Most appropriate way to raise auth error?

[ofer-pd]

I need to add authentication to a subset of my resolvers, so I've created a decorator function that will look for a JWT token in the Authorization header and validate it.

However, I'm not sure what the appropriate behavior is in the case where the request is not properly authenticated. (Meaning they didn't include the header, or the token is invalid, or the user is deleted, etc.)

Should I raise an exception in the decorator? Which exception? graphql.GraphQLError? ariadne.exceptions.HttpBadRequestError?

---

If you're curious about the current state of my code...

def require_auth( fn ):
    wraps( fn )
    def wrapper( obj, info, **kwargs ):
        request     = info.context[ "request" ]
        auth_header = request.headers.get( "authorization" )
        if not validate( auth_header ):
            ... # raise error?
        return fn( obj, info, **kwargs )
    return wrapper

query = QueryType()

@query.field( "authtest" )
@require_auth
async def resolve__authtest( _, info ):
    return "You're authenticated!"