Authorization extensions are available in the Marketplace:
- Authenticated: Restrict access to unauthenticated clients.
- Requires Scopes: Grant access only to clients with appropriate OAuth scopes.
You can learn how authorization extensions work and build your own with this follow along tutorial: Customize your GraphQL Federation authentication and authorization with Grafbase Extensions.
A complete example can be found on GitHub and the Grafbase SDK is the extension reference.