graphql-jwt | GraphQL Apollo Server 2 JWT | GraphQL library

Context
In my Django project (based on Django cookiecutter) I use django-graphql-auth which depends on django-graphql-jwt.
I forked django-graphql-jwt to make some changes so then also forked django-graphql-auth to update its dependency to my django-graphql-jwt fork:

We have kubernetese cluster deployed on AWS EKS with Istio 1.11.4. We are using JWT for authentication and passing it in the header x-jwt-assertion. To validate the JWT we are using Istio RequestAuthentication. Here is the definition

I've built a Django API that uses django-graphql-auth and django-graphql-jwt packages to implement authentication. I followed the package's documentation and got everything to work and everything is working from my Angular UI. The only issue is that even requests made from Postman without the Authorization header, are able to fetch the data from the graphql API.

This is my Django project's settings.py

I’m trying to just run my python project that seems to work fine on my Mac (best in pycharm, not as good but can run in VSCode) and terrible on my raspberry pi in VSCode. Whenever I run a pipenv shell and then a pipenv install it just complains with this error:

TLDR - But by default the JWT token sent from the backend only includes the username. I want the userId as well.This is what it contains currently:-

I'm using Django Graphql Auth in my api but when I want to get the current logged in user always get the Anonymous.

Currently I'm running a basic example of django-graphqljwt from the documentation page. https://django-graphql-jwt.domake.io/en/latest/quickstart.html

I am trying to build an API for a transportation system which has different kind of users (Driver, Customer, SystemAdmin and Authorizer). For this purpose I created an AbstractUser and use inheritance relationship for the all of the above different users. For adding JWT to the model, I have read the official tutorial, but whenever I want to create a new user like the following I faced to the error:

I am using django-graphql-jwt (https://django-graphql-jwt.domake.io/en/latest/index.html) to handle authentication for my Django Python Graphene application. Currently, everytime a new JWT generated, the previous JWT is still active as long as it does not pass its expiry time.

I want to revoke/prevent access to previously generated JWT (even if the JWT is not expired yet) whenever I generate a new JWT.

What I am thinking is utilizing the origIat inside the JWT payload and comparing it with something like a last_login attribute from the User model. I noticed though, that User.last_login is not updated whenever I am authenticating using JWT.

Still finding how to do this problem properly and wondering if there is any of you already solving this problem before.

Thanks!