You might sometimes need to connect to your GraphQL endpoint (typically accessible at
http://yourapp.com/graphql) from outside your app.
An easy way to perform remote API queries and mutations with special privilages is to emulate one of your app’s users. You can do so by reusing their authorization token.
To figure out the token, log in as the user you want to emulate and inspect any
graphql request using your devtools’ Network tab. In the Headers tab, locate the
Authorization field of the Request Headers group and make a note of its value.
This is the header and token you’ll need to set when making your API call to the GraphQL endpoint. You can test it using a tool such as GraphQL Playground
You can send your GraphQL request as a plain text string (inspect the Request Payload object in your devtools’ Network tab to see what that looks like) or you can use a GraphQL client to perform the request.
Here are a few options: