# ideas-and-suggestions
- m
Marky
08/16/2021, 4:52 PMPlease add Python help channel - n
nyellin
08/16/2021, 8:17 PMGuys, I love supabase - n
nyellin
08/16/2021, 8:17 PMand am happy to have just upgraded to a paid plan - n
nyellin
08/16/2021, 8:17 PMbut I just wanted to say that I think this screen needs improvement - n
nyellin
08/16/2021, 8:18 PMafter going through the upgrade flow I reached this screen - n
nyellin
08/16/2021, 8:18 PMso I pressed the big green continue button... and nearly downgraded my plan to the free tier 🙂 - n
nyellin
08/16/2021, 8:18 PMdon't know if you control that page or it is just stripe's, but not the best UX imo - s
Scott P
08/16/2021, 8:26 PMYeah, that's the stripe checkout/manage plan page. There's very little control over that page except the colours (and only limited support there) - n
nyellin
08/16/2021, 8:38 PMMaybe just change that button's colors - n
nyellin
08/16/2021, 8:38 PMBut understood! - n
nyellin
08/16/2021, 8:38 PMHappy to be a paying customer - n
nyellin
08/16/2021, 8:38 PMAnd I don't know when you added it but I love the simplicity of the reporting page - p
Peanut
08/17/2021, 2:08 AMCould we get a policy document system that describes the policies for postgres tables? Kinda like firestore rules. Would make development faster initially - r
rotimi-best
08/17/2021, 4:40 AMBeen using the dashboard a lot lately, I have found that it is really hard to know the position of the scroll bar cause of the dark background. Is there a reason it was made dark and is there a possibility to turn it to the default scroll bar or at least with a white background? - s
silentworks
08/17/2021, 2:46 PMCan you provide a link to what this looks like please? - j
jonny
08/17/2021, 3:36 PMI agree, it's really not ideal - it's especially bad when you have multiple projects like you have in your screenshot. We'll try and move away from using the Stripe Checkout although the ETA on that is unknown. - j
jonny
08/17/2021, 3:36 PMI'll fix that now - we've been meaning to for ages! - j
jonny
08/17/2021, 3:37 PMdone 😄 - f
florian-lefebvre
08/17/2021, 3:41 PMThe documentation concerning auth and SSR must be improved: explain how auth work with local storage and cookies and have more examples, not only with React but also with Vue for example - j
jonny
08/17/2021, 5:45 PMCan you elaborate on this more ? Keen to hear more - j
jonny
08/17/2021, 5:48 PMMight be best to open a feature request in the gotrue (supabase auth) repo. Others can also see it and possibly pitch in and work on it. https://github.com/supabase/gotrue/issues/new?assignees=&labels=enhancement&template=2.Feature_request.md - j
jonny
08/17/2021, 5:49 PMMight be best to open a feature request in the gotrue (supabase auth) repo. Others can also see it and possibly pitch in and work on it. https://github.com/supabase/gotrue/issues/new?assignees=&labels=enhancement&template=2.Feature_request.md - m
mikesky
08/17/2021, 9:43 PMWe have a need for third parties to create their own Oauth2 clients for accessing our platform's data, is this something Supabase is considering? something like keycloak or ory hydra, to name a few. I understand that would be a pretty big project 😄 - d
darora
08/18/2021, 2:23 AMWe've talked about offering an IDP, but it's not something that's been scoped out, or scheduled for work in the near future - p
Peanut
08/18/2021, 3:56 AMFirestore has policy documents which describe access rules for documents inside a collection. You can specify a rule for read and write. You can use JavaScript inside a rule. The docs: https://firebase.google.com/docs/firestore/security/get-started The advantage of such a system in Supabase is users will not have to spend time learning about RLS and SQL policies (unless they want to). The underlying RLS and SQL policies would be abstracted away and handled by Supabase. It also would help Firebase devs transitioning to Supabase (like me) as they can "convert" their policies over. You would write SQL-like code and Supabase would translate it into actual SQL and RLS. Example Supabase policy document:Copy code
Could be translated into (my SQL isn't very good):{ match /tables/public/user_profiles { match /{id=**}/ { allow read; allow write: if "id" = auth.uid(); } } }Copy codesql ALTER TABLE user_profiles ENABLE ROW LEVEL SECURITY; CREATE POLICY "read" ON user_profiles FOR SELECT USING ( true ); CREATE POLICY "write" ON users FOR UPDATE USING ( auth.uid() = id ); - p
Peanut
08/18/2021, 3:56 AMJust replied above - s
s u s h i
08/18/2021, 7:18 AMhi just a suggestion, can we have like a "folder" type thing for our SQL queries in order for us to manage our queries easier, like trigger functions in a single folder, or a single group, views queries on another. just an idea of mine - r
RichCorbs
08/18/2021, 2:19 PMFor use in policies, create an
function (similar to auth.id() and auth.user_id()) that returnsauth.user()
(probably not the right syntax but you get the intent) so that ANY attribute on the matching user record can be used in a policy.public.users WHERE users.auth_id = auth.id() LIMIT 1 - j
jonny
08/18/2021, 4:59 PMi really love this example - maybe as a smaller step we should be documenting a few examples like yours so it's a little easier to grasp going from firestore json rules to postgres RLS - p
Peanut
08/19/2021, 4:50 AMI bet a lot of your users are transitioning from Firebase (like me) so any documentation will help speed them along and boost their confidence! 🙂