how can i change the default (authenticated) role of a user? I would like to separate admins from users with roles, but I don't know how to do that.

Roles within the table users are for database level permissions or something like that. In your case, you should create a group table with a Group for "Administrators" and another Members table to link users with groups.

Awesome thnks a lot Rob

is the ILIKE query documented anywhere? I only see the .eq documented in the realtime docs and the js docs

https://postgrest.org/en/v7.0.0/api.html#operators I only saw just now u should use

*

instead of

%

Hi guys, this is probably a beginner question but I couldn't find an answer from either supabase or PostgREST documentation. I have a view like the following, where categories are combined from a JOIN:

products
=========
id | name | categories
---|------|-------------------------------
1  | A    | ["Men", "Shirts", "Business"]
2  | B    | ["Women", "Dress", "Casual"]

Now, I would like to select only rows that contain

category=Shirts

. How can I do that?

https://supabase.io/docs/reference/javascript/contains Something like this

javascript
const { data, error } = await supabase.from("products")
  .select("*")
  .contains("categories", ["Shirts"])

oooh so all the postgrest operators just translate to Realtime?

Nice! Thanks. I am gonna try that now.

Totally!

anyone know how I can filter and select based on dates?

Realtime filters

I'm having a little issue with auth and redirects. All my pages should be gated by login. I've built a

ProtectedRoute

component that checks if there is a user logged in and whether the path is protected, and will

router.push

to /login accordingly. The issue im having is that after

await supabase.signIn()

is called, I’m being redirected to my homepage, but after the redirect

supabase.auth.user()

is still

null

, and my

ProtectedRoute

component is then redirecting back to /login. If I enter the url to go to the home page again, it won’t redirect me and

user

is no longer

null

. In other posts I saw

onAuthStateChange

suggested to be used. But I am already using an AuthProvider similar to the examples that utilise

onAuthStateChange

. I think in my case it may be that the change in path is triggering a redirect before the user state is changed. But I'm not sure how to fix this. I see in a few examples people redirect with getServerSideProps. But if I did this, wouldn't all of my pages would go from client side rendering to SSR, and I’m not sure if that would benefit me since I'm not interested in SEO. Although I’m not a fan of the loading page flash that occurs when a protected route is being client side redirected to the login page.

anyone know if it's possible to combine OR with textSearch? I have

name (varchar)

and

notes (text)

field and I wanted to use

ilike

in

name

and

textSearch

in

notes

?

How to OVERRIDING SYSTEM VALUE in supabase? **Error {hint: "Use OVERRIDING SYSTEM VALUE to override.",…} code: "428C9" details: "Column "id" is an identity column defined as GENERATED ALWAYS." hint: "Use OVERRIDING SYSTEM VALUE to override." message: "cannot insert into column "id""

My knowledge on SQL is limited. What can I search up to add some sort of validation for incoming data?

Is there currently any way to pass your db schema types for typescript?

You can generate types: https://supabase.io/docs/reference/javascript/generating-types

Oh, thanks! Somehow missed that 😅

I have a question for postgres policy experts. If a table has RLS and SELECT is restricted to

user_id

(let's say), is there any way to INSERT a row and SELECT the uuid from the row you just inserted, without 'passing' the RLS policy?

I'm trying to grab the supabase-generated id of a row for a user who does not have permission to SELECT that row... it seems like it's possible to INSERT but not collect the id.

Has anyone been able to set up a skeema-like workflow? How are y'all doing DB migrations?

I am trying to use Supabase with React Native. Should I follow https://supabase.io/docs/guides/with-react or is there something specific to React Native?

just resumed a project and the domain is NXDomaining. anyone know what i can do?

I think this guide will be fine

I’m building an application with NextJS and have some API routes that I need to protect in some way. Is it possible to use the JWT I get back after login to verify that the request comes from a authenticated user with a valid JWT? I guess it would be possible if I could verify the JWT in the API routes. But with what key should I verify the JWT with?

this is what i do:

// verify user is authenticated first
  const token = event.headers.token;
  const body = JSON.parse(event.body);

  const { data: user, error: user_error } = await supabase.auth.api.getUser(
    token
  );

  console.log(user);

  if (user_error) {
    return {
      statusCode: error.status,
      body: JSON.stringify({ message: error.message }),
    };
  }

Ah never mind. Think I found it myself. Just needed to rubber duck 😉 for anyone else wondering you can find the JWT Secret in the Supabase UI. Think that will work.

Aah thanks. Another option as well! So user_error is null if the JWT is still valid I guess?

yeah I mean it works so far. honestly I haven't put much thought or further dev into it since... it works and I had larger priorities lol