can someone give suggestion on role-based route protection? say for example students may not go to teachers' dashboard., do I have to query the db everytime to check user's role from public.role table?

Role based route protection

I’m having a little trouble following the storage docs, it has a reference to events.file or something along the lines of that, but it does not explain what that is or how to get a file object to upload, can I have some help?

Solved the problem by adding tcp keepalive connection arguments when creating the sqlalchemy engine. "connect_args": { "keepalives": 1, "keepalives_idle": 300, "keepalives_interval": 10, "keepalives_count": 5, }

Is this guide not enough? https://supabase.io/docs/guides/storage

Is there a way to disable magic link signIn? Because, in my application I don't want to use it, but if the user leaves the password empty in the signIn form, it receives a magic link to login.

Not sure, but this might be relevant: https://github.com/supabase/supabase/issues/1176

It does not answer my question, I’ve read that multiple times

It just references event.files but does not say how to populate that or another object

Supabase Storage reference to events

im getting a fetch error from supabase.js library "FetchError: request to url failed, reason: certificate has expired" code: "CERT_HAS_EXPIRED". Has anyone faced this issue before?

I'm a bit of a noob when it comes to

postgREST

, but how would I write a simple sub query using the supabase client libraries? Something like

select col_1 from table_1 where col_2 in (select col_3 from table_2 where id = 4)

anyone have a good reference for mocking supabase auth users in the sql editor? use case: I want to see how certain RLS policies affect query speeds and analyze them via the explain command. we have a few inserts that are going a bit slow but have RLS policies associated with them. trying to figure out what the bottleneck is exactly the insert works fast when it's being done via the role that bypasses RLS

Hello, is the rest API of Supabase down? We are getting many timeouts in production

@User My project API https://vihezwddjzthkzluuvfp.supabase.in/ is not working! Where can I get some support from the team? Thanks in advance

guys i have an issue, i have a row level security policy on a table that runs a query on the table itself so whenever i run a select command on that table it uses the policy which runs a query which uses the policy which runs the query which uses the policy... and so on until it hits a recursion limit. is this a bug or a feature? and if it is a feature is there a workaround to this?

Please use the feedback widget in the dashboard or email support@supabase.io

RLS on a table

Is it possible to load data (for a table) on the SSR side of nextjs with an auth cookie? Currently, I can't find any documentation on how to do this

You can get the user by a cookie.

const { user } = await supabase.auth.api.getUserByCookie(ctx.req);

Then I pass the user to the query on filter on it, but I think I will move to CSR, because using RLS is much easier in my opinion.

Do you mean load data in SSR imitating a logged in user? so it respects role level security. Or are you just wanting to check that user is authorized - 'they are who they say they are' ?

Yes. So user login ==> sends cookie to nextjs api ==> api uses cookie to get for example data from the "User Profile" database ==> if auth == ok returns data back to the client side. I want to be able to use server side rendering with the data from the database

hello everyone, I wanna ask about how to prepare a new database for production since I've never written any migration and does everything pretty much from the supabase web UI. It wasn't difficult with mongodb since the schema is basically on the app, but I'm not familiar with sql databases

nextjs SSR cookie 🔗 supabase auth

I created a policy for my "profiles" table so that users only can create a new row if they are logged in. But when I actually try to insert data after sign up (email confirmation disabled) I still get RLS violation error. Any hints?

Does anyone know if it's possible to add custom claims to the JWT token of users that just created an account?

Add custom claims to JWT

is it possible to use Supabase offline and then sync the data whenever there is a connection?

Hello everybody, i have an ``undefined symbol: napi_module_register`` error using the package supabase-js on linux, i tried to search on this discord if someone has encountered the issue, and i didn't find any message related to that, is it known ?

Well, seem to be related to the modified nodeJS env im using, guess you can't do anything about it