How to protect prisma graphql endpoint in production


I have a graphql server that is built on top of prisma.
Now the prisma endpoint is on “localhost:3444” and my graphql server is on “localhost:4333”

I have implemented authentication on the graphql server(localhost:4333) but anyone who has access to the prisma endpoint (localhost:3444) will be able to make unauthorized requests.

I tried setting “secret” on prisma.yml as directed here
But this affects access to the graphql server (localhost:4333)

How do I protect the prisma endpoint without affecting access to my graphql server (localhost:4333).