Currently stitch exposes GRAPHQL_INTROSPECTION with a default of true.
Enabling the introspection query in production is a security vulnerability in some use cases, so we want to control access to the introspection query using a policy instead.
If the introspection query is not provided, it will be allowed by default (assuming GRAPHQL_INTROSPECTION is true).
Currently stitch exposes
GRAPHQL_INTROSPECTIONwith a default oftrue. Enabling the introspection query in production is a security vulnerability in some use cases, so we want to control access to the introspection query using a policy instead. If the introspection query is not provided, it will be allowed by default (assumingGRAPHQL_INTROSPECTIONis true).