https://supabase.com/ logo
Join Discord
Powered by
This is what I want, so I ended up duplicating aut...
# sql
s
This is what I want, so I ended up duplicating auth.uid() into the public schema in order to keep the auth schema isolated from users
g
@User I just looked at your code (just looked at error before) and thought you were accessing an auth table. I wonder if it is "select auth.uid()" causing the issue. auth.uid() on its own works in RLS and rpc functions. You might try:
Copy code
insert into...
values(auth.uid(), new_username)
s
Interesting! When I use values(...) select my editor warns about syntax error. How can I still use select in order to fetch other properties? My actual query looks like:
Copy code
insert into public.workout_session(owner_id, tags, upstream_workout_id)
    select public.viewer_id(), workout.tags, workout.id
    from (select id, tags from public.workout where id = workout_id::uuid) as workout
    returning * into new_session;
I tried to get the auth.uid() out of the select statement with a variable, so now the sql in question is:
Copy code
select * from public.workout where id = workout_id::uuid into target_workout;

    insert into public.workout_session(owner_id, tags, upstream_workout_id)
    values (auth.uid(), target_workout.tags, target_workout.id)
    returning * into new_session;
This still gives me "permission denied for schema auth"
g
Hmmm, I'm puzzled, but not an expert on SQL. I'll double check with an rpc call, but not sure why auth.uid() would be different here than in RLS or if statements in rpc functions...
I just ran this as security invoker function from an rpc call:
Copy code
begin
  insert into test(test3333)
  values (auth.uid());
  end;
And it works...
s
Ok, I'll try the same, one moment
I still get the same error using the following:
Copy code
create table public.rpc_test (
    test_value uuid
);

CREATE OR REPLACE FUNCTION public.rpc_test_fn()
    RETURNS public.rpc_test
    LANGUAGE 'plpgsql'
    SECURITY INVOKER
AS
$$
begin
    insert into rpc_test(test_value)
    values (auth.uid());
end
$$;
I call the rpc function from a logged in user in my app via supabase.rpc('rpc_test_fn'). Edit: And the database is hosted on/by Supabase
g
Mine is also on hosted platform, no changes to schema. Are you sure you are not getting a return error on that one... you say to return a record, but don't...
It is updating the table with the uid...
s
I get the error: 
{"code": "42501", "details": null, "hint": null, "message": "permission denied for schema auth"}
so it seems like it doesn't get to return
PreviousNext
Powered by