How to use extension

I'm playing around with Supabase, but I'm struggling with the RLS policies. I've created a simple table, and when RLS is not applied, I can POST and GET using Postman with just the ANON key (as apikey + bearer token). I am able to insert and select rows. However, the purpose of the RLS is for any user to only be able to interact with his own data, right? I've created a user, which then has an

uid

, but how do I incorporate that uid in the POST/GET requests? Is it some header?

user based RLS policies without auth

anyone used discord oauth with scopes in supabase? i'm trying to figure out best way to add the guilds.members.read scope

Sometimes when I call

supabaseClient.auth.user()

from the client I get a user back but when that user makes a request from the client to the server and I call

supabaseClient.auth.api.getUserByCookie(req, res)

on the server I get an error saying "Invalid Refresh Token". How is supposed to be handled? Am I missing documentation about this?

Having CORS issue. Can anyone point me to right direction? SupabaseClient is created successfully.

Since you appear to be running a local supabase instance, check this https://github.com/supabase/supabase/issues/5540 (Even if you're not using the dashboard, it's still relevant since the port your page is running from and the port of the Kong instance are different)

does supabase automatically connect oauth accounts together, and if so, how? is it by email or does it detect the authed user when connecting a new account?

Thanks Scott. Will take a look and share update with you.

linked accounts

😀 anyone know? about signing out https://github.com/supabase/supabase/discussions/5791

Hi, have this been solved? I'm also getting the same issue (not running from local supabase instance)

Hey I have a table by the name

bookings

Now I need to fetch its schema, how do I do it via the SQL editor? Running

describe bookings;

gives an error

syntax error at or near "describe"

Also where do I get the database name? Is it the project name? if yes then

describe crud_backend.bookings;

is throwing the same error as well Would appreciate any help 🙏

Project limit

Hello 🙂 Does anyone know if it's possible to use RLS to block requests for specific columns of data within a table?

Where I should put this? Under which section please?

extra_hosts:
  - "host.docker.internal:host-gateway"

Column Security

Hi ! Any idea if there is a clean way to invoke

textSearch()

conditionally ? In this example i don't want to invoke textSearch() if searchQuery is empty I tried passing "*" or an empty string but no luck and i didn't find anything on the documentation about "empty textSearch" 🤔

Unable to login to supabase: https://app.supabase.io/?error=server_error&error_description=failed+to+connect+to+%60host%3Dprod-2.c7y43uscdbtq.ap-southeast-1.rds.amazonaws.com+user%3Dauth_admin+database%3Dpostgres%60%3A+server+error+%28FATAL%3A+sorry%2C+too+many+clients+already+%28SQLSTATE+53300%29%29

Next.js SSR Authentication I'm using the

@supabase/supabase-auth-helpers

package to enable authentication in Next.js on the client and the server. https://github.com/supabase-community/supabase-auth-helpers/tree/main/src/nextjs After logging in, I redirect over to

/todos

.

const handleSignin: FormEventHandler<HTMLFormElement> = async event => {
        event.preventDefault()

        await supabase.auth.signIn({
            email,
            password,
        })

        router.push("/todos")
    }

But the redirect doesn't work the first time. Or it's bouncing back to

/login

. After logging in a second time, then it work. I presume because the session cookie has not yet been set.

const getServerSideProps = withAuthRequired({
    redirectTo: "/login",
    getServerSideProps: async ctx => {
        const todos = await readAllTodos(ctx)

        return {
            props: {
                initialTodos: todos,
            },
        }
    },
})

Here's the live site and the code. https://next-todo-one.vercel.app https://github.com/bradgarropy/next-todo

Supabase Auth Helpers help

Hey, I'm facing the same issue. Did you managed to make it work?

hello Im working on a react chat application and im having an infinite loop problem when I run the code below. Does anyone know where Im making the mistake? Im attempting to query the messages where the room id matches the channel id and its works for the most part, but the console.log(roomId) line is running nonstop and Im not quite sure where my mistake is.

js
const ChatRoom = ({ session }) => {
  const { roomId } = useParams();

  const getAllMessages = async () => {
    console.log(roomId);
    let { data, error } = await supabase
      .from('messages')
      .select('*')
      .eq('channel_id', roomId);
    if (error) {
      console.log(error);
    }
    if (data) {
      setMessages(data);
    }
  };

  const messageSubscription = supabase
    .from('messages')
    .on('*', (message) => {
      console.log('Change received!', message);
    })
    .subscribe();

  useEffect(() => {
    getAllMessages();
  }, [messageSubscription]);

What is your purpose in using messageSubscription as a useEffect condition? If you want to reload all messages you should set a variable in the .on handler as that triggers when update occurs.

I perhaps don’t understand the useEffect hook as well as I thought. I thought the subscription would not run if I was not listening for changes

Should the dependency array here be empty?

Hi all, I am trying to play around with Supabase. Appreciate the help. I am using the DivJoy starter. I have a simple setup with two tables,

users

and

items

. I am trying to enable RLS on

items

so that a user can only update their own

items

. My RLS rule is:

create policy "Can only update their own items." on items for update using (
  auth.uid() = owner
)

I keep seeing

new row violates row-level security policy for table "items"

however in the NextJS app. I am passing in the owner field in the request.

{name: "test1", owner: "b1975ef4-f65c-4db5-8f4b-e63f128cf8c6"}
name: "test1"
owner: "b1975ef4-f65c-4db5-8f4b-e63f128cf8c6"

Hi, I am using a create trigger to sync

auth.users

table to

public.pusers

in supabase. I have a enum column call

user_role

with enum type in

pusers

table. I try to update my docker and I found

Database error saving new user" component=api error="failed to close prepared statement: ERROR: current transaction is aborted, commands ignored until end of transaction block (SQLSTATE 25P02): ERROR: type \"user_role\" does not exist

this error in when I use the sdk to sign up a user. But I can successfully insert a row to

auth.users

and sync to

pusers

by directly run SQL in psql

I found https://github.com/supabase/supabase/issues/4529 and https://github.com/supabase/supabase/issues/563 seems to have similar issue

How to reset database password