Using OpenId token validation in custom services. (Checking if user is authenticated)

[Mordsspass]

Hello,
we are currently building an graphql api (for not content items) via hotchocolate.
For the authentication and authorization we are using OrchardCore.OpenId
When trying to restrict access to authenticated users via the [Authorize] attribute, it will deny any attempt where a token from OpenId is provided. ( requests from the website itselve with cookies works fine.)
Current service:

Endpoints:

I saw that in the Api.Graphql feature, they use IAuthenticationservice to check the Authentication. Is the token validation registered there?

[Mordsspass]

Handled it with the DefaultHttpRequestInterceptor from hotchocolate.
public class AuthenticationInterceptor : DefaultHttpRequestInterceptor
{
public override ValueTask OnCreateAsync(HttpContext context, IRequestExecutor requestExecutor,
IQueryRequestBuilder requestBuilder,
CancellationToken cancellationToken)
{
var authenticationService = context.RequestServices.GetService();
var task = authenticationService.AuthenticateAsync(context, "Api");
task.Wait(cancellationToken);
var result = task.Result;
if (!result.Succeeded)
{
throw new QueryException(
ErrorBuilder.New()
.SetMessage("Resource is restricted to authenticated users")
.SetCode("UNAUTHENTICATED")
.Build());
}
return base.OnCreateAsync(context, requestExecutor, requestBuilder, cancellationToken);
}
}