hasura-graphql-engine_skill

This skill helps you quickly build production-ready Hasura GraphQL APIs with instant generation, fine-grained permissions, and real-time features.
  • Shell

40

GitHub Stars

3

Bundled Files

2 months ago

Catalog Refreshed

4 months ago

First Indexed

Readme & install

Copy the install command, review bundled files from the catalogue, and read any extended description pulled from the listing source.

Installation

Preview and clipboard use veilstrat where the catalogue uses aiagentskills.

npx veilstrat add skill manutej/luxor-claude-marketplace --skill hasura-graphql-engine

  • EXAMPLES.md47.6 KB
  • README.md15.4 KB
  • SKILL.md36.7 KB

Overview

This skill is a complete guide to Hasura GraphQL Engine for building production-ready GraphQL APIs from PostgreSQL. It covers instant API generation, granular permissions, authentication strategies, event triggers, Actions for custom business logic, remote schemas, and deployment considerations. The content focuses on practical patterns you can apply to real projects. It aims to help developers move quickly from prototype to secure, maintainable production APIs.

How this skill works

Hasura inspects your PostgreSQL schema and automatically exposes queries, mutations, and subscriptions without writing resolvers. It uses declarative metadata (tracked tables, relationships, permissions, remote schemas, Actions, event triggers) that you manage via the console, metadata API, or CLI. Authentication is delegated to your auth provider (JWT or webhook) while Hasura enforces role-based authorization using session variables. Event triggers and Actions let you integrate external services and custom logic asynchronously or synchronously.

When to use it

  • Create instant CRUD GraphQL APIs from an existing PostgreSQL schema
  • Build real-time apps with subscriptions and live queries
  • Enforce row-level and column-level access controls for multi-tenant apps
  • Integrate multiple data sources or stitch remote GraphQL schemas
  • Implement event-driven workflows with reliable database triggers
  • Extend API surface with custom business logic via Actions

Best practices

  • Model permissions around session variables and minimal default roles to reduce blast radius
  • Keep metadata in version control and manage migrations with the Hasura CLI
  • Prefer JWT claims for scalable auth; use webhook mode only when per-request custom logic is required
  • Use Actions for business logic and remote schemas for service composition to keep database layer focused
  • Design event triggers for idempotent handlers and configure retry/timeouts for reliability
  • Limit exposed columns per role and audit permission changes regularly

Example use cases

  • Admin dashboard exposing full columns for admins and limited views for end users via column-level security
  • Realtime collaborative dashboard using subscriptions for live updates
  • User signup flow triggering a welcome email via an event trigger webhook
  • Payment or file-processing flows implemented as Actions that call external services
  • Migrating a monolithic REST backend by stitching legacy GraphQL services and exposing a unified API

FAQ

Hasura delegates authentication to an auth provider. Use JWT tokens with Hasura claims or configure an auth webhook; Hasura extracts session variables from the token/webhook and enforces authorization via permissions.

When should I use Actions vs event triggers?

Use Actions for synchronous, request/response business logic (custom mutations/queries). Use event triggers for asynchronous workflows triggered by DB changes, retries, and offloaded processing.

Built by
VeilStrat
AI signals for GTM teams
© 2026 VeilStrat. All rights reserved.All systems operational