Skip to content

Commit

Permalink
add row level permission migrations;
Browse files Browse the repository at this point in the history
  • Loading branch information
@hbrooks
hbrooks committed Sep 5, 2023
1 parent 5ca9256 commit 17d119c
Showing 1 changed file with 29 additions and 0 deletions.
29 changes: 29 additions & 0 deletions migrations/0001_create_users_forms_responses.sql
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,3 +43,32 @@ $$ language plpgsql security definer;
create trigger on_auth_user_created
after insert on auth.users
for each row execute procedure public.handle_new_user();


CREATE POLICY forms_user_policy
ON forms
FOR ALL
USING (user_id::uuid = auth.uid())
WITH CHECK (user_id::uuid = auth.uid());

CREATE POLICY responses_write_policy
ON responses
FOR ALL
USING (true)
WITH CHECK (true);

CREATE POLICY responses_select_policy
ON responses
FOR SELECT
USING (
EXISTS (
SELECT 1
FROM forms
WHERE forms.id = responses.form_id AND forms.user_id::uuid = auth.uid()
)
);

CREATE POLICY forms_public_select_by_id_policy
ON forms
FOR SELECT
USING (true); -- true means no restrictions on reading

0 comments on commit 17d119c

Please sign in to comment.