|
|
|
|
|
|
by steve-chavez
796 days ago
|
|
|
> A few things, RLS is secure by default, it's postgrest that's insecure by default. What makes you think that? PostgREST delegates all the authorization to PostgreSQL, which is secure by default. You have to explicitly assign privileges to roles for every operation. Relevant previous discussion: https://news.ycombinator.com/item?id=38689294 |
|
|