Fix a test

hapi-fhir-jpaserver-base/src/main/java/ca/uhn/fhir/jpa/dao/SearchBuilder.java

@@ -237,7 +237,7 @@ public class SearchBuilder implements ISearchBuilder {
 				match = Collections.singleton(-1L);
 			}
 
-			Join<ResourceTable, ResourceLink> join = myResourceTableRoot.join("myIncomingResourceLinks", JoinType.LEFT);
+			Join<ResourceTable, ResourceLink> join = myResourceTableRoot.join("myResourceLinksAsTarget", JoinType.LEFT);
 
 			Predicate predicate = join.get("mySourceResourcePid").in(match);
 			myPredicates.add(predicate);

hapi-fhir-server/src/main/java/ca/uhn/fhir/rest/server/interceptor/auth/IAuthRuleBuilderGraphQL.java

@@ -1,5 +1,11 @@
 package ca.uhn.fhir.rest.server.interceptor.auth;
 
 public interface IAuthRuleBuilderGraphQL {
+
+	/**
+	 * Note that this is an all-or-nothing grant for now, it
+	 * is not yet possible to specify individual resource security when
+	 * using GraphQL.
+	 */
 	IAuthRuleFinished any();
 }

hapi-fhir-server/src/main/java/ca/uhn/fhir/rest/server/interceptor/auth/IAuthRuleBuilderRule.java

@@ -20,8 +20,6 @@ package ca.uhn.fhir.rest.server.interceptor.auth;
  * #L%
  */
 
-import com.google.common.base.CharMatcher;
-
 public interface IAuthRuleBuilderRule {
 
 	/**

src/changes/changes.xml

@@ -33,6 +33,12 @@
 				have a @Block class as a child element. Thanks to Lars Gram Mathiasen for
 				reporting and providing a test case!
 			</action>
+			<action type="add">
+				AuthorizationInterceptor now allows the GraphQL operation to be
+				authorized. Note that this is an all-or-nothing grant for now, it
+				is not yet possible to specify individual resource security when
+				using GraphQL.
+			</action>
 		</release>
 		<release version="3.6.0" date="2018-11-12" description="Food">
 			<action type="add">