revalidate hook is used to "re-authenticate" a user.
Let's say you're storing some useful information, like org id, in the custom claims of the user object. You've used the
mutatingPostAuthentication hook to do this.
Let's say, the user joined another organization. You might want to add this new org to the custom claims. In order to do so, you can use the
revalidate hook. More info on how to revalidate user can be found in the WunderGraph RPC Protocol.
revalidate hook can also be used to extend a session when the current one expires.
Similar to all other hooks, the
revalidate hook is called with the following parameters:
user: The user object when the user is authenticated
clientRequest: The original client request object, including Headers
log: The logger object
operations: The operations client, used to call other (internal) operations
response: The response object (only for postResolve hooks)
input: The input object (only for Operation hooks)
operations client, you're able to securely call into all defined Operations, e.g. to talk to a database or another service to enrich a response or manipulate the inputs of an Operation.