How can we allow user to update/get/post only own data with GraphQl?

System Information
  • Strapi Version: 4.2.3
  • Operating System: Windows 10
  • Database: no
  • Node Version: 16.13.1
  • NPM Version: 6.14.15

Here how can we forbid other users to access other’s data using Graphql, I tested with Graphql using JWT but with that JWT can access or get other users’ data. So, how can we prevent this situation as I am new to Strapi.

Any help would be appreciated.

You can use a policy linked to your endpoints

You want to do something close to How to not allow an end user to update/delete another end user's post?

For policy linked to a Graphql endpoint, see GraphQL - Strapi Developer Docs

Can you help me more with this? I am new here. How can I implement it?