Looks cool. But as you expose an endless number of queries you don’t know which indexes to support. Seems pretty easy to attack the server finding it’s slow non indexed queries and bringing your system to a hault. But even if you protect against that with persisted queries you’ll still need to define indexes for every query the client makes moving the work to the backend again. Seems like it may just be easier to allow the backend to control what is and isn’t queryable. Or am I missing something?

Written by

Founder: Skilled.co.il & Draft Fantasy. Full stack JavaScript Engineer. https://elie.tech

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store