This might be a request for a pointer in the right direction, or it might be that we hit a limitation, I'm not sure.

Schenario: An ASP server setup that require authentication by default for all requests.

As I understand, it's possible to allow anonymous requests for specific GraphQL fields, by adding the [AllowAnonymous] attribute to a controller method.

How can we allow anonymous requests to the built-in __schema query? Since it's built-in, we don't have a controller where we can override the default settings for this query.