Hi @Jörg_Hoh ,   We are already having Closed User Groups on the graphql endpoint, but issue is, user is authenticated but when authorization(JWT) code is incorrect or blank at that point we are not getting 401 or any error message in body.   In that case we are always getting 200 code with empty bo...

Hi @Jörg_Hoh ,   Thank you for your response! We want to clarify that if a user attempts to access the GraphQL endpoint with an incorrect or missing authorization token, they should not receive a 200 OK response with an empty body. Instead, they should receive a 401 Unauthorized or 403 Forbidden sta...

Request for Feature Enhancement (RFE) Summary:We should have an improved way of authentication and  authorization of GraphQL endpoint.In the current design, even unauthenticated or improperly authenticated requests are allowed to hit the endpoint with 200 response code. Instead we should have 401 or...