Learn to lock down your APIs

Protecting your APIs is as critical a component as anything else in your application. We believe that GraphQL is the future of APIs so let’s spend a little bit of time discussing how to go about protecting them. Before we start lets get a few definitions out of the way. This post is about authentication and authorization. The different between the two is only a few letters and the fact that they accomplish two different things.

Authentication has to do with logging users in. This generally involves a cookie if you strictly building a webpage or a header if you…

GraphQL + SQL = powerful applications

One of the biggest benefits of GraphQL is how it allows you traverse hierarhical data in a single query. Gone are the days of REST when you would query for a user, get back a list of post ids, and then ask the API for all those posts. This same query which might take 11 requests in REST would take this simple GraphQL query.

query GetUserAndPosts {
getUser(id: 1) {
posts(first: 10) {

In one round trip, you now have all the data you need to populate your front-end! This is great…

Move your MongoDB data into the future with GraphQL


Today I’m going to demonstrate how I migrated a MongoDB collection to GraphQL. With Parse shutting down at the end of the month, there are a lot of applications are looking for a new home for their data and since GraphQL is the future, it’s a great time to migrate! I was genuinely surprised by how easy the process was so here is a little guide so you can migrate your data yourself.

Step 1: Define the schema

The first step in migrating your data is to prepare your GraphQL schema. I’ll be using MongoDB’s sample restaurants collection found here. …

At Scaphold, we use Apollo both to enrich our frontend React application with data as well as to build snappy backend GraphQL APIs. It was important for us to provide powerful, real-time features to every one of the applications on Scaphold, and Apollo’s new subscription protocol allowed us to build these features quicker than we could have hoped. This post is a high-level overview of how we leverage Apollo to rapidly build features at Scaphold.io!

We’ve recently published an in-depth tutorial on how to start using Apollo Client and Scaphold.io to rapidly build realtime applications of your own! The tutorial…

The Case for Subscriptions

When Facebook open-sourced GraphQL, they described how applications can perform reads with queries, and writes with mutations. However, often times clients want to get pushed updates from the server when data they care about changes. Enter GraphQL Subscriptions. Subscriptions make real-time functionality a first class citizen in GraphQL!

Subscriptions offer a clean and efficient way to get pushed updates in realtime. They act in parallel to mutations. Just like how mutations describe the set of actions you can take to change your data, subscriptions define the set of events that you can subscribe to when data changes. …

Today we are going to design, build, and deploy a website into production. Even better, we are going to do it using GraphQL, Angular JS 2.0, Apollo Client, and Scaphold.io. Forget the “Hello, world” tutorial, we’re going to build the “Save the world” tutorial. Check out the final product here!

We are going to learn some awesome new tech while we try to give something back. We’ll be building a social donation app of sorts. …


First things first: GraphQL is awesome. If you’re not already building on it, right now is a great time to start! As a quick introduction, GraphQL is an application layer query language designed by Facebook that is used to power many of their web and mobile applications. A GraphQL API comes preloaded with a rich type system that makes it easy to represent complex data models, introspective capabilities that make documenting an API a breeze, and an intuitive query language that greatly improves the experience of developing client applications!

The objective of this tutorial is to show you that anyone…

Michael Paris

On how to build awesome apps with GraphQL!

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store