I've opened a discussion on this, but I think it might be worth making an issue related to authentication.

I'd say we can split this work into multiple chunks, but let's think about what we want in ideal world.

• We should be able to use different ways of authentication[1]
• We should be able to have pluggable user types
• We should be able to generate login, logout and signup mutations
• We should be able to have pluggable input types and return types for these mutations[2]
• We should be able to support django but also any other framework with not much code

[1] JWT with cookies, JWT in header, plain cookies for sessions (basic django auth)
[2] we shouldn't force users to use our preferred way of error handling

All of the above is up for discussion by the way :) haven't really found any other library that do authentication built-in. For Graphene we have these two:

• https://github.com/PedroBern/django-graphql-auth
• https://github.com/flavors/django-graphql-jwt