Optionalistrue if the user was identified via the refresh cookie (not an access token).
When isRefreshID is true, mutations are blocked by default (only queries are allowed via refresh cookie).
Authenticated user id, or null if the request is unauthenticated.
Request context passed to GraphQL resolvers. Built automatically from the request's
Authorizationheader or refresh cookie by the built-ingetContext.