• Authentication - Explicit authentication, configured using the @authentication directive.

  • Authorization - Authorization rules set using the @authorization directive.

  • Configuration - Instructions to set up instantiation.

  • Impersonation and user switching - How to set up impersonation and user switching features.

  • Operations - Reference on GraphQL queries and how each location in each query triggers the evaluation of different authentication/authorization rules.