diff --git a/.wundergraph/wundergraph.config.ts b/.wundergraph/wundergraph.config.ts
index b77c232..144aeca 100644
--- a/.wundergraph/wundergraph.config.ts
+++ b/.wundergraph/wundergraph.config.ts
@@ -64,4 +64,7 @@ configureWunderGraphApplication({
 			],
 		},
 	},
+	authorization: {
+		roles: ['admin'],
+	},
 });
diff --git a/.wundergraph/wundergraph.operations.ts b/.wundergraph/wundergraph.operations.ts
index 98466d2..19328e6 100644
--- a/.wundergraph/wundergraph.operations.ts
+++ b/.wundergraph/wundergraph.operations.ts
@@ -5,7 +5,7 @@ export default configureWunderGraphOperations<OperationsConfiguration>({
 	operations: {
 		defaultConfig: {
 			authentication: {
-				required: false,
+				required: true,
 			},
 		},
 		queries: (config) => ({
diff --git a/src/lib/Login.svelte b/src/lib/Login.svelte
index e73e4e9..4da3752 100644
--- a/src/lib/Login.svelte
+++ b/src/lib/Login.svelte
@@ -1,5 +1,6 @@
 <script>
   import Cookies from "js-cookie";
+
   async function login() {
     const response = await fetch("/api/auth", { method: "POST" });
     if (!response.ok) {
@@ -8,6 +9,7 @@
       let { token } = await response.json();
       Cookies.set("token", token);
       alert(`Login Success: ${token}`);
+      console.log(token);
     }
   }
 </script>
diff --git a/src/lib/User.svelte b/src/lib/User.svelte
index 5dffc45..ae975ee 100644
--- a/src/lib/User.svelte
+++ b/src/lib/User.svelte
@@ -21,6 +21,7 @@
 
 {#if user}
   <p>Welcome, {user.name}!</p>
+  <p>Your roles: {user.roles.join(", ")}</p>
 {:else}
   <p>Loading...</p>
 {/if}
diff --git a/src/lib/wundergraph/index.ts b/src/lib/wundergraph/index.ts
index 6f9f42f..4bc676f 100644
--- a/src/lib/wundergraph/index.ts
+++ b/src/lib/wundergraph/index.ts
@@ -7,4 +7,4 @@ const client = createClient();
 const { createFileUpload, createMutation, createQuery, createSubscription, getAuth, getUser, queryKey, prefetchQuery } =
 	createSvelteClient<Operations>(client);
 
-export { createFileUpload, createMutation, createQuery, createSubscription, getAuth, getUser, queryKey, prefetchQuery };
+export { createFileUpload, createMutation, createQuery, createSubscription, getAuth, getUser, queryKey, prefetchQuery, client };
diff --git a/src/routes/+layout.svelte b/src/routes/+layout.svelte
index c6000d8..433cc4b 100644
--- a/src/routes/+layout.svelte
+++ b/src/routes/+layout.svelte
@@ -1,8 +1,17 @@
 <script lang="ts">
   import { QueryClientProvider } from "@tanstack/svelte-query";
   import type { LayoutData } from "./$types";
+  import { client } from "$lib/wundergraph";
+  import Cookies from "js-cookie";
 
   export let data: LayoutData;
+
+  const token = Cookies.get("token");
+
+  // Set the Authorization header token
+  if (token) {
+    client.setAuthorizationToken(token);
+  }
 </script>
 
 <QueryClientProvider client={data.queryClient}>
diff --git a/src/routes/api/auth/+server.ts b/src/routes/api/auth/+server.ts
index 6d4369b..2bdde67 100644
--- a/src/routes/api/auth/+server.ts
+++ b/src/routes/api/auth/+server.ts
@@ -5,7 +5,7 @@ import { error } from '@sveltejs/kit';
 const secretKey = 'mysecrettestkey';
 
 export async function POST() {
-  const token = jwt.sign({ name: 'Samuel', loggedIn: true }, secretKey);
+  const token = jwt.sign({ name: 'Samuel', loggedIn: true, roles: ['admin'] }, secretKey);
   if (!token) {
     throw error(400, 'No token created.');
   }