StarpTech
diff --git a/‎.prettierignore
Lines changed: 2 additions & 1 deletion b/‎.prettierignore
Lines changed: 2 additions & 1 deletion
diff --git a/‎README.md
Lines changed: 2 additions & 1 deletion b/‎README.md
Lines changed: 2 additions & 1 deletion
diff --git a/‎docs/api.md
Lines changed: 18 additions & 0 deletions b/‎docs/api.md
Lines changed: 18 additions & 0 deletions
diff --git a/‎docs/auth.md
Lines changed: 3 additions & 3 deletions b/‎docs/auth.md
Lines changed: 3 additions & 3 deletions
@@ -1,3 +1,4 @@
 coverage
 .nyc_output
-dist
+dist
+insomnia.json
@@ -26,8 +26,9 @@ State: Experimental
 - Stores versioned schemas for all GraphQL-federated services
 - Serves schema for GraphQL gateway based on provided services & their versions
 - Validates new schema to be compatible with other running services
+- Validates that all client operations are supported by your schema
 - Produce a diff between your proposed schema and the current registry state
-- Lightweight authorization concept with JWT.
+- Lightweight authorization concept based on JWT.
 
 [**Read more**](https://principledgraphql.com/integrity#3-track-the-schema-in-a-registry)
 
 
@@ -107,6 +107,24 @@ POST - `/schema/validate` Validate schema between provided and latest schemas.
 </p>
 </details>
 
+### Validating client operations
+
+POST - `/document/validate` Confirm that all client operations are supported by the latest schema.
+
+<details>
+<summary>Example Request</summary>
+<p>
+
+```json
+{
+  "graphName": "my_graph",
+  "document": "query { hello }"
+}
+```
+
+</p>
+</details>
+
 ## Monitoring / Maintanance
 
 ### Remove all schemas except the most (N) recent
 
@@ -10,8 +10,8 @@ You have to set `JWT_SECRET=secret` to enable jwt. The jwt payload must match th
 
 ```jsonc
 {
-  "services": ["foo"] // names of the granted services
-}
+  "client": "my-service", // your unique client name
+  "services": [] // additional services you have control over.
 ```
 
-This activates authorization in the `/schema/push` endpoint. Only the client with the valid jwt is be able to register schemas in the name of the services. The client will have access to all available graphs. You can use [jwt.io](https://jwt.io/) to construct a jwt.
+This activates authorization in the `/schema/push` endpoint. Only the client with a valid jwt is be able to register schemas in the name of the `services`. The client will have access to all available graphs. You can use [jwt.io](https://jwt.io/) to construct a valid jwt.