http://0.0.0.0:5000we see the few posts published by 2 users
GraphiQLUI to send queries to the backend and discover what is available.
http://0.0.0.0:5000/graphql. We can query the generic
Types. Let's explore the
Userone. If we build another query we can ask for more information, exploring every field available. Let's send the following:
BINGO! We have some good information here
admin, that we can use to find out who is the admin of the application.
findAllUsersquery. Now we need to understand what are the fields. We can do that in different ways, using GraphiQL or doing some more introspection. In this case we use GraphiQL, sending the following query: