mirror of
https://github.com/hasura/graphql-engine.git
synced 2024-12-17 12:31:52 +03:00
f83a8e591f
Rename the admin secret key header used to access GraphQL engine from X-Hasura-Access-Key to X-Hasura-Admin-Secret. Server CLI and console all support the older flag but marks it as deprecated.
145 lines
4.3 KiB
ReStructuredText
145 lines
4.3 KiB
ReStructuredText
GraphQL engine server flags reference
|
|
=====================================
|
|
|
|
.. contents:: Table of contents
|
|
:backlinks: none
|
|
:depth: 1
|
|
:local:
|
|
|
|
Every GraphQL engine command is structured as:
|
|
|
|
.. code-block:: bash
|
|
|
|
$ graphql-engine <server-flags> serve <command-flags>
|
|
|
|
The flags can be passed as ENV variables as well.
|
|
|
|
Server flags
|
|
^^^^^^^^^^^^
|
|
|
|
For ``graphql-engine`` command these are the flags and ENV variables available:
|
|
|
|
|
|
.. list-table::
|
|
:header-rows: 1
|
|
|
|
* - Flag
|
|
- ENV variable
|
|
- Description
|
|
|
|
* - ``--database-url <DB_URL>``
|
|
- ``HASURA_GRAPHQL_DATABASE_URL``
|
|
- Postgres database URL:
|
|
|
|
``postgres://<user>:<password>@<host>:<port>/<db-name>``
|
|
|
|
Example: ``postgres://admin:mypass@mydomain.com:5432/mydb``
|
|
|
|
Or you can specify following options *(only via flags)*
|
|
|
|
.. code-block:: none
|
|
|
|
--host Postgres server host
|
|
-p, --port Postgres server port
|
|
-u, --user Database user name
|
|
-p, --password Password of the user
|
|
-d, --dbname Database name to connect to
|
|
|
|
|
|
Command flags
|
|
^^^^^^^^^^^^^
|
|
|
|
For ``serve`` sub-command these are the flags and ENV variables available:
|
|
|
|
.. list-table::
|
|
:header-rows: 1
|
|
|
|
* - Flag
|
|
- ENV variable
|
|
- Description
|
|
|
|
* - ``--server-port <PORT>``
|
|
- ``HASURA_GRAPHQL_SERVER_PORT``
|
|
- Port on which graphql-engine should be served (default: 8080)
|
|
|
|
* - ``--server-host <HOST>``
|
|
- ``HASURA_GRAPHQL_SERVER_HOST``
|
|
- Host on which graphql-engine will listen (default: ``*``)
|
|
|
|
* - ``--enable-console <true|false>``
|
|
- ``HASURA_GRAPHQL_ENABLE_CONSOLE``
|
|
- Enable the Hasura Console (served by the server on ``/`` and ``/console``)
|
|
|
|
* - ``--access-key <SECRET_ACCESS_KEY>``
|
|
- ``HASURA_GRAPHQL_ACCESS_KEY``
|
|
- Secret access key, for admin access to this instance. This is mandatory
|
|
when you use webhook or JWT.
|
|
|
|
* - ``--auth-hook <WEBHOOK_URL>``
|
|
- ``HASURA_GRAPHQL_AUTH_HOOK``
|
|
- URL of the authorization webhook required to authorize requests.
|
|
See auth webhooks docs for more details.
|
|
|
|
* - ``--auth-hook-mode <GET|POST>``
|
|
- ``HASURA_GRAPHQL_AUTH_HOOK_MODE``
|
|
- HTTP method to use for the authorization webhook (default: GET)
|
|
|
|
* - ``--jwt-secret <JSON_CONFIG>``
|
|
- ``HASURA_GRAPHQL_JWT_SECRET``
|
|
- A JSON string containing type and the JWK used for verifying (and other
|
|
optional details).
|
|
Example: ``{"type": "HS256", "key": "3bd561c37d214b4496d09049fadc542c"}``.
|
|
See the JWT docs for more details.
|
|
|
|
* - ``--unauthorized-role <ROLE>``
|
|
- ``HASURA_GRAPHQL_UNAUTHORIZED_ROLE``
|
|
- Unauthorized role, used when access-key is not sent in access-key only
|
|
mode or "Authorization" header is absent in JWT mode.
|
|
Example: ``anonymous``. Now whenever "Authorization" header is
|
|
absent, request's role will default to "anonymous".
|
|
|
|
* - ``--cors-domain <DOMAINS>``
|
|
- ``HASURA_GRAPHQL_CORS_DOMAIN``
|
|
- CSV of list of domains, excluding scheme (http/https) and including port,
|
|
to allow CORS for. Wildcard domains are allowed.
|
|
|
|
* - ``--disable-cors``
|
|
- N/A
|
|
- Disable CORS. Do not send any CORS headers on any request.
|
|
|
|
* - ``--enable-telemetry <true|false>``
|
|
- ``HASURA_GRAPHQL_ENABLE_TELEMETRY``
|
|
- Enable anonymous telemetry (default: true)
|
|
|
|
* - N/A
|
|
- ``HASURA_GRAPHQL_EVENTS_HTTP_POOL_SIZE``
|
|
- Max event threads
|
|
|
|
* - N/A
|
|
- ``HASURA_GRAPHQL_EVENTS_FETCH_INTERVAL``
|
|
- Postgres events polling interval
|
|
|
|
* - ``-s, --stripes <NO_OF_STRIPES>``
|
|
- ``HASURA_GRAPHQL_PG_STRIPES``
|
|
- Number of conns that need to be opened to Postgres (default: 1)
|
|
|
|
* - ``-c, --connections <NO_OF_CONNS>``
|
|
- ``HASURA_GRAPHQL_PG_CONNECTIONS``
|
|
- Number of conns that need to be opened to Postgres (default: 50)
|
|
|
|
* - ``--timeout <SECONDS>``
|
|
- ``HASURA_GRAPHQL_PG_TIMEOUT``
|
|
- Each connection's idle time before it is closed (default: 180 sec)
|
|
|
|
* - ``--use-prepared-statements <true|false>``
|
|
- ``HASURA_GRAPHQL_USE_PREPARED_STATEMENTS``
|
|
- Use prepared statements for queries (default: true)
|
|
|
|
* - ``-i, --tx-iso <TXISO>``
|
|
- ``HASURA_GRAPHQL_TX_ISOLATION``
|
|
- transaction isolation. read-committed / repeatable-read / serializable (default: read-commited)
|
|
|
|
|
|
.. note::
|
|
When the equivalent flags for environment variables are used, the flags will take precedence.
|