options.png
similarity index 100%
rename from docs/img/graphql/manual/schema/column-presets-value-options.png
rename to docs/img/graphql/core/schema/column-presets-value-options.png
diff --git a/docs/img/graphql/manual/schema/computed-field-create.png b/docs/img/graphql/core/schema/computed-field-create.png
similarity index 100%
rename from docs/img/graphql/manual/schema/computed-field-create.png
rename to docs/img/graphql/core/schema/computed-field-create.png
diff --git a/docs/img/graphql/manual/schema/create-sql-fn-table.png b/docs/img/graphql/core/schema/create-sql-fn-table.png
similarity index 100%
rename from docs/img/graphql/manual/schema/create-sql-fn-table.png
rename to docs/img/graphql/core/schema/create-sql-fn-table.png
diff --git a/docs/img/graphql/manual/schema/create-table-graphql.png b/docs/img/graphql/core/schema/create-table-graphql.png
similarity index 100%
rename from docs/img/graphql/manual/schema/create-table-graphql.png
rename to docs/img/graphql/core/schema/create-table-graphql.png
diff --git a/docs/img/graphql/manual/schema/create-trigger.png b/docs/img/graphql/core/schema/create-trigger.png
similarity index 100%
rename from docs/img/graphql/manual/schema/create-trigger.png
rename to docs/img/graphql/core/schema/create-trigger.png
diff --git a/docs/img/graphql/manual/schema/created-at.png b/docs/img/graphql/core/schema/created-at.png
similarity index 100%
rename from docs/img/graphql/manual/schema/created-at.png
rename to docs/img/graphql/core/schema/created-at.png
diff --git a/docs/img/graphql/manual/schema/custom-field-name-column.png b/docs/img/graphql/core/schema/custom-field-name-column.png
similarity index 100%
rename from docs/img/graphql/manual/schema/custom-field-name-column.png
rename to docs/img/graphql/core/schema/custom-field-name-column.png
diff --git a/docs/img/graphql/manual/schema/custom-field-name-root-fields.png b/docs/img/graphql/core/schema/custom-field-name-root-fields.png
similarity index 100%
rename from docs/img/graphql/manual/schema/custom-field-name-root-fields.png
rename to docs/img/graphql/core/schema/custom-field-name-root-fields.png
diff --git a/docs/img/graphql/manual/schema/diagram-actions-data-validation.png b/docs/img/graphql/core/schema/diagram-actions-data-validation.png
similarity index 100%
rename from docs/img/graphql/manual/schema/diagram-actions-data-validation.png
rename to docs/img/graphql/core/schema/diagram-actions-data-validation.png
diff --git a/docs/img/graphql/manual/schema/enum-create-ref-table.png b/docs/img/graphql/core/schema/enum-create-ref-table.png
similarity index 100%
rename from docs/img/graphql/manual/schema/enum-create-ref-table.png
rename to docs/img/graphql/core/schema/enum-create-ref-table.png
diff --git a/docs/img/graphql/manual/schema/enum-insert-ref-values.png b/docs/img/graphql/core/schema/enum-insert-ref-values.png
similarity index 100%
rename from docs/img/graphql/manual/schema/enum-insert-ref-values.png
rename to docs/img/graphql/core/schema/enum-insert-ref-values.png
diff --git a/docs/img/graphql/manual/schema/enum-set-foreign-key.png b/docs/img/graphql/core/schema/enum-set-foreign-key.png
similarity index 100%
rename from docs/img/graphql/manual/schema/enum-set-foreign-key.png
rename to docs/img/graphql/core/schema/enum-set-foreign-key.png
diff --git a/docs/img/graphql/manual/schema/enum-set.png b/docs/img/graphql/core/schema/enum-set.png
similarity index 100%
rename from docs/img/graphql/manual/schema/enum-set.png
rename to docs/img/graphql/core/schema/enum-set.png
diff --git a/docs/img/graphql/manual/schema/manual-relationship-btn.png b/docs/img/graphql/core/schema/manual-relationship-btn.png
similarity index 100%
rename from docs/img/graphql/manual/schema/manual-relationship-btn.png
rename to docs/img/graphql/core/schema/manual-relationship-btn.png
diff --git a/docs/img/graphql/manual/schema/manual-relationship-create.png b/docs/img/graphql/core/schema/manual-relationship-create.png
similarity index 100%
rename from docs/img/graphql/manual/schema/manual-relationship-create.png
rename to docs/img/graphql/core/schema/manual-relationship-create.png
diff --git a/docs/img/graphql/manual/schema/modify-sql-fn-table.png b/docs/img/graphql/core/schema/modify-sql-fn-table.png
similarity index 100%
rename from docs/img/graphql/manual/schema/modify-sql-fn-table.png
rename to docs/img/graphql/core/schema/modify-sql-fn-table.png
diff --git a/docs/img/graphql/manual/schema/relay.png b/docs/img/graphql/core/schema/relay.png
similarity index 100%
rename from docs/img/graphql/manual/schema/relay.png
rename to docs/img/graphql/core/schema/relay.png
diff --git a/docs/img/graphql/manual/schema/schema-stitching-v1-arch-diagram.png b/docs/img/graphql/core/schema/schema-stitching-v1-arch-diagram.png
similarity index 100%
rename from docs/img/graphql/manual/schema/schema-stitching-v1-arch-diagram.png
rename to docs/img/graphql/core/schema/schema-stitching-v1-arch-diagram.png
diff --git a/docs/img/graphql/manual/schema/updated-at.png b/docs/img/graphql/core/schema/updated-at.png
similarity index 100%
rename from docs/img/graphql/manual/schema/updated-at.png
rename to docs/img/graphql/core/schema/updated-at.png
diff --git a/docs/img/graphql/manual/schema/validation-actions-def.png b/docs/img/graphql/core/schema/validation-actions-def.png
similarity index 100%
rename from docs/img/graphql/manual/schema/validation-actions-def.png
rename to docs/img/graphql/core/schema/validation-actions-def.png
diff --git a/docs/img/graphql/manual/schema/validation-add-check-constraint.png b/docs/img/graphql/core/schema/validation-add-check-constraint.png
similarity index 100%
rename from docs/img/graphql/manual/schema/validation-add-check-constraint.png
rename to docs/img/graphql/core/schema/validation-add-check-constraint.png
diff --git a/docs/img/graphql/manual/schema/validation-author-isactive.png b/docs/img/graphql/core/schema/validation-author-isactive.png
similarity index 100%
rename from docs/img/graphql/manual/schema/validation-author-isactive.png
rename to docs/img/graphql/core/schema/validation-author-isactive.png
diff --git a/docs/img/graphql/manual/schema/validation-not-empty.png b/docs/img/graphql/core/schema/validation-not-empty.png
similarity index 100%
rename from docs/img/graphql/manual/schema/validation-not-empty.png
rename to docs/img/graphql/core/schema/validation-not-empty.png
diff --git a/docs/img/graphql/manual/troubleshooting/author_article.jpg b/docs/img/graphql/core/troubleshooting/author_article.jpg
similarity index 100%
rename from docs/img/graphql/manual/troubleshooting/author_article.jpg
rename to docs/img/graphql/core/troubleshooting/author_article.jpg
diff --git a/docs/index.rst b/docs/index.rst
index 4a81ad78808..b20fa5badd6 100644
--- a/docs/index.rst
+++ b/docs/index.rst
@@ -17,4 +17,10 @@ Table of Contents
   :maxdepth: 2
   :titlesonly:
 
-  Hasura GraphQL Engine <graphql/manual/index>
+  Hasura GraphQL Engine <graphql/core/index>
+
+.. toctree::
+  :maxdepth: 2
+  :titlesonly:
+
+  Hasura Cloud <graphql/cloud/index>
diff --git a/server/CONTRIBUTING.md b/server/CONTRIBUTING.md
index b8ed14a5695..5f9d403e52e 100644
--- a/server/CONTRIBUTING.md
+++ b/server/CONTRIBUTING.md
@@ -5,7 +5,7 @@ own machine and how to contribute.
 
 ## Pre-requisites
 
-- [GHC](https://www.haskell.org/ghc/) 8.10.1 and [cabal-install](https://cabal.readthedocs.io/en/latest/)
+- [GHC](https://www.haskell.org/ghc/) 8.10.2 and [cabal-install](https://cabal.readthedocs.io/en/latest/)
   - There are various ways these can be installed, but [ghcup](https://www.haskell.org/ghcup/) is a good choice if you’re not sure.
 - [Node.js](https://nodejs.org/en/) (>= v8.9)
 - npm >= 5.7
diff --git a/server/cabal.project b/server/cabal.project
index d02bd69fc07..ed41fc18ed9 100644
--- a/server/cabal.project
+++ b/server/cabal.project
@@ -43,7 +43,7 @@ package graphql-engine
 source-repository-package
   type: git
   location: https://github.com/hasura/pg-client-hs.git
-  tag: 5b112acaaae15664e2bc0817b1a17f44f04df69b
+  tag: d7596101d189f610b5995f7f69758d9a0d929a2a
 
 source-repository-package
   type: git
@@ -54,3 +54,8 @@ source-repository-package
   type: git
   location: https://github.com/hasura/ci-info-hs.git
   tag: 947fd56582b1e8bec9ffed98ca9ac2f6b63e36c9
+
+source-repository-package
+  type: git
+  location: https://github.com/hasura/pool.git
+  tag: 0fdfaed4e109ca6a6bf00ed6d79c329626e3bdd4
diff --git a/server/cabal.project.ci b/server/cabal.project.ci
index 221c5c20b12..06232d974a5 100644
--- a/server/cabal.project.ci
+++ b/server/cabal.project.ci
@@ -5,10 +5,8 @@ reject-unconstrained-dependencies: all
 package graphql-engine
   ghc-options:
     -j3 -Werror
-    -- Limit heap size to 8GB, which is the amount of available memory on a
-    -- CircleCI `large` instance. (GHC interprets G as GB, i.e. 1,000^3 bytes,
-    -- but instances seem to have 8GiB, i.e. 1,024^3 bytes, so that leaves us
-    -- a little breathing room.)
-    +RTS -M8G -RTS
+    -- Limit heap size to a little less than 8GB, which is the amount of
+    -- available memory on a CircleCI `large` instance.
+    +RTS -M7500m -RTS
   tests: true
   benchmarks: true
diff --git a/server/cabal.project.dev b/server/cabal.project.dev
index 329ce17acd9..fd331c1bb0d 100644
--- a/server/cabal.project.dev
+++ b/server/cabal.project.dev
@@ -6,7 +6,7 @@
 -- Or, if you want to customize the configuration:
 --   $ cp cabal.project.dev cabal.project.local
 
-with-compiler: ghc-8.10.1
+with-compiler: ghc-8.10.2
 
 package *
   documentation: true
diff --git a/server/cabal.project.freeze b/server/cabal.project.freeze
index 32b15940cd8..219113c03c4 100644
--- a/server/cabal.project.freeze
+++ b/server/cabal.project.freeze
@@ -35,7 +35,7 @@ constraints: any.Cabal ==3.2.0.0,
              attoparsec-iso8601 -developer -fast,
              any.authenticate-oauth ==1.6.0.1,
              any.auto-update ==0.1.6,
-             any.base ==4.14.0.0,
+             any.base ==4.14.1.0,
              any.base-compat ==0.11.1,
              any.base-compat-batteries ==0.11.1,
              any.base-orphans ==0.8.2,
@@ -137,8 +137,8 @@ constraints: any.Cabal ==3.2.0.0,
              any.foldl ==1.4.6,
              any.free ==5.1.3,
              any.generic-arbitrary ==0.1.0,
-             any.ghc-boot-th ==8.10.1,
-             any.ghc-heap ==8.10.1,
+             any.ghc-boot-th ==8.10.2,
+             any.ghc-heap ==8.10.2,
              any.ghc-heap-view ==0.6.2,
              ghc-heap-view -prim-supports-any,
              any.ghc-prim ==0.6.1,
diff --git a/server/graphql-engine.cabal b/server/graphql-engine.cabal
index 07a92af5127..9b278bb14f2 100644
--- a/server/graphql-engine.cabal
+++ b/server/graphql-engine.cabal
@@ -509,6 +509,7 @@ test-suite graphql-engine-tests
     , pg-client
     , process
     , QuickCheck
+    , text
     , safe
     , split
     , time
diff --git a/server/src-lib/Hasura/App.hs b/server/src-lib/Hasura/App.hs
index 4e202bf8709..d1aa0dd661c 100644
--- a/server/src-lib/Hasura/App.hs
+++ b/server/src-lib/Hasura/App.hs
@@ -541,9 +541,9 @@ runHGEServer env ServeOptions{..} InitCtx{..} pgExecCtx initTime shutdownApp pos
 --      see memory stay high after finishing). In the theoretical worst case
 --      there is such low haskell heap pressure that we never run finalizers to
 --      free the foreign data from e.g. libpq.
---    - `-Iw` is not yet implemented in 8.10.1: https://gitlab.haskell.org/ghc/ghc/-/issues/18433
---    - even if it was these two knobs would still not give us a guarentee that
---      a major GC would always run at some minumum frequency (e.g. for finalizers)
+--    - as of GHC 8.10.2 we have access to `-Iw`, but those two knobs still
+--      don’t give us a guarantee that a major GC will always run at some
+--      minumum frequency (e.g. for finalizers)
 --
 -- ...so we hack together our own using GHC.Stats, which should have
 -- insignificant runtime overhead.
diff --git a/server/src-lib/Hasura/Eventing/EventTrigger.hs b/server/src-lib/Hasura/Eventing/EventTrigger.hs
index 5b37e7e416d..ed1b3a8c75c 100644
--- a/server/src-lib/Hasura/Eventing/EventTrigger.hs
+++ b/server/src-lib/Hasura/Eventing/EventTrigger.hs
@@ -254,17 +254,17 @@ processEventQueue logger logenv httpMgr pool getSchemaCache eeCtx@EventEngineCtx
       cache <- liftIO getSchemaCache
       let meti = getEventTriggerInfoFromEvent cache e
       case meti of
-        Nothing -> do
+        Left err -> do
           --  This rare error can happen in the following known cases:
           --  i) schema cache is not up-to-date (due to some bug, say during schema syncing across multiple instances)
           --  ii) the event trigger is dropped when this event was just fetched
-          logQErr $ err500 Unexpected "table or event-trigger not found in schema cache"
+          logQErr $ err500 Unexpected err
           liftIO . runExceptT $ Q.runTx pool (Q.RepeatableRead, Just Q.ReadWrite) $ do
             currentTime <- liftIO getCurrentTime
             -- For such an event, we unlock the event and retry after a minute
             setRetry e (addUTCTime 60 currentTime)
           >>= flip onLeft logQErr
-        Just eti -> do
+        Right eti -> do
           let webhook = T.unpack $ wciCachedValue $ etiWebhookInfo eti
               retryConf = etiRetryConf eti
               timeoutSeconds = fromMaybe defaultTimeoutSeconds (rcTimeoutSec retryConf)
@@ -393,10 +393,16 @@ logQErr err = do
   logger :: L.Logger L.Hasura <- asks getter
   L.unLogger logger $ EventInternalErr err
 
-getEventTriggerInfoFromEvent :: SchemaCache -> Event -> Maybe EventTriggerInfo
-getEventTriggerInfoFromEvent sc e = let table = eTable e
-                                        tableInfo = M.lookup table $ scTables sc
-                                    in M.lookup ( tmName $ eTrigger e) =<< (_tiEventTriggerInfoMap <$> tableInfo)
+getEventTriggerInfoFromEvent :: SchemaCache -> Event -> Either Text EventTriggerInfo
+getEventTriggerInfoFromEvent sc e = do
+  let table = eTable e
+      mTableInfo = M.lookup table $ scTables sc
+  tableInfo <- onNothing mTableInfo $ Left ("table '" <> table <<> "' not found")
+  let triggerName = tmName $ eTrigger e
+      mEventTriggerInfo = M.lookup triggerName (_tiEventTriggerInfoMap tableInfo)
+  onNothing mEventTriggerInfo $ Left ("event trigger '" <> triggerNameToTxt triggerName
+    <> "' on table '" <> table <<> "' not found")
+
 
 ---- DATABASE QUERIES ---------------------
 --
diff --git a/server/src-lib/Hasura/GraphQL/Execute/Insert.hs b/server/src-lib/Hasura/GraphQL/Execute/Insert.hs
index 9c6afb5a1f4..2646dd3d5c4 100644
--- a/server/src-lib/Hasura/GraphQL/Execute/Insert.hs
+++ b/server/src-lib/Hasura/GraphQL/Execute/Insert.hs
@@ -99,7 +99,7 @@ insertMultipleObjects
   -> Bool
   -> m EncJSON
 insertMultipleObjects env multiObjIns additionalColumns rjCtx mutationOutput planVars stringifyNum =
-  bool withoutRelsInsert withRelsInsert anyRelsToInsert
+    bool withoutRelsInsert withRelsInsert anyRelsToInsert
   where
     AnnIns insObjs table conflictClause checkCondition columnInfos defVals = multiObjIns
     allInsObjRels = concatMap _aioObjRels insObjs
@@ -119,7 +119,10 @@ insertMultipleObjects env multiObjIns additionalColumns rjCtx mutationOutput pla
             checkCondition
             mutationOutput
             columnInfos
-      RQL.execInsertQuery env stringifyNum (Just rjCtx) (insertQuery, planVars)
+          rowCount = T.pack . show . length $ _aiInsObj multiObjIns
+      Tracing.trace ("Insert (" <> rowCount <> ") " <> qualObjectToText table) do
+        Tracing.attachMetadata [("count", rowCount)]  
+        RQL.execInsertQuery env stringifyNum (Just rjCtx) (insertQuery, planVars)
 
     withRelsInsert = do
       insertRequests <- indexedForM insObjs \obj -> do
@@ -142,7 +145,7 @@ insertObject
   -> Seq.Seq Q.PrepArg
   -> Bool
   -> m (Int, Maybe (ColumnValues TxtEncodedPGVal))
-insertObject env singleObjIns additionalColumns rjCtx planVars stringifyNum = do
+insertObject env singleObjIns additionalColumns rjCtx planVars stringifyNum = Tracing.trace ("Insert " <> qualObjectToText table) do
   validateInsert (map fst columns) (map _riRelInfo objectRels) (map fst additionalColumns)
 
   -- insert all object relations and fetch this insert dependent column values
diff --git a/server/src-lib/Hasura/GraphQL/Schema/Select.hs b/server/src-lib/Hasura/GraphQL/Schema/Select.hs
index 6727b37a035..2de3770aa1c 100644
--- a/server/src-lib/Hasura/GraphQL/Schema/Select.hs
+++ b/server/src-lib/Hasura/GraphQL/Schema/Select.hs
@@ -744,10 +744,6 @@ tableConnectionArgs pkeyColumns table selectPermissions = do
         throwInvalidCursor = parseError "the \"after\" or \"before\" cursor is invalid"
         liftQErr = either (parseError . qeError) pure . runExcept
 
-        iResultToMaybe = \case
-          J.ISuccess v -> Just v
-          J.IError{}   -> Nothing
-
         getPathFromOrderBy = \case
           RQL.AOCColumn pgColInfo ->
             let pathElement = J.Key $ getPGColTxt $ pgiColumn pgColInfo
diff --git a/server/src-lib/Hasura/GraphQL/Transport/HTTP.hs b/server/src-lib/Hasura/GraphQL/Transport/HTTP.hs
index e87576d5d5b..281dd9717cf 100644
--- a/server/src-lib/Hasura/GraphQL/Transport/HTTP.hs
+++ b/server/src-lib/Hasura/GraphQL/Transport/HTTP.hs
@@ -204,7 +204,7 @@ runQueryDB reqId (query, queryParsed) asts _userInfo (tx, genSql) =  do
   -- log the generated SQL and the graphql query
   E.ExecutionCtx logger _ pgExecCtx _ _ _ _ <- ask
   logQueryLog logger query (Just genSql) reqId
-  (telemTimeIO, respE) <- withElapsedTime $ runExceptT $ trace "pg" $
+  (telemTimeIO, respE) <- withElapsedTime $ runExceptT $ trace "Query" $
     Tracing.interpTraceT id $ executeQuery queryParsed asts (Just genSql) pgExecCtx Q.ReadOnly tx
   (respHdrs,resp) <- liftEither respE
   let !json = encodeGQResp $ GQSuccess $ encJToLBS resp
@@ -230,7 +230,7 @@ runMutationDB reqId query userInfo tx =  do
   -- log the graphql query
   logQueryLog logger query Nothing reqId
   ctx <- Tracing.currentContext
-  (telemTimeIO, respE) <- withElapsedTime $  runExceptT $ trace "pg" $
+  (telemTimeIO, respE) <- withElapsedTime $  runExceptT $ trace "Mutation" $
     Tracing.interpTraceT (runLazyTx pgExecCtx Q.ReadWrite . withTraceContext ctx .  withUserInfo userInfo)  tx
   resp <- liftEither respE
   let !json = encodeGQResp $ GQSuccess $ encJToLBS resp
diff --git a/server/src-lib/Hasura/GraphQL/Utils.hs b/server/src-lib/Hasura/GraphQL/Utils.hs
index 74efb4d02e7..5b51eb628b0 100644
--- a/server/src-lib/Hasura/GraphQL/Utils.hs
+++ b/server/src-lib/Hasura/GraphQL/Utils.hs
@@ -5,6 +5,7 @@ module Hasura.GraphQL.Utils
   , mkMapWith
   , showNames
   , simpleGraphQLQuery
+  , getBaseTyWithNestedLevelsCount
   ) where
 
 import           Hasura.Prelude
@@ -17,6 +18,15 @@ import qualified Language.GraphQL.Draft.Syntax as G
 showName :: G.Name -> Text
 showName name = "\"" <> G.unName name <> "\""
 
+getBaseTyWithNestedLevelsCount :: G.GType -> (G.Name, Int)
+getBaseTyWithNestedLevelsCount ty = go ty 0
+  where
+    go :: G.GType -> Int -> (G.Name, Int)
+    go gType ctr =
+      case gType of
+        G.TypeNamed _ n      -> (n, ctr)
+        G.TypeList  _ gType' -> flip go (ctr + 1) gType'
+
 groupListWith
   :: (Eq k, Hashable k, Foldable t, Functor t)
   => (v -> k) -> t v -> Map.HashMap k (NE.NonEmpty v)
diff --git a/server/src-lib/Hasura/RQL/DDL/RemoteRelationship/Validate.hs b/server/src-lib/Hasura/RQL/DDL/RemoteRelationship/Validate.hs
index f9c515af45e..1f795aec90f 100644
--- a/server/src-lib/Hasura/RQL/DDL/RemoteRelationship/Validate.hs
+++ b/server/src-lib/Hasura/RQL/DDL/RemoteRelationship/Validate.hs
@@ -10,6 +10,7 @@ module Hasura.RQL.DDL.RemoteRelationship.Validate
 import           Data.Foldable
 import           Hasura.GraphQL.Schema.Remote
 import           Hasura.GraphQL.Parser.Column
+import           Hasura.GraphQL.Utils          (getBaseTyWithNestedLevelsCount)
 import           Hasura.Prelude                hiding (first)
 import           Hasura.RQL.Types
 import           Hasura.SQL.Types
@@ -333,20 +334,20 @@ validateType permittedVariables value expectedGType schemaDocument =
         Nothing -> throwError (InvalidVariable variable permittedVariables)
         Just fieldInfo -> do
           namedType <- columnInfoToNamedType fieldInfo
-          assertType (mkGraphQLType namedType) expectedGType
+          isTypeCoercible (mkGraphQLType namedType) expectedGType
     G.VInt {} -> do
       intScalarGType <- (mkGraphQLType <$> mkScalarTy PGInteger)
-      assertType intScalarGType expectedGType
+      isTypeCoercible intScalarGType expectedGType
     G.VFloat {} -> do
       floatScalarGType <- (mkGraphQLType <$> mkScalarTy PGFloat)
-      assertType floatScalarGType expectedGType
+      isTypeCoercible floatScalarGType expectedGType
     G.VBoolean {} -> do
       boolScalarGType <- (mkGraphQLType <$> mkScalarTy PGBoolean)
-      assertType boolScalarGType expectedGType
+      isTypeCoercible boolScalarGType expectedGType
     G.VNull -> throwError NullNotAllowedHere
     G.VString {} -> do
       stringScalarGType <- (mkGraphQLType <$> mkScalarTy PGText)
-      assertType stringScalarGType expectedGType
+      isTypeCoercible stringScalarGType expectedGType
     G.VEnum _ -> throwError UnsupportedEnum
     G.VList values -> do
       case values of
@@ -390,23 +391,27 @@ validateType permittedVariables value expectedGType schemaDocument =
         Left _ -> throwError $ InvalidGraphQLName $ toSQLTxt scalarType
         Right s -> pure s
 
-assertType
+isTypeCoercible
   :: (MonadError ValidationError m)
   => G.GType
   -> G.GType
   -> m ()
-assertType actualType expectedType = do
-  -- check if both are list types or both are named types
-  (when
-     (G.isListType actualType /= G.isListType expectedType)
-     (throwError $ ExpectedTypeButGot expectedType actualType))
-  -- if list type then check over unwrapped type, else check base types
-  if G.isListType actualType
-    then assertType (unwrapGraphQLType actualType) (unwrapGraphQLType expectedType)
-    else (when
-            (G.getBaseType actualType /= G.getBaseType expectedType)
-            (throwError $ ExpectedTypeButGot expectedType actualType))
-  pure ()
+isTypeCoercible actualType expectedType =
+  -- The GraphQL spec says that, a singleton type can be coerced into  an array
+  -- type. Which means that if the 'actualType' is a singleton type, like
+  -- 'Int' we should be able to join this with a remote node, which expects an
+  -- input argument of type '[Int]'
+  -- http://spec.graphql.org/June2018/#sec-Type-System.List
+  let (actualBaseType, actualNestingLevel) = getBaseTyWithNestedLevelsCount actualType
+      (expectedBaseType, expectedNestingLevel) = getBaseTyWithNestedLevelsCount expectedType
+  in
+  if | actualBaseType /= expectedBaseType -> raiseValidationError
+       -- we cannot coerce two types with different nesting levels,
+       -- for example, we cannot coerce [Int] to [[Int]]
+     | (actualNestingLevel == expectedNestingLevel || actualNestingLevel == 0) -> pure ()
+     | otherwise -> raiseValidationError
+     where
+       raiseValidationError = throwError $ ExpectedTypeButGot expectedType actualType
 
 assertListType :: (MonadError ValidationError m) => G.GType -> m ()
 assertListType actualType =
diff --git a/server/src-lib/Hasura/RQL/Types/Error.hs b/server/src-lib/Hasura/RQL/Types/Error.hs
index e4810625407..0891ac5a8ba 100644
--- a/server/src-lib/Hasura/RQL/Types/Error.hs
+++ b/server/src-lib/Hasura/RQL/Types/Error.hs
@@ -3,9 +3,9 @@
 module Hasura.RQL.Types.Error
        ( Code(..)
        , QErr(..)
+       , encodeJSONPath
        , encodeQErr
        , encodeGQLErr
-       , encodeJSONPath
        , noInternalQErrEnc
        , err400
        , err404
@@ -20,6 +20,8 @@ module Hasura.RQL.Types.Error
        , throw500WithDetail
        , throw401
 
+       , iResultToMaybe
+
          -- Aeson helpers
        , runAesonParser
        , decodeValue
@@ -335,6 +337,10 @@ liftIResult (IError path msg) =
 liftIResult (ISuccess a) =
   return a
 
+iResultToMaybe :: IResult a -> Maybe a
+iResultToMaybe (IError _ _) = Nothing
+iResultToMaybe (ISuccess a) = Just a
+
 formatMsg :: String -> String
 formatMsg str = case T.splitOn "the key " txt of
   [_, txt2] -> case T.splitOn " was not present" txt2 of
diff --git a/server/src-lib/Hasura/Server/API/Config.hs b/server/src-lib/Hasura/Server/API/Config.hs
index b84615d8048..e8f6617a798 100644
--- a/server/src-lib/Hasura/Server/API/Config.hs
+++ b/server/src-lib/Hasura/Server/API/Config.hs
@@ -17,8 +17,9 @@ import qualified Hasura.GraphQL.Execute.LiveQuery.Options as LQ
 
 data JWTInfo
   = JWTInfo
-  { jwtiClaimsNamespace :: !JWTConfigClaims
+  { jwtiClaimsNamespace :: !JWTNamespace
   , jwtiClaimsFormat    :: !JWTClaimsFormat
+  , jwtiClaimsMap       :: !(Maybe JWTCustomClaimsMap)
   } deriving (Show, Eq)
 
 $(deriveToJSON (aesonDrop 4 snakeCase) ''JWTInfo)
@@ -65,8 +66,9 @@ isJWTSet = \case
 
 getJWTInfo :: AuthMode -> Maybe JWTInfo
 getJWTInfo (AMAdminSecretAndJWT _ jwtCtx _) =
-  Just $ JWTInfo claimsNs format
-  where
-    claimsNs = jcxClaimNs jwtCtx
-    format = jcxClaimsFormat jwtCtx
+  Just $ case jcxClaims jwtCtx of
+    JCNamespace namespace claimsFormat ->
+      JWTInfo namespace claimsFormat Nothing
+    JCMap claimsMap ->
+      JWTInfo (ClaimNs defaultClaimsNamespace) defaultClaimsFormat $ Just claimsMap
 getJWTInfo _ = Nothing
diff --git a/server/src-lib/Hasura/Server/Auth.hs b/server/src-lib/Hasura/Server/Auth.hs
index bcb386d2c06..3c09c4e068e 100644
--- a/server/src-lib/Hasura/Server/Auth.hs
+++ b/server/src-lib/Hasura/Server/Auth.hs
@@ -158,8 +158,7 @@ setupAuthMode mAdminSecretHash mWebHook mJwtSecret mUnAuthRole httpManager logge
       jwkRef <- case jcKeyOrUrl of
         Left jwk  -> liftIO $ newIORef (JWKSet [jwk])
         Right url -> getJwkFromUrl url
-      let claimsFmt = fromMaybe JCFJson jcClaimsFormat
-      return $ JWTCtx jwkRef jcClaimNs jcAudience claimsFmt jcIssuer
+      return $ JWTCtx jwkRef jcAudience jcIssuer jcClaims
       where
         -- if we can't find any expiry time for the JWK (either in @Expires@ header or @Cache-Control@
         -- header), do not start a background thread for refreshing the JWK
@@ -244,7 +243,7 @@ getUserInfoWithExpTime_ userInfoFromAuthHook_ processJwt_ logger manager rawHead
       mkUserInfo (URBFromSessionVariablesFallback adminRoleName)
       adminSecretState sessionVariables
 
-    sessionVariables = mkSessionVariables rawHeaders
+    sessionVariables = mkSessionVariablesHeaders rawHeaders
 
     checkingSecretIfSent
       :: AdminSecretHash -> m (UserInfo, Maybe UTCTime) -> m (UserInfo, Maybe UTCTime)
diff --git a/server/src-lib/Hasura/Server/Auth/JWT.hs b/server/src-lib/Hasura/Server/Auth/JWT.hs
index e6e2a8a00c9..0d5bd31dfcf 100644
--- a/server/src-lib/Hasura/Server/Auth/JWT.hs
+++ b/server/src-lib/Hasura/Server/Auth/JWT.hs
@@ -6,16 +6,25 @@ module Hasura.Server.Auth.JWT
   , JWTCtx (..)
   , Jose.JWKSet (..)
   , JWTClaimsFormat (..)
+  , JWTClaims(..)
   , JwkFetchError (..)
-  , JWTConfigClaims (..)
+  , JWTNamespace (..)
+  , JWTCustomClaimsMapDefaultRole
+  , JWTCustomClaimsMapAllowedRoles
+  , JWTCustomClaimsMapValue
+  , ClaimsMap
   , updateJwkRef
   , jwkRefreshCtrl
-  , defaultClaimNs
+  , defaultClaimsFormat
+  , defaultClaimsNamespace
 
   -- * Exposed for testing
   , processJwt_
   , allowedRolesClaim
   , defaultRoleClaim
+  , parseClaimsMap
+  , JWTCustomClaimsMapValueG(..)
+  , JWTCustomClaimsMap(..)
   ) where
 
 import           Control.Exception.Lifted        (try)
@@ -23,7 +32,7 @@ import           Control.Lens
 import           Control.Monad.Trans.Control     (MonadBaseControl)
 import           Control.Monad.Trans.Maybe
 import           Data.IORef                      (IORef, readIORef, writeIORef)
-
+import           Data.Parser.JSONPath            (parseJSONPath)
 import           Data.Time.Clock                 (NominalDiffTime, UTCTime, diffUTCTime,
                                                   getCurrentTime)
 #ifndef PROFILING
@@ -40,8 +49,7 @@ import           Hasura.Prelude
 import           Hasura.RQL.Types
 import           Hasura.Server.Auth.JWT.Internal (parseHmacKey, parseRsaKey)
 import           Hasura.Server.Auth.JWT.Logging
-import           Hasura.Server.Utils             (executeJSONPath, getRequestHeader,
-                                                  isSessionVariable, userRoleHeader)
+import           Hasura.Server.Utils             (executeJSONPath, getRequestHeader, userRoleHeader, isSessionVariable)
 import           Hasura.Server.Version           (HasVersion)
 import           Hasura.Session
 import qualified Hasura.Tracing                  as Tracing
@@ -50,13 +58,11 @@ import qualified Control.Concurrent.Extended     as C
 import qualified Crypto.JWT                      as Jose
 import qualified Data.Aeson                      as J
 import qualified Data.Aeson.Casing               as J
-import qualified Data.Aeson.Internal             as J
 import qualified Data.Aeson.TH                   as J
 import qualified Data.ByteString.Lazy            as BL
 import qualified Data.ByteString.Lazy.Char8      as BLC
 import qualified Data.CaseInsensitive            as CI
 import qualified Data.HashMap.Strict             as Map
-import qualified Data.Parser.JSONPath            as JSONPath
 import qualified Data.Text                       as T
 import qualified Data.Text.Encoding              as T
 import qualified Network.HTTP.Client             as HTTP
@@ -73,23 +79,113 @@ data JWTClaimsFormat
 $(J.deriveJSON J.defaultOptions { J.sumEncoding = J.ObjectWithSingleField
                                 , J.constructorTagModifier = J.snakeCase . drop 3 } ''JWTClaimsFormat)
 
-data JWTConfigClaims
+defaultClaimsFormat :: JWTClaimsFormat
+defaultClaimsFormat = JCFJson
+
+allowedRolesClaim :: SessionVariable
+allowedRolesClaim = mkSessionVariable "x-hasura-allowed-roles"
+
+defaultRoleClaim :: SessionVariable
+defaultRoleClaim = mkSessionVariable "x-hasura-default-role"
+
+defaultClaimsNamespace :: Text
+defaultClaimsNamespace = "https://hasura.io/jwt/claims"
+
+-- | 'JWTCustomClaimsMapValueG' is used to represent a single value of
+-- the 'JWTCustomClaimsMap'. A 'JWTCustomClaimsMapValueG' can either be
+-- an JSON object or the literal value of the claim. If the value is an
+-- JSON object, then it should contain a key `path`, which is the JSON path
+-- to the claim value in the JWT token. There's also an option to specify a
+-- default value in the map via the 'default' key, which will be used
+-- when a peek at the JWT token using the JSON path fails (key does not exist).
+data JWTCustomClaimsMapValueG v
+  = JWTCustomClaimsMapJSONPath !J.JSONPath !(Maybe v)
+  -- ^ JSONPath to the key in the claims map, in case
+  -- the key doesn't exist in the claims map then the default
+  -- value will be used (if provided)
+  | JWTCustomClaimsMapStatic !v
+  deriving (Show, Eq, Functor, Foldable, Traversable)
+
+instance (J.FromJSON v) => J.FromJSON (JWTCustomClaimsMapValueG v) where
+  parseJSON (J.Object obj) = do
+    path <- obj J..: "path" >>= (either fail pure . parseJSONPath)
+    defaultVal <- obj J..:? "default" >>= traverse pure
+    pure $ JWTCustomClaimsMapJSONPath path defaultVal
+  parseJSON v = JWTCustomClaimsMapStatic <$> J.parseJSON v
+
+instance (J.ToJSON v) => J.ToJSON (JWTCustomClaimsMapValueG v) where
+  toJSON (JWTCustomClaimsMapJSONPath jsonPath mDefVal) =
+    J.object $
+       [ "path"    J..= encodeJSONPath jsonPath ]
+    <> [ "default" J..= defVal | Just defVal <- [mDefVal]]
+  toJSON (JWTCustomClaimsMapStatic v)          = J.toJSON v
+
+type JWTCustomClaimsMapDefaultRole = JWTCustomClaimsMapValueG RoleName
+type JWTCustomClaimsMapAllowedRoles = JWTCustomClaimsMapValueG [RoleName]
+
+-- Used to store other session variables like `x-hasura-user-id`
+type JWTCustomClaimsMapValue = JWTCustomClaimsMapValueG SessionVariableValue
+
+type CustomClaimsMap = Map.HashMap SessionVariable JWTCustomClaimsMapValue
+
+-- | JWTClaimsMap is an option to provide a custom JWT claims map.
+-- The JWTClaimsMap should be specified in the `HASURA_GRAPHQL_JWT_SECRET`
+-- in the `claims_map`. The JWTClaimsMap, if specified, requires two
+-- mandatory fields, namely, `x-hasura-allowed-roles` and the
+-- `x-hasura-default-role`, other claims may also be provided in the claims map.
+data JWTCustomClaimsMap
+  = JWTCustomClaimsMap
+  { jcmDefaultRole  :: !JWTCustomClaimsMapDefaultRole
+  , jcmAllowedRoles :: !JWTCustomClaimsMapAllowedRoles
+  , jcmCustomClaims :: !CustomClaimsMap
+  } deriving (Show,Eq)
+
+instance J.ToJSON JWTCustomClaimsMap where
+  toJSON (JWTCustomClaimsMap defaultRole allowedRoles customClaims) =
+    J.Object $
+    Map.fromList $ [ (sessionVariableToText defaultRoleClaim, J.toJSON defaultRole)
+                   , (sessionVariableToText allowedRolesClaim, J.toJSON allowedRoles)
+                   ]
+    <> map (sessionVariableToText *** J.toJSON) (Map.toList customClaims)
+
+instance J.FromJSON JWTCustomClaimsMap where
+  parseJSON = J.withObject "JWTClaimsMap" $ \obj -> do
+    let withNotFoundError sessionVariable =
+          let errorMsg = T.unpack $
+                sessionVariableToText sessionVariable <> " is expected but not found"
+          in maybe (fail errorMsg) pure $ Map.lookup (sessionVariableToText sessionVariable) obj
+
+    allowedRoles <- withNotFoundError allowedRolesClaim  >>= J.parseJSON
+    defaultRole <- withNotFoundError defaultRoleClaim  >>= J.parseJSON
+    let filteredClaims = Map.delete allowedRolesClaim $ Map.delete defaultRoleClaim
+                          $ Map.fromList $ map (first mkSessionVariable) $ Map.toList obj
+    customClaims <- flip Map.traverseWithKey filteredClaims $ const $ J.parseJSON
+    pure $ JWTCustomClaimsMap defaultRole allowedRoles customClaims
+
+-- | JWTNamespace is used to locate the claims map within the JWT token.
+-- The location can be either provided via a JSON path or the name of the
+-- key in the JWT token.
+data JWTNamespace
   = ClaimNsPath JSONPath
   | ClaimNs T.Text
   deriving (Show, Eq)
 
-instance J.ToJSON JWTConfigClaims where
+instance J.ToJSON JWTNamespace where
   toJSON (ClaimNsPath nsPath) = J.String . T.pack $ encodeJSONPath nsPath
   toJSON (ClaimNs ns)         = J.String ns
 
+data JWTClaims
+  = JCNamespace !JWTNamespace !JWTClaimsFormat
+  | JCMap !JWTCustomClaimsMap
+  deriving (Show, Eq)
+
 -- | The JWT configuration we got from the user.
 data JWTConfig
   = JWTConfig
-  { jcKeyOrUrl     :: !(Either Jose.JWK URI)
-  , jcClaimNs      :: !JWTConfigClaims
-  , jcAudience     :: !(Maybe Jose.Audience)
-  , jcClaimsFormat :: !(Maybe JWTClaimsFormat)
-  , jcIssuer       :: !(Maybe Jose.StringOrURI)
+  { jcKeyOrUrl :: !(Either Jose.JWK URI)
+  , jcAudience :: !(Maybe Jose.Audience)
+  , jcIssuer   :: !(Maybe Jose.StringOrURI)
+  , jcClaims   :: !JWTClaims
   } deriving (Show, Eq)
 
 -- | The validated runtime JWT configuration returned by 'mkJwtCtx' in 'setupAuthMode'.
@@ -98,17 +194,16 @@ data JWTConfig
 -- expiration schedule could be determined.
 data JWTCtx
   = JWTCtx
-  { jcxKey          :: !(IORef Jose.JWKSet)
+  { jcxKey      :: !(IORef Jose.JWKSet)
     -- ^ This needs to be a mutable variable for 'updateJwkRef'.
-  , jcxClaimNs      :: !JWTConfigClaims
-  , jcxAudience     :: !(Maybe Jose.Audience)
-  , jcxClaimsFormat :: !JWTClaimsFormat
-  , jcxIssuer       :: !(Maybe Jose.StringOrURI)
+  , jcxAudience :: !(Maybe Jose.Audience)
+  , jcxIssuer   :: !(Maybe Jose.StringOrURI)
+  , jcxClaims   :: !JWTClaims
   } deriving (Eq)
 
 instance Show JWTCtx where
-  show (JWTCtx _ nsM audM cf iss) =
-    show ["<IORef JWKSet>", show nsM,show audM, show cf, show iss]
+  show (JWTCtx _ audM iss claims) =
+    show ["<IORef JWKSet>", show audM, show iss, show claims]
 
 data HasuraClaims
   = HasuraClaims
@@ -117,18 +212,6 @@ data HasuraClaims
   } deriving (Show, Eq)
 $(J.deriveJSON (J.aesonDrop 3 J.snakeCase) ''HasuraClaims)
 
-
--- NOTE: these must stay lowercase; TODO(from master) consider using "Data.CaseInsensitive"
-allowedRolesClaim :: T.Text
-allowedRolesClaim = "x-hasura-allowed-roles"
-
-defaultRoleClaim :: T.Text
-defaultRoleClaim = "x-hasura-default-role"
-
-defaultClaimNs :: T.Text
-defaultClaimNs = "https://hasura.io/jwt/claims"
-
-
 -- | An action that refreshes the JWK at intervals in an infinite loop.
 jwkRefreshCtrl
   :: (HasVersion, MonadIO m, MonadBaseControl IO m, Tracing.HasReporter m)
@@ -145,7 +228,7 @@ jwkRefreshCtrl logger manager url ref time = do
       mTime <- either (const $ logNotice >> return Nothing) return res
       -- if can't parse time from header, defaults to 1 min
       -- let delay = maybe (minutes 1) fromUnits mTime
-      let delay = maybe (minutes 1) (convertDuration) mTime
+      let delay = maybe (minutes 1) convertDuration mTime
       liftIO $ C.sleep delay
   where
     logNotice = do
@@ -231,6 +314,7 @@ updateJwkRef (Logger logger) manager url jwkRef = do
       HTTP.HttpExceptionRequest _ reason -> show reason
       HTTP.InvalidUrlException _ reason -> show reason
 
+type ClaimsMap = Map.HashMap SessionVariable J.Value
 
 -- | Process the request headers to verify the JWT and extract UserInfo from it
 --
@@ -254,7 +338,7 @@ processJwt = processJwt_ processAuthZHeader
 -- Broken out for testing with mocks:
 processJwt_
   :: (MonadError QErr m)
-  => (_JWTCtx -> BLC.ByteString -> m (J.Object, Maybe UTCTime))
+  => (_JWTCtx -> BLC.ByteString -> m (ClaimsMap, Maybe UTCTime))
   -- ^ mock 'processAuthZHeader'
   -> _JWTCtx
   -> HTTP.RequestHeaders
@@ -266,12 +350,7 @@ processJwt_ processAuthZHeader_ jwtCtx headers mUnAuthRole =
     mAuthZHeader = find (\h -> fst h == CI.mk "Authorization") headers
 
     withAuthZHeader (_, authzHeader) = do
-      (hasuraClaims, expTimeM) <- processAuthZHeader_ jwtCtx $ BL.fromStrict authzHeader
-
-      -- filter only x-hasura claims and convert to lower-case
-      let claimsMap = Map.filterWithKey (\k _ -> isSessionVariable k)
-                    $ Map.fromList $ map (first T.toLower)
-                    $ Map.toList hasuraClaims
+      (claimsMap, expTimeM) <- processAuthZHeader_ jwtCtx $ BL.fromStrict authzHeader
 
       HasuraClaims allowedRoles defaultRole <- parseHasuraClaims claimsMap
       -- see if there is a x-hasura-role header, or else pick the default role.
@@ -285,7 +364,8 @@ processJwt_ processAuthZHeader_ jwtCtx headers mUnAuthRole =
             Map.delete defaultRoleClaim . Map.delete allowedRolesClaim $ claimsMap
 
       -- transform the map of text:aeson-value -> text:text
-      metadata <- parseJwtClaim (J.Object finalClaims) "x-hasura-* claims"
+      let finalClaimsObject = Map.fromList . map (first sessionVariableToText) . Map.toList $ finalClaims
+      metadata <- parseJwtClaim (J.Object $ finalClaimsObject) "x-hasura-* claims"
       userInfo <- mkUserInfo (URBPreDetermined requestedRole) UAdminSecretNotSent $
                   mkSessionVariablesText $ Map.toList metadata
       pure (userInfo, expTimeM)
@@ -293,7 +373,7 @@ processJwt_ processAuthZHeader_ jwtCtx headers mUnAuthRole =
     withoutAuthZHeader = do
       unAuthRole <- maybe missingAuthzHeader return mUnAuthRole
       userInfo <- mkUserInfo (URBPreDetermined unAuthRole) UAdminSecretNotSent $
-        mkSessionVariables headers
+        mkSessionVariablesHeaders headers
       pure (userInfo, Nothing)
 
       where
@@ -307,8 +387,8 @@ processAuthZHeader
      , MonadError QErr m)
   => JWTCtx
   -> BLC.ByteString
-  -> m (J.Object, Maybe UTCTime)
-processAuthZHeader jwtCtx@JWTCtx{jcxClaimNs, jcxClaimsFormat} authzHeader = do
+  -> m (ClaimsMap, Maybe UTCTime)
+processAuthZHeader jwtCtx authzHeader = do
   -- try to parse JWT token from Authorization header
   jwt <- parseAuthzHeader
 
@@ -316,51 +396,20 @@ processAuthZHeader jwtCtx@JWTCtx{jcxClaimNs, jcxClaimsFormat} authzHeader = do
   claims <- liftJWTError invalidJWTError $ verifyJwt jwtCtx $ RawJWT jwt
 
   let expTimeM = fmap (\(Jose.NumericDate t) -> t) $ claims ^. Jose.claimExp
+      unregisteredClaims = claims ^. Jose.unregisteredClaims
 
-  -- see if the hasura claims key exists in the claims map
-  let mHasuraClaims =
-        case jcxClaimNs of
-          ClaimNs k -> Map.lookup k $ claims ^. Jose.unregisteredClaims
-          ClaimNsPath path -> parseIValueJsonValue $ executeJSONPath path (J.toJSON $ claims ^. Jose.unregisteredClaims)
+  claimsObject <- parseClaimsMap unregisteredClaims claimsConfig
 
-  hasuraClaimsV <- maybe claimsNotFound return mHasuraClaims
-  -- return hasura claims value as an object. parse from string possibly
-  (, expTimeM) <$> parseObjectFromString hasuraClaimsV
+  pure $ (claimsObject, expTimeM)
 
   where
+    claimsConfig = jcxClaims jwtCtx
     parseAuthzHeader = do
       let tokenParts = BLC.words authzHeader
       case tokenParts of
         ["Bearer", jwt] -> return jwt
         _               -> malformedAuthzHeader
 
-    parseObjectFromString jVal =
-      case (jcxClaimsFormat, jVal) of
-        (JCFStringifiedJson, J.String v) ->
-          either (const $ claimsErr $ strngfyErr v) return
-          $ J.eitherDecodeStrict $ T.encodeUtf8 v
-        (JCFStringifiedJson, _) ->
-          claimsErr "expecting a string when claims_format is stringified_json"
-        (JCFJson, J.Object o) -> return o
-        (JCFJson, _) ->
-          claimsErr "expecting a json object when claims_format is json"
-
-    strngfyErr v =
-      "expecting stringified json at: '"
-      <> claimsLocation
-      <> "', but found: " <> v
-      where
-        claimsLocation :: Text
-        claimsLocation =
-          case jcxClaimNs of
-            ClaimNsPath path -> T.pack $ "claims_namespace_path " <> encodeJSONPath path
-            ClaimNs ns       -> "claims_namespace " <> ns
-
-    claimsErr = throw400 JWTInvalidClaims
-
-    parseIValueJsonValue (J.IError _ _) = Nothing
-    parseIValueJsonValue (J.ISuccess v) = Just v
-
     liftJWTError :: (MonadError e' m) => (e -> e') -> ExceptT e m a -> m a
     liftJWTError ef action = do
       res <- runExceptT action
@@ -371,28 +420,100 @@ processAuthZHeader jwtCtx@JWTCtx{jcxClaimNs, jcxClaimsFormat} authzHeader = do
 
     malformedAuthzHeader =
       throw400 InvalidHeaders "Malformed Authorization header"
-    claimsNotFound = do
-      let claimsNsError = case jcxClaimNs of
-                            ClaimNsPath path -> T.pack $ "claims not found at claims_namespace_path: '"
-                                                <> encodeJSONPath path <> "'"
-                            ClaimNs ns -> "claims key: '" <> ns <> "' not found"
-      throw400 JWTInvalidClaims claimsNsError
 
+-- | parse the claims map from the JWT token or custom claims from the JWT config
+parseClaimsMap
+  :: (MonadError QErr m)
+  => J.Object -- ^ Unregistered JWT claims
+  -> JWTClaims -- ^ Claims config
+  -> m ClaimsMap -- ^ Hasura claims and other claims
+parseClaimsMap unregisteredClaims jcxClaims =
+  case jcxClaims of
+    JCNamespace namespace claimsFormat -> do
+      claimsV <- maybe (claimsNotFound namespace) pure $ case namespace of
+            ClaimNs k -> Map.lookup k unregisteredClaims
+            ClaimNsPath path -> iResultToMaybe $ executeJSONPath path (J.toJSON unregisteredClaims)
+      -- get hasura claims value as an object. parse from string possibly
+      claimsObject <- parseObjectFromString namespace claimsFormat claimsV
 
--- parse x-hasura-allowed-roles, x-hasura-default-role from JWT claims
-parseHasuraClaims :: forall m. (MonadError QErr m) => J.Object -> m HasuraClaims
-parseHasuraClaims claimsMap = do
-  HasuraClaims <$>
-    parseClaim allowedRolesClaim "should be a list of roles" <*>
-    parseClaim defaultRoleClaim  "should be a single role name"
+      -- filter only x-hasura claims
+      let claimsMap = Map.fromList
+                      $ map (first mkSessionVariable)
+                      $ filter (\(k, _) -> isSessionVariable k)
+                      $ Map.toList claimsObject
+
+      pure claimsMap
+
+    JCMap claimsConfig -> do
+      let JWTCustomClaimsMap defaultRoleClaimsMap allowedRolesClaimsMap otherClaimsMap = claimsConfig
+          claimsObjValue = J.Object unregisteredClaims
+
+      allowedRoles <- case allowedRolesClaimsMap of
+        JWTCustomClaimsMapJSONPath allowedRolesJsonPath defaultVal ->
+          parseAllowedRolesClaim defaultVal $ iResultToMaybe $ executeJSONPath allowedRolesJsonPath claimsObjValue
+        JWTCustomClaimsMapStatic staticAllowedRoles -> pure staticAllowedRoles
+
+      defaultRole <- case defaultRoleClaimsMap of
+        JWTCustomClaimsMapJSONPath defaultRoleJsonPath defaultVal ->
+          parseDefaultRoleClaim defaultVal $ iResultToMaybe $
+          executeJSONPath defaultRoleJsonPath claimsObjValue
+        JWTCustomClaimsMapStatic staticDefaultRole -> pure staticDefaultRole
+
+      otherClaims <- flip Map.traverseWithKey otherClaimsMap $ \k claimObj -> do
+        let throwClaimErr = throw400 JWTInvalidClaims $ "JWT claim from claims_map, "
+                            <> sessionVariableToText k <> " not found"
+        case claimObj of
+          JWTCustomClaimsMapJSONPath path defaultVal ->
+            maybe (onNothing (J.String <$> defaultVal) throwClaimErr) pure
+              $ iResultToMaybe $ executeJSONPath path claimsObjValue
+          JWTCustomClaimsMapStatic claimStaticValue -> pure $ J.String claimStaticValue
+
+      pure $  Map.fromList [
+            (allowedRolesClaim, J.toJSON allowedRoles),
+            (defaultRoleClaim, J.toJSON defaultRole)
+            ] <> otherClaims
 
   where
-    parseClaim :: J.FromJSON a => Text -> Text -> m a
-    parseClaim claim hint = do
-      claimV <- maybe missingClaim return $ Map.lookup claim claimsMap
-      parseJwtClaim claimV $ "invalid " <> claim <> "; " <> hint
+    parseAllowedRolesClaim defaultVal = \case
+      Nothing ->
+        onNothing defaultVal $
+        throw400 JWTRoleClaimMissing $ "JWT claim does not contain " <> sessionVariableToText allowedRolesClaim
+      Just v -> parseJwtClaim v $ "invalid " <> sessionVariableToText allowedRolesClaim <>
+                "; should be a list of roles"
+
+    parseDefaultRoleClaim defaultVal = \case
+      Nothing ->
+        onNothing defaultVal $
+        throw400 JWTRoleClaimMissing $ "JWT claim does not contain " <> sessionVariableToText defaultRoleClaim
+      Just v -> parseJwtClaim v $ "invalid " <> sessionVariableToText defaultRoleClaim <>
+                "; should be a role"
+
+    claimsNotFound namespace =
+      throw400 JWTInvalidClaims $ case namespace of
+      ClaimNsPath path -> T.pack $ "claims not found at claims_namespace_path: '"
+                          <> encodeJSONPath path <> "'"
+      ClaimNs ns -> "claims key: '" <> ns <> "' not found"
+
+    parseObjectFromString namespace claimsFmt jVal =
+      case (claimsFmt, jVal) of
+        (JCFStringifiedJson, J.String v) ->
+          either (const $ claimsErr $ strngfyErr v) return
+          $ J.eitherDecodeStrict $ T.encodeUtf8 v
+        (JCFStringifiedJson, _) ->
+          claimsErr "expecting a string when claims_format is stringified_json"
+        (JCFJson, J.Object o) -> return o
+        (JCFJson, _) ->
+          claimsErr "expecting a json object when claims_format is json"
       where
-        missingClaim = throw400 JWTRoleClaimMissing $ "JWT claim does not contain " <> claim
+        strngfyErr v =
+          let claimsLocation = case namespace of
+                ClaimNsPath path -> T.pack $ "claims_namespace_path " <> encodeJSONPath path
+                ClaimNs ns       -> "claims_namespace " <> ns
+          in "expecting stringified json at: '"
+             <> claimsLocation
+             <> "', but found: " <> v
+
+        claimsErr = throw400 JWTInvalidClaims
 
 -- | Verify the JWT against given JWK
 verifyJwt
@@ -420,23 +541,24 @@ verifyJwt ctx (RawJWT rawJWT) = do
 
 
 instance J.ToJSON JWTConfig where
-  toJSON (JWTConfig keyOrUrl claimNs aud claimsFmt iss) =
-    J.object (jwkFields ++ sharedFields ++ claimsNsFields)
-    where
-      jwkFields = case keyOrUrl of
-        Left _    -> [ "type" J..= J.String "<TYPE REDACTED>"
-                     , "key" J..= J.String "<JWK REDACTED>" ]
-        Right url -> [ "jwk_url" J..= url ]
-
-      claimsNsFields = case claimNs of
-        ClaimNsPath nsPath ->
-          ["claims_namespace_path" J..= encodeJSONPath nsPath]
-        ClaimNs ns -> ["claims_namespace" J..= J.String ns]
-
-      sharedFields = [ "claims_format" J..= claimsFmt
-                     , "audience" J..= aud
-                     , "issuer" J..= iss
-                     ]
+  toJSON (JWTConfig keyOrUrl aud iss claims) =
+    let keyOrUrlPairs = case keyOrUrl of
+          Left _    -> [ "type" J..= J.String "<TYPE REDACTED>"
+                       , "key" J..= J.String "<JWK REDACTED>"
+                       ]
+          Right url -> ["jwk_url" J..= url]
+        claimsPairs = case claims of
+          JCNamespace namespace claimsFormat ->
+            let namespacePairs = case namespace of
+                  ClaimNsPath nsPath ->
+                    ["claims_namespace_path" J..= encodeJSONPath nsPath]
+                  ClaimNs ns -> ["claims_namespace" J..= J.String ns]
+            in namespacePairs <> ["claims_format" J..= claimsFormat]
+          JCMap claimsMap -> ["claims_map" J..= claimsMap]
+    in J.object $ keyOrUrlPairs <>
+                  [ "audience" J..= aud
+                  , "issuer" J..= iss
+                  ] <> claimsPairs
 
 -- | Parse from a json string like:
 -- | `{"type": "RS256", "key": "<PEM-encoded-public-key-or-X509-cert>"}`
@@ -450,25 +572,27 @@ instance J.FromJSON JWTConfig where
     aud     <- o J..:? "audience"
     iss     <- o J..:? "issuer"
     jwkUrl  <- o J..:? "jwk_url"
-    isStrngfd <- o J..:? "claims_format"
-
+    claimsFormat <- o J..:? "claims_format" J..!= defaultClaimsFormat
+    claimsMap <- o J..:? "claims_map"
 
     hasuraClaimsNs <-
       case (claimsNsPath,claimsNs) of
-        (Nothing, Nothing) -> return $ ClaimNs defaultClaimNs
-        (Just nsPath, Nothing) -> either failJSONPathParsing (return . ClaimNsPath) . JSONPath.parseJSONPath $ nsPath
+        (Nothing, Nothing) -> pure $ ClaimNs defaultClaimsNamespace
+        (Just nsPath, Nothing) -> either failJSONPathParsing (return . ClaimNsPath) . parseJSONPath $ nsPath
         (Nothing, Just ns) -> return $ ClaimNs ns
         (Just _, Just _) -> fail "claims_namespace and claims_namespace_path both cannot be set"
 
-    case (mRawKey, jwkUrl) of
+    keyOrUrl <- case (mRawKey, jwkUrl) of
       (Nothing, Nothing) -> fail "key and jwk_url both cannot be empty"
       (Just _, Just _)   -> fail "key, jwk_url both cannot be present"
       (Just rawKey, Nothing) -> do
         keyType <- o J..: "type"
         key <- parseKey keyType rawKey
-        return $ JWTConfig (Left key) hasuraClaimsNs aud isStrngfd iss
-      (Nothing, Just url) ->
-        return $ JWTConfig (Right url) hasuraClaimsNs aud isStrngfd iss
+        pure $ Left key
+      (Nothing, Just url) -> pure $ Right url
+
+    pure $ JWTConfig keyOrUrl aud iss $
+           maybe (JCNamespace hasuraClaimsNs claimsFormat) JCMap claimsMap
 
     where
       parseKey keyType rawKey =
@@ -488,6 +612,22 @@ instance J.FromJSON JWTConfig where
 
       failJSONPathParsing err = fail $ "invalid JSON path claims_namespace_path error: " ++ err
 
+-- parse x-hasura-allowed-roles, x-hasura-default-role from JWT claims
+parseHasuraClaims :: forall m. (MonadError QErr m) => ClaimsMap -> m HasuraClaims
+parseHasuraClaims claimsMap = do
+  HasuraClaims <$>
+    parseClaim allowedRolesClaim "should be a list of roles" <*>
+    parseClaim defaultRoleClaim  "should be a single role name"
+
+  where
+    parseClaim :: J.FromJSON a => SessionVariable -> Text -> m a
+    parseClaim claim hint = do
+      claimV <- maybe missingClaim return $ Map.lookup claim claimsMap
+      parseJwtClaim claimV $ "invalid " <> claimText <> "; " <> hint
+      where
+        missingClaim = throw400 JWTRoleClaimMissing $ "JWT claim does not contain " <> claimText
+        claimText = sessionVariableToText claim
+
 -- Utility:
 parseJwtClaim :: (J.FromJSON a, MonadError QErr m) => J.Value -> Text -> m a
 parseJwtClaim v errMsg =
diff --git a/server/src-lib/Hasura/Server/Init.hs b/server/src-lib/Hasura/Server/Init.hs
index 2a078666211..9ed380ce1a5 100644
--- a/server/src-lib/Hasura/Server/Init.hs
+++ b/server/src-lib/Hasura/Server/Init.hs
@@ -1,6 +1,5 @@
 -- | Types and functions related to the server initialisation
 {-# LANGUAGE CPP #-}
-{-# OPTIONS_GHC -O0 #-}
 module Hasura.Server.Init
   ( module Hasura.Server.Init
   , module Hasura.Server.Init.Config
diff --git a/server/src-lib/Hasura/Session.hs b/server/src-lib/Hasura/Session.hs
index d2f6628ca9e..cdd2baaa60e 100644
--- a/server/src-lib/Hasura/Session.hs
+++ b/server/src-lib/Hasura/Session.hs
@@ -5,12 +5,12 @@ module Hasura.Session
   , isAdmin
   , roleNameToTxt
   , SessionVariable
-  , SessionVariableValue
   , mkSessionVariable
   , SessionVariables
+  , SessionVariableValue
   , sessionVariableToText
   , mkSessionVariablesText
-  , mkSessionVariables
+  , mkSessionVariablesHeaders
   , sessionVariablesToHeaders
   , getSessionVariableValue
   , getSessionVariablesSet
@@ -24,7 +24,6 @@ module Hasura.Session
   , mkUserInfo
   , adminUserInfo
   , BackendOnlyFieldAccess(..)
-  , userInfoToList
   ) where
 
 import           Hasura.Incremental         (Cacheable)
@@ -36,6 +35,7 @@ import           Hasura.Server.Utils
 import           Hasura.SQL.Types
 
 import           Data.Aeson
+import           Data.Aeson.Types           (Parser, toJSONKeyText)
 import           Instances.TH.Lift          ()
 import           Language.Haskell.TH.Syntax (Lift)
 
@@ -47,7 +47,7 @@ import qualified Database.PG.Query          as Q
 import qualified Network.HTTP.Types         as HTTP
 
 newtype RoleName
-  = RoleName { getRoleTxt :: NonEmptyText }
+  = RoleName {getRoleTxt :: NonEmptyText}
   deriving ( Show, Eq, Ord, Hashable, FromJSONKey, ToJSONKey, FromJSON
            , ToJSON, Q.FromCol, Q.ToPrepArg, Lift, Generic, Arbitrary, NFData, Cacheable )
 
@@ -72,6 +72,20 @@ newtype SessionVariable = SessionVariable {unSessionVariable :: CI.CI Text}
 instance ToJSON SessionVariable where
   toJSON = toJSON . CI.original . unSessionVariable
 
+instance ToJSONKey SessionVariable where
+  toJSONKey = toJSONKeyText sessionVariableToText
+
+parseSessionVariable :: Text -> Parser SessionVariable
+parseSessionVariable t =
+  if isSessionVariable t then pure $ mkSessionVariable t
+  else fail $ show t <> " is not a Hasura session variable"
+
+instance FromJSON SessionVariable where
+  parseJSON = withText "String" parseSessionVariable
+
+instance FromJSONKey SessionVariable where
+  fromJSONKey = FromJSONKeyTextParser parseSessionVariable
+
 sessionVariableToText :: SessionVariable -> Text
 sessionVariableToText = T.toLower . CI.original . unSessionVariable
 
@@ -95,8 +109,8 @@ mkSessionVariablesText :: [(Text, Text)] -> SessionVariables
 mkSessionVariablesText =
   SessionVariables . Map.fromList . map (first mkSessionVariable)
 
-mkSessionVariables :: [HTTP.Header] -> SessionVariables
-mkSessionVariables =
+mkSessionVariablesHeaders :: [HTTP.Header] -> SessionVariables
+mkSessionVariablesHeaders =
   SessionVariables
   . Map.fromList
   . map (first SessionVariable)
@@ -202,9 +216,3 @@ maybeRoleFromSessionVariables sessionVariables =
 
 adminUserInfo :: UserInfo
 adminUserInfo = UserInfo adminRoleName mempty BOFADisallowed
-
-userInfoToList :: UserInfo -> [(Text, Text)]
-userInfoToList userInfo =
-  let vars = map (first sessionVariableToText) $ Map.toList $ unSessionVariables . _uiSession $ userInfo
-      rn = roleNameToTxt . _uiRole $ userInfo
-  in (sessionVariableToText userRoleHeader, rn) : vars
diff --git a/server/src-test/Hasura/Server/AuthSpec.hs b/server/src-test/Hasura/Server/AuthSpec.hs
index 0459fc38858..f9d8ebbff38 100644
--- a/server/src-test/Hasura/Server/AuthSpec.hs
+++ b/server/src-test/Hasura/Server/AuthSpec.hs
@@ -10,6 +10,8 @@ import           Control.Monad.Trans.Control
 import qualified Crypto.JOSE.JWK             as Jose
 import           Data.Aeson                  ((.=))
 import qualified Data.Aeson                  as J
+import           Data.Parser.JSONPath
+import qualified Data.HashMap.Strict         as Map
 import qualified Network.HTTP.Types          as N
 
 import           Hasura.RQL.Types
@@ -24,6 +26,13 @@ spec :: Spec
 spec = do
   getUserInfoWithExpTimeTests
   setupAuthModeTests
+  parseClaimsMapTests
+
+allowedRolesClaimText :: Text
+allowedRolesClaimText = sessionVariableToText allowedRolesClaim
+
+defaultRoleClaimText :: Text
+defaultRoleClaimText = sessionVariableToText defaultRoleClaim
 
 -- Unit test the core of our authentication code. This doesn't test the details
 -- of resolving roles from JWT or webhook.
@@ -50,10 +59,12 @@ getUserInfoWithExpTimeTests = describe "getUserInfo" $ do
               _UserInfo nm =
                 mkUserInfo (URBFromSessionVariablesFallback $ mkRoleNameE nm)
                            UAdminSecretNotSent
-                           (mkSessionVariables mempty)
+                           (mkSessionVariablesHeaders mempty)
           processJwt = processJwt_ $
             -- processAuthZHeader:
-            \_jwtCtx _authzHeader -> return (claims , Nothing)
+            \_jwtCtx _authzHeader -> return (claimsObjToClaimsMap claims , Nothing)
+            where
+              claimsObjToClaimsMap = Map.fromList . map (first mkSessionVariable) . Map.toList
 
   let setupAuthMode'E a b c d =
         either (const $ error "fixme") id <$> setupAuthMode' a b c d
@@ -272,18 +283,18 @@ getUserInfoWithExpTimeTests = describe "getUserInfo" $ do
         \(mode, modeMsg) -> describe modeMsg $ do
 
           it "authorizes successfully with JWT when requested role allowed" $ do
-            let claim = unObject [ allowedRolesClaim .= (["editor","user", "mod"] :: [Text])
-                                , defaultRoleClaim .= ("user" :: Text)
+            let claim = unObject [ allowedRolesClaimText .= (["editor","user", "mod"] :: [Text])
+                                , defaultRoleClaimText .= ("user" :: Text)
                                 ]
             getUserInfoWithExpTime claim [("Authorization", "IGNORED"), (userRoleHeader, "editor")] mode
               `shouldReturn` Right (mkRoleNameE "editor")
-            -- Uses the defaultRoleClaim:
+            -- Uses the defaultRoleClaimText:
             getUserInfoWithExpTime claim [("Authorization", "IGNORED")] mode
               `shouldReturn` Right (mkRoleNameE "user")
 
           it "rejects when requested role is not allowed" $ do
-            let claim = unObject [ allowedRolesClaim .= (["editor","user", "mod"] :: [Text])
-                                , defaultRoleClaim .= ("user" :: Text)
+            let claim = unObject [ allowedRolesClaimText .= (["editor","user", "mod"] :: [Text])
+                                , defaultRoleClaimText .= ("user" :: Text)
                                 ]
             getUserInfoWithExpTime claim [("Authorization", "IGNORED"), (userRoleHeader, "r00t")] mode
               `shouldReturn` Left AccessDenied
@@ -291,8 +302,8 @@ getUserInfoWithExpTimeTests = describe "getUserInfo" $ do
               `shouldReturn` Left AccessDenied
 
           -- A corner case, but the behavior seems desirable:
-          it "always rejects when token has empty allowedRolesClaim" $ do
-            let claim = unObject [ allowedRolesClaim .= ([] :: [Text]), defaultRoleClaim .= ("user" :: Text) ]
+          it "always rejects when token has empty allowedRolesClaimText" $ do
+            let claim = unObject [ allowedRolesClaimText .= ([] :: [Text]), defaultRoleClaimText .= ("user" :: Text) ]
             getUserInfoWithExpTime claim [("Authorization", "IGNORED"), (userRoleHeader, "admin")] mode
               `shouldReturn` Left AccessDenied
             getUserInfoWithExpTime claim [("Authorization", "IGNORED"), (userRoleHeader, "user")] mode
@@ -300,9 +311,9 @@ getUserInfoWithExpTimeTests = describe "getUserInfo" $ do
             getUserInfoWithExpTime claim [("Authorization", "IGNORED")] mode
               `shouldReturn` Left AccessDenied
 
-          it "rejects when token doesn't have proper allowedRolesClaim and defaultRoleClaim" $ do
-            let claim0 = unObject [ allowedRolesClaim .= (["editor","user", "mod"] :: [Text]) ]
-                claim1 = unObject [ defaultRoleClaim .= ("user" :: Text) ]
+          it "rejects when token doesn't have proper allowedRolesClaimText and defaultRoleClaimText" $ do
+            let claim0 = unObject [ allowedRolesClaimText .= (["editor","user", "mod"] :: [Text]) ]
+                claim1 = unObject [ defaultRoleClaimText .= ("user" :: Text) ]
                 claim2 = unObject []
             for_ [claim0, claim1, claim2] $ \claim ->
               getUserInfoWithExpTime claim [("Authorization", "IGNORED")] mode
@@ -381,13 +392,172 @@ setupAuthModeTests = describe "setupAuthMode" $ do
     setupAuthMode' (Just secret) (Just fakeAuthHook) (Just fakeJWTConfig) (Just unauthRole)
       `shouldReturn` Left ()
 
+parseClaimsMapTests :: Spec
+parseClaimsMapTests = describe "parseClaimMapTests" $ do
+  let
+    parseClaimsMap_
+      :: J.Object
+      -> JWTClaims
+      -> IO (Either Code ClaimsMap)
+    parseClaimsMap_ obj claims =
+      runExceptT $ withExceptT qeCode $ parseClaimsMap obj claims
+
+    unObject l = case J.object l of
+      J.Object o -> o
+      _          -> error "Impossible!"
+
+    defaultClaimsMap =
+      Map.fromList
+       [ (allowedRolesClaim, J.toJSON (map mkRoleNameE ["user","editor"]))
+       , (defaultRoleClaim, J.toJSON (mkRoleNameE "user"))]
+
+  describe "JWT configured with namespace" $ do
+
+    describe "JWT configured with namespace key, the key is a text value which is expected to be at the root of the JWT token" $ do
+      it "parses claims map from the JWT token with correct namespace " $ do
+        let claimsObj = unObject $
+                        [ "x-hasura-allowed-roles" .= (["user","editor"] :: [Text])
+                        , "x-hasura-default-role"  .= ("user" :: Text)
+                        ]
+        let obj = (unObject $ ["claims_map" .= claimsObj])
+        parseClaimsMap_ obj  (JCNamespace (ClaimNs "claims_map") defaultClaimsFormat)
+          `shouldReturn`
+          Right defaultClaimsMap
+
+      it "doesn't parse claims map from the JWT token with wrong namespace " $ do
+        let claimsObj = unObject $
+                        [ "x-hasura-allowed-roles" .= (["user","editor"] :: [Text])
+                        , "x-hasura-default-role"  .= ("user" :: Text)
+                        ]
+        let obj = (unObject $ ["claims_map" .= claimsObj])
+        parseClaimsMap_ obj  (JCNamespace (ClaimNs "wrong_claims_map") defaultClaimsFormat)
+          `shouldReturn`
+          Left JWTInvalidClaims
+
+    describe "JWT configured with namespace JSON path, JSON path to the claims map" $ do
+      it "parse claims map from the JWT token using claims namespace JSON Path" $ do
+        let obj = unObject $
+                        [ "x-hasura-allowed-roles" .= (["user","editor"] :: [Text])
+                        , "x-hasura-default-role"  .= ("user" :: Text)
+                        , "sub" .= ("random" :: Text)
+                        , "exp" .= (1626420800 :: Int)        -- we ignore these non session variables, in the response
+                        ]
+        parseClaimsMap_ obj  (JCNamespace (ClaimNsPath (mkJSONPathE "$")) defaultClaimsFormat)
+        -- "$" JSON path signifies the claims are to be found in the root of the JWT token
+          `shouldReturn`
+          Right defaultClaimsMap
+
+      it "throws error while attempting to parse claims map from the JWT token with a wrong namespace JSON Path" $ do
+        let claimsObj = unObject $
+                        [ "x-hasura-allowed-roles" .= (["user","editor"] :: [Text])
+                        , "x-hasura-default-role"  .= ("user" :: Text)
+                        ]
+            obj = unObject $ [ "hasura_claims" .= claimsObj ]
+        parseClaimsMap_ obj  (JCNamespace (ClaimNsPath (mkJSONPathE "$.claims")) defaultClaimsFormat)
+          `shouldReturn`
+          Left JWTInvalidClaims
+
+  describe "JWT configured with custom JWT claims" $ do
+
+    let rolesObj = unObject $
+                    [ "allowed" .= (["user","editor"] :: [Text])
+                    , "default"  .= ("user" :: Text)
+                    ]
+        userId = unObject [ "id" .= ("1" :: Text)]
+        obj = unObject $ [ "roles" .= rolesObj
+                         , "user"  .= userId
+                         ]
+        userIdClaim = mkSessionVariable "x-hasura-user-id"
+
+    describe "custom claims with JSON paths to the claim location in the JWT token" $ do
+
+      it "parse custom claims values, with correct values" $ do
+        let customDefRoleClaim = mkCustomDefaultRoleClaim (Just "$.roles.default") Nothing
+            customAllowedRolesClaim = mkCustomAllowedRoleClaim (Just "$.roles.allowed") Nothing
+            otherClaims = Map.fromList
+                 [(userIdClaim, (mkCustomOtherClaim (Just "$.user.id") Nothing))]
+            customClaimsMap = JWTCustomClaimsMap customDefRoleClaim customAllowedRolesClaim otherClaims
+
+        parseClaimsMap_ obj  (JCMap customClaimsMap)
+          `shouldReturn`
+          Right (Map.fromList
+           [ (allowedRolesClaim, J.toJSON (map mkRoleNameE ["user","editor"]))
+           , (defaultRoleClaim, J.toJSON (mkRoleNameE "user"))
+           , (userIdClaim, J.String "1")
+           ])
+
+      it "throws error when a specified custom claim value is missing" $ do
+
+        let customDefRoleClaim = mkCustomDefaultRoleClaim (Just "$.roles.wrong_default") Nothing -- wrong path provided
+            customAllowedRolesClaim = mkCustomAllowedRoleClaim (Just "$.roles.allowed") Nothing
+            customClaimsMap = JWTCustomClaimsMap customDefRoleClaim customAllowedRolesClaim mempty
+        parseClaimsMap_ obj  (JCMap customClaimsMap)
+          `shouldReturn`
+          Left JWTRoleClaimMissing
+
+      it "doesn't throw an error when the specified custom claim is missing, but the default value is provided" $ do
+
+        let customDefRoleClaim = mkCustomDefaultRoleClaim (Just "$.roles.wrong_default") (Just "editor")
+            customAllowedRolesClaim = mkCustomAllowedRoleClaim (Just "$.roles.allowed") Nothing
+            customClaimsMap = JWTCustomClaimsMap customDefRoleClaim customAllowedRolesClaim mempty
+        parseClaimsMap_ obj  (JCMap customClaimsMap)
+          `shouldReturn`
+          Right (Map.fromList
+           [ (allowedRolesClaim, J.toJSON (map mkRoleNameE ["user","editor"]))
+           , (defaultRoleClaim, J.toJSON (mkRoleNameE "editor"))
+           ])
+
+    describe "custom claims with literal values" $ do
+
+      it "uses the literal custom claim value" $ do
+
+        let customDefRoleClaim = mkCustomDefaultRoleClaim Nothing (Just "editor")
+            customAllowedRolesClaim = mkCustomAllowedRoleClaim Nothing (Just ["user", "editor"])
+            customClaimsMap = JWTCustomClaimsMap customDefRoleClaim customAllowedRolesClaim mempty
+        parseClaimsMap_ mempty (JCMap customClaimsMap)
+          `shouldReturn`
+          Right (Map.fromList
+           [ (allowedRolesClaim, J.toJSON (map mkRoleNameE ["user","editor"]))
+           , (defaultRoleClaim, J.toJSON (mkRoleNameE "editor"))
+           ])
+
+mkCustomDefaultRoleClaim :: (Maybe Text) -> (Maybe Text) -> JWTCustomClaimsMapDefaultRole
+mkCustomDefaultRoleClaim claimPath defVal =
+  -- check if claimPath is provided, if not then use the default value
+  -- as the literal value by removing the `Maybe` of defVal
+  case claimPath of
+    Just path -> JWTCustomClaimsMapJSONPath (mkJSONPathE path) $ defRoleName
+    Nothing -> JWTCustomClaimsMapStatic $ maybe (mkRoleNameE "user") id defRoleName
+  where
+    defRoleName = mkRoleNameE <$> defVal
+
+mkCustomAllowedRoleClaim :: (Maybe Text) -> (Maybe [Text]) -> JWTCustomClaimsMapAllowedRoles
+mkCustomAllowedRoleClaim claimPath defVal =
+  -- check if claimPath is provided, if not then use the default value
+  -- as the literal value by removing the `Maybe` of defVal
+  case claimPath of
+    Just path -> JWTCustomClaimsMapJSONPath (mkJSONPathE path) $ defAllowedRoles
+    Nothing ->
+      JWTCustomClaimsMapStatic $
+        maybe (fmap mkRoleNameE $ ["user", "editor"]) id defAllowedRoles
+  where
+    defAllowedRoles = fmap mkRoleNameE <$> defVal
+
+-- use for claims other than `x-hasura-default-role` and `x-hasura-allowed-roles`
+mkCustomOtherClaim :: (Maybe Text) -> (Maybe Text) -> JWTCustomClaimsMapValue
+mkCustomOtherClaim claimPath defVal =
+  -- check if claimPath is provided, if not then use the default value
+  -- as the literal value by removing the `Maybe` of defVal
+  case claimPath of
+    Just path -> JWTCustomClaimsMapJSONPath (mkJSONPathE path) $ defVal
+    Nothing -> JWTCustomClaimsMapStatic $ maybe "default claim value" id defVal
+
 fakeJWTConfig :: JWTConfig
 fakeJWTConfig =
   let jcKeyOrUrl = Left (Jose.fromOctets [])
-      jcClaimNs = ClaimNs ""
       jcAudience = Nothing
-      jcClaimsFormat = Nothing
       jcIssuer = Nothing
+      jcClaims = JCNamespace (ClaimNs "") JCFJson
    in JWTConfig{..}
 
 fakeAuthHook :: AuthHook
@@ -396,6 +566,10 @@ fakeAuthHook = AuthHookG "http://fake" AHTGet
 mkRoleNameE :: Text -> RoleName
 mkRoleNameE = fromMaybe (error "fixme") . mkRoleName
 
+mkJSONPathE :: Text -> JSONPath
+mkJSONPathE = either error id . parseJSONPath
+
+
 newtype NoReporter a = NoReporter { runNoReporter :: IO a }
   deriving newtype (Functor, Applicative, Monad, MonadIO, MonadBase IO, MonadBaseControl IO)
 
@@ -412,7 +586,7 @@ setupAuthMode'  mAdminSecretHash mWebHook mJwtSecret mUnAuthRole =
   -- just throw away the error message for ease of testing:
   fmap (either (const $ Left ()) Right)
     $ runNoReporter
-    $ runExceptT 
+    $ runExceptT
     $ setupAuthMode mAdminSecretHash mWebHook mJwtSecret mUnAuthRole
       -- NOTE: this won't do any http or launch threads if we don't specify JWT URL:
       (error "H.Manager") (Logger $ void . return)
diff --git a/server/src-test/Main.hs b/server/src-test/Main.hs
index 41e47b78b75..aff71788b6f 100644
--- a/server/src-test/Main.hs
+++ b/server/src-test/Main.hs
@@ -62,7 +62,7 @@ unitSpecs :: Spec
 unitSpecs = do
   describe "Data.Parser.CacheControl" CacheControlParser.spec
   describe "Data.Parser.URLTemplate" URLTemplate.spec
-  describe "Data.Parser.JsonPath" JsonPath.spec
+  describe "Data.Parser.JSONPath" JsonPath.spec
   describe "Hasura.Incremental" IncrementalSpec.spec
   -- describe "Hasura.RQL.Metadata" MetadataSpec.spec -- Commenting until optimizing the test in CI
   describe "Data.Time" TimeSpec.spec
diff --git a/server/tests-py/queries/remote_schemas/remote_relationships/basic_relationship_joining_singleton_with_array.yaml b/server/tests-py/queries/remote_schemas/remote_relationships/basic_relationship_joining_singleton_with_array.yaml
new file mode 100644
index 00000000000..49c066fd7ce
--- /dev/null
+++ b/server/tests-py/queries/remote_schemas/remote_relationships/basic_relationship_joining_singleton_with_array.yaml
@@ -0,0 +1,26 @@
+description: Simple Remote relationship with singleton input value type joining to an expected array input type
+url: /v1/graphql
+status: 200
+response:
+  data:
+    profiles:
+      - id: 1
+        remoteUsers:
+        - user_id: 1
+          userMessages:
+          - id: 1
+            msg: "You win!"
+query:
+  query: |
+    query {
+      profiles(where:{ id: { _eq: 1}}) {
+        id
+        remoteUsers {
+          user_id
+          userMessages {
+            id
+            msg
+          }
+        }
+      }
+    }
diff --git a/server/tests-py/queries/remote_schemas/remote_relationships/setup_remote_rel_joining_singleton_with_array.yaml b/server/tests-py/queries/remote_schemas/remote_relationships/setup_remote_rel_joining_singleton_with_array.yaml
new file mode 100644
index 00000000000..6871d9f1c71
--- /dev/null
+++ b/server/tests-py/queries/remote_schemas/remote_relationships/setup_remote_rel_joining_singleton_with_array.yaml
@@ -0,0 +1,25 @@
+type: bulk
+args:
+- type: create_remote_relationship
+  args:
+    name: remoteUsers
+    table: profiles
+    hasura_fields:
+      - id
+    remote_schema: my-remote-schema
+    remote_field:
+      users:
+        arguments:
+          user_ids: "$id"
+
+- type: create_remote_relationship
+  args:
+    name: remoteUsersMultipleIds
+    table: profiles
+    hasura_fields:
+      - id
+    remote_schema: my-remote-schema
+    remote_field:
+      users:
+        arguments:
+          user_ids: ["$id"]
diff --git a/server/tests-py/remote_schemas/nodejs/index.js b/server/tests-py/remote_schemas/nodejs/index.js
index 15b61cbc3bd..7ea925e9c05 100644
--- a/server/tests-py/remote_schemas/nodejs/index.js
+++ b/server/tests-py/remote_schemas/nodejs/index.js
@@ -53,6 +53,7 @@ const typeDefs = gql`
     hello: String
     messages(where: MessageWhereInpObj, includes: IncludeInpObj): [Message]
     user(user_id: Int!): User
+    users(user_ids: [Int]!): [User]
     message(id: Int!) : Message
     communications(id: Int): [Communication]
   }
@@ -175,6 +176,13 @@ const resolvers = {
         user: (_, { user_id }) => {
             return { "user_id": user_id };
         },
+        users: (parent, args, context, info) => {
+            var results = []
+            for (userId of args.user_ids) {
+                results.push({"user_id":userId})
+            }
+            return results;
+        },
         communications: (_, { id }) => {
             var result = allMessages;
             if(id) {
diff --git a/server/tests-py/test_jwt_claims_map.py b/server/tests-py/test_jwt_claims_map.py
new file mode 100644
index 00000000000..19f7f420a6c
--- /dev/null
+++ b/server/tests-py/test_jwt_claims_map.py
@@ -0,0 +1,289 @@
+import pytest
+import jwt
+import math
+import ruamel.yaml as yaml
+import json
+
+from validate import check_query
+from datetime import datetime, timedelta
+from context import PytestConf
+
+if not PytestConf.config.getoption('--hge-jwt-key-file'):
+    pytest.skip('--hge-jwt-key-file is missing, skipping JWT tests', allow_module_level=True)
+
+hge_jwt_conf = PytestConf.config.getoption('--hge-jwt-conf')
+
+if not hge_jwt_conf:
+    pytest.skip('--hge-jwt-key-conf is missing, skipping JWT tests', allow_module_level=True)
+
+if 'claims_map' not in hge_jwt_conf:
+    pytest.skip('cliams_map missing in jwt config, skipping JWT Claims Map tests', allow_module_level=True)
+
+# The following claims_map is assumed to be set
+# {
+#     "claims_map": {
+#         "x-hasura-user-id": {"path":"$.['https://myapp.com/jwt/claims'].user.id"}
+#         "x-hasura-allowed-roles": {"$.['https://myapp.com/jwt/claims'].role.allowed","default":["user","editor"]}
+#         "x-hasura-default-role": {"$.['https://myapp.com/jwt/claims'].role.default","default":"user"}
+#     }
+# }
+
+def clean_null_terms(d):
+   clean = {}
+   for k, v in d.items():
+      if isinstance(v, dict):
+         nested = clean_null_terms(v)
+         if len(nested.keys()) > 0:
+            clean[k] = nested
+      elif v is not None:
+         clean[k] = v
+   return clean
+
+# TestJWTClaimsMapBasic will be called using two different JWT configs
+# one with default values and the other without default values. The
+# default values here is referred to the default value that's being
+# used when a value is not found while looking up the JWT token using
+# the JSON Path provided
+@pytest.mark.parametrize('endpoint', ['/v1/graphql', '/v1alpha1/graphql'])
+class TestJWTClaimsMapBasic():
+    def mk_claims(self, user_id=None, allowed_roles=None, default_role=None):
+        self.claims['https://myapp.com/jwt/claims'] = clean_null_terms({
+            'user': {
+                'id': user_id
+            },
+            'role': {
+                'allowed': allowed_roles,
+                'default': default_role
+            }
+        })
+
+    def test_jwt_claims_map_valid_claims_success(self, hge_ctx, endpoint):
+        self.mk_claims('1', ['user', 'editor'], 'user')
+        token = jwt.encode(self.claims, hge_ctx.hge_jwt_key, algorithm='RS512').decode('utf-8')
+        self.conf['headers']['Authorization'] = 'Bearer ' + token
+        self.conf['url'] = endpoint
+        self.conf['status'] = 200
+        check_query(hge_ctx, self.conf, add_auth=False)
+
+    def test_jwt_claims_map_invalid_role_in_request_header(self, hge_ctx, endpoint):
+        self.mk_claims('1', ['contractor', 'editor'], 'contractor')
+        token = jwt.encode(self.claims, hge_ctx.hge_jwt_key, algorithm='RS512').decode('utf-8')
+        self.conf['headers']['Authorization'] = 'Bearer ' + token
+        self.conf['response'] = {
+            'errors': [{
+                'extensions': {
+                    'code': 'access-denied',
+                    'path': '$'
+                },
+                'message': 'Your requested role is not in allowed roles'
+            }]
+        }
+        self.conf['url'] = endpoint
+        if endpoint == '/v1/graphql':
+            self.conf['status'] = 200
+        if endpoint == '/v1alpha1/graphql':
+            self.conf['status'] = 400
+        check_query(hge_ctx, self.conf, add_auth=False)
+
+    def test_jwt_claims_map_no_allowed_roles_in_claim(self, hge_ctx, endpoint):
+        self.mk_claims('1', None, 'user')
+        default_allowed_roles = hge_ctx.hge_jwt_conf_dict['claims_map']['x-hasura-allowed-roles'].get('default')
+        token = jwt.encode(self.claims, hge_ctx.hge_jwt_key, algorithm='RS512').decode('utf-8')
+        self.conf['headers']['Authorization'] = 'Bearer ' + token
+        if default_allowed_roles is None:
+            self.conf['response'] = {
+                'errors': [{
+                    'extensions': {
+                        'code': 'jwt-missing-role-claims',
+                        'path': '$'
+                    },
+                    'message': 'JWT claim does not contain x-hasura-allowed-roles'
+                }]
+            }
+            self.conf['url'] = endpoint
+            if endpoint == '/v1/graphql':
+                self.conf['status'] = 200
+            if endpoint == '/v1alpha1/graphql':
+                self.conf['status'] = 400
+        else:
+            self.conf['status'] = 200
+        self.conf['url'] = endpoint
+        check_query(hge_ctx, self.conf, add_auth=False)
+
+    def test_jwt_claims_map_invalid_allowed_roles_in_claim(self, hge_ctx, endpoint):
+        self.mk_claims('1', 'user', 'user')
+        token = jwt.encode(self.claims, hge_ctx.hge_jwt_key, algorithm='RS512').decode('utf-8')
+        self.conf['headers']['Authorization'] = 'Bearer ' + token
+        self.conf['response'] = {
+            'errors': [{
+                'extensions': {
+                    'code': 'jwt-invalid-claims',
+                    'path': '$'
+                },
+                'message': 'invalid x-hasura-allowed-roles; should be a list of roles: parsing [] failed, expected Array, but encountered String'
+            }]
+        }
+        self.conf['url'] = endpoint
+        if endpoint == '/v1/graphql':
+            self.conf['status'] = 200
+        if endpoint == '/v1alpha1/graphql':
+            self.conf['status'] = 400
+        check_query(hge_ctx, self.conf, add_auth=False)
+
+    def test_jwt_claims_map_no_default_role(self, hge_ctx, endpoint):
+        # default_default_role is the default default role set in the JWT config
+        # when the lookup with the JSONPath fails, this is the value that will
+        # be used for the `x-hasura-default-role` claim
+        default_default_role = hge_ctx.hge_jwt_conf_dict['claims_map']['x-hasura-default-role'].get('default')
+        self.mk_claims('1', ['user'])
+        token = jwt.encode(self.claims, hge_ctx.hge_jwt_key, algorithm='RS512').decode('utf-8')
+        self.conf['headers']['Authorization'] = 'Bearer ' + token
+        if default_default_role is None:
+            self.conf['response'] = {
+                'errors': [{
+                    'extensions': {
+                        'code': 'jwt-missing-role-claims',
+                        'path': '$'
+                    },
+                    'message': 'JWT claim does not contain x-hasura-default-role'
+                }]
+            }
+            if endpoint == '/v1/graphql':
+                self.conf['status'] = 200
+            if endpoint == '/v1alpha1/graphql':
+                self.conf['status'] = 400
+        else:
+            self.conf['status'] = 200
+        self.conf['url'] = endpoint
+        check_query(hge_ctx, self.conf, add_auth=False)
+
+    def test_jwt_claims_map_claim_not_found(self, hge_ctx, endpoint):
+        default_user_id = hge_ctx.hge_jwt_conf_dict['claims_map']['x-hasura-user-id'].get('default')
+        self.mk_claims(None, ['user', 'editor'], 'user')
+        token = jwt.encode(self.claims, hge_ctx.hge_jwt_key, algorithm='RS512').decode('utf-8')
+        self.conf['headers']['Authorization'] = 'Bearer ' + token
+        if default_user_id is None:
+            self.conf['response'] = {
+                'errors': [{
+                    'extensions': {
+                        'code': 'jwt-invalid-claims',
+                        'path': '$'
+                    },
+                    'message': 'JWT claim from claims_map, x-hasura-user-id not found'
+                }]
+            }
+            if endpoint == '/v1/graphql':
+                self.conf['status'] = 200
+            if endpoint == '/v1alpha1/graphql':
+                self.conf['status'] = 400
+        else:
+            self.conf['status'] = 200
+        self.conf['url'] = endpoint
+        check_query(hge_ctx, self.conf, add_auth=False)
+
+    @pytest.fixture(autouse=True)
+    def transact(self, setup):
+        self.dir = 'queries/graphql_query/permissions'
+        with open(self.dir + '/user_select_query_unpublished_articles.yaml') as c:
+            self.conf = yaml.safe_load(c)
+        curr_time = datetime.now()
+        exp_time = curr_time + timedelta(hours=1)
+        self.claims = {
+            'sub': '1234567890',
+            'name': 'John Doe',
+            'iat': math.floor(curr_time.timestamp()),
+            'exp': math.floor(exp_time.timestamp())
+        }
+
+    @pytest.fixture(scope='class')
+    def setup(self, request, hge_ctx):
+        self.dir = 'queries/graphql_query/permissions'
+        st_code, resp = hge_ctx.v1q_f(self.dir + '/setup.yaml')
+        assert st_code == 200, resp
+        yield
+        st_code, resp = hge_ctx.v1q_f(self.dir + '/teardown.yaml')
+        assert st_code == 200, resp
+
+# The values of 'x-hasura-allowed-roles' and 'x-hasura-default-role' has
+# been set in the JWT config
+@pytest.mark.parametrize('endpoint', ['/v1/graphql', '/v1alpha1/graphql'])
+class TestJWTClaimsMapWithStaticHasuraClaimsMapValues():
+    def mk_claims(self, user_id=None):
+        self.claims['https://myapp.com/jwt/claims'] = clean_null_terms({
+            'user': {
+                'id': user_id
+            }
+        })
+
+    def test_jwt_claims_map_valid_claims_success(self, hge_ctx, endpoint):
+        self.mk_claims('1')
+        token = jwt.encode(self.claims, hge_ctx.hge_jwt_key, algorithm='RS512').decode('utf-8')
+        self.conf['headers']['Authorization'] = 'Bearer ' + token
+        self.conf['headers']['x-hasura-custom-header'] = 'custom-value'
+        self.conf['url'] = endpoint
+        self.conf['status'] = 200
+        check_query(hge_ctx, self.conf, add_auth=False)
+
+    def test_jwt_claims_map_invalid_role_in_request_header(self, hge_ctx, endpoint):
+        self.mk_claims('1')
+        token = jwt.encode(self.claims, hge_ctx.hge_jwt_key, algorithm='RS512').decode('utf-8')
+        self.conf['headers']['Authorization'] = 'Bearer ' + token
+        self.conf['headers']['X-Hasura-Role'] = 'random_string'
+        self.conf['response'] = {
+            'errors': [{
+                'extensions': {
+                    'code': 'access-denied',
+                    'path': '$'
+                },
+                'message': 'Your requested role is not in allowed roles'
+            }]
+        }
+        self.conf['url'] = endpoint
+        if endpoint == '/v1/graphql':
+            self.conf['status'] = 200
+        if endpoint == '/v1alpha1/graphql':
+            self.conf['status'] = 400
+        check_query(hge_ctx, self.conf, add_auth=False)
+
+    def test_jwt_claims_map_claim_not_found(self, hge_ctx, endpoint):
+        self.mk_claims(None)
+        token = jwt.encode(self.claims, hge_ctx.hge_jwt_key, algorithm='RS512').decode('utf-8')
+        self.conf['headers']['Authorization'] = 'Bearer ' + token
+        self.conf['response'] = {
+            'errors': [{
+                'extensions': {
+                    'code': 'jwt-invalid-claims',
+                    'path': '$'
+                },
+                'message': 'JWT claim from claims_map, x-hasura-user-id not found'
+            }]
+        }
+        self.conf['url'] = endpoint
+        if endpoint == '/v1/graphql':
+            self.conf['status'] = 200
+        if endpoint == '/v1alpha1/graphql':
+            self.conf['status'] = 400
+        check_query(hge_ctx, self.conf, add_auth=False)
+
+    @pytest.fixture(autouse=True)
+    def transact(self, setup):
+        self.dir = 'queries/graphql_query/permissions'
+        with open(self.dir + '/user_select_query_unpublished_articles.yaml') as c:
+            self.conf = yaml.safe_load(c)
+        curr_time = datetime.now()
+        exp_time = curr_time + timedelta(hours=1)
+        self.claims = {
+            'sub': '1234567890',
+            'name': 'John Doe',
+            'iat': math.floor(curr_time.timestamp()),
+            'exp': math.floor(exp_time.timestamp())
+        }
+
+    @pytest.fixture(scope='class')
+    def setup(self, request, hge_ctx):
+        self.dir = 'queries/graphql_query/permissions'
+        st_code, resp = hge_ctx.v1q_f(self.dir + '/setup.yaml')
+        assert st_code == 200, resp
+        yield
+        st_code, resp = hge_ctx.v1q_f(self.dir + '/teardown.yaml')
+        assert st_code == 200, resp
diff --git a/server/tests-py/test_remote_relationships.py b/server/tests-py/test_remote_relationships.py
index 109d44ca533..d2c2d78b9a7 100644
--- a/server/tests-py/test_remote_relationships.py
+++ b/server/tests-py/test_remote_relationships.py
@@ -54,6 +54,9 @@ class TestCreateRemoteRelationship:
         st_code, resp = hge_ctx.v1q_f(self.dir() + 'setup_remote_rel_multiple_fields.yaml')
         assert st_code == 200, resp
 
+        st_code, resp = hge_ctx.v1q_f(self.dir() + 'setup_remote_rel_joining_singleton_with_array.yaml')
+        assert st_code == 200, resp
+
         # st_code, resp = hge_ctx.v1q_f(self.dir() + 'setup_remote_rel_with_interface.yaml')
         # assert st_code == 200, resp
 
@@ -157,6 +160,11 @@ class TestExecution:
         assert st_code == 200, resp
         check_query_f(hge_ctx, self.dir() + 'query_with_arr_rel.yaml')
 
+    def test_basic_relationship_joining_singleton_to_array(self, hge_ctx):
+        st_code, resp = hge_ctx.v1q_f(self.dir() + 'setup_remote_rel_joining_singleton_with_array.yaml')
+        assert st_code == 200, resp
+        check_query_f(hge_ctx, self.dir() + 'basic_relationship_joining_singleton_with_array.yaml')
+
     def test_basic_array(self, hge_ctx):
         st_code, resp = hge_ctx.v1q_f(self.dir() + 'setup_remote_rel_array.yaml')
         assert st_code == 200, resp