Supabase is an open source Firebase alternative. Start your project with a Postgres database, Authentication, instant APIs, Edge Functions, Realtime subscriptions, and Storage.

Supabase

How does postgres get the current authenticated user, i.e. `auth`  to run checks in RLS policies?

Hello <@691954098869895178>!
This thread has been automatically created from your message in <#843999948717555735> a ``few seconds ago``.

Pinging <@&951828363943759883> so that they see this as well!

**Want to unsubscribe from this thread?**
Right-click the thread in Discord (or use the ... menu) and select **Leave Thread** to unsubscribe from future updates.

**Want to change the title?**
Use the `/title` command!

**We have solved your problem?**
Click the button below to archive it.

It looks like the jwt of the client is passed to postgres who can decode it (https://supabase.com/docs/learn/auth-deep-dive/auth-row-level-security last code block) but i can't figure out how

Here is an example of the uid function:

create or replace function auth.uid()
returns uuid
language sql stable
as $$
  select
  nullif(
    coalesce(
      current_setting('request.jwt.claim.sub', true),
      (current_setting('request.jwt.claims', true)::jsonb ->> 'sub')
    ),
    ''
  )::uuid
$$;

And PostgREST provides the jwt info.  https://postgrest.org/en/stable/api.html#http-context