Is it possible to give users an api key they can a...
# off-topicr
rmontgomery429
10/11/2021, 10:43 PMIs it possible to give users an api key they can access their account with (and still apply RLS) instead of needing to go through an auth flow first?
rmontgomery429
10/11/2021, 10:59 PMI'm currently doing this but it seems like there should be a better way.
Copy code
const { session, error } = await supabase.auth.api.signInWithEmail(username, password)
supabase.auth.setAuth(session.access_token)
const { data, error } = await supabase.from('Tablename').insert([...])rmontgomery429
10/11/2021, 10:59 PMI'd rather has the user send in their API key that I generated for them (or Supabase generated for them) and pass that along to Supabase.
rmontgomery429
10/11/2021, 11:50 PMIt looks like this is already a feature request: https://github.com/supabase/supabase/issues/3233
rmontgomery429
10/11/2021, 11:54 PMAnd a discussion here: https://github.com/supabase/supabase/discussions/2021
rmontgomery429
10/11/2021, 11:54 PMI guess I'll figure something out
s
silentworks
10/12/2021, 12:59 AMYou can use anything for your RLS, if you want to generate a token and store it in a table and then use that with RLS you can do so
silentworks
10/12/2021, 1:00 AMIt just mean you have to manage that yourself and if I was to find out another user's token that you generated then I can get access to their data
r
rmontgomery429
10/12/2021, 11:40 AMThat's what I was thinking.