Hacker News new | ask | show | jobs
by freeone3000 752 days ago
Any number of database namespacing techniques already present in postgresql can prevent this. Link the user sign-on to a DB user and you’re gold.
1 comments
throwaway115 752 days ago
What? How does that ensure user 123 only generates LLM queries that constrain on rows where user=123?
link
aazo11 752 days ago
As I wrote on the original thread, we recommend using the RDBMS row-level security features.

This blog discusses how to do that on Postgres

https://www.2ndquadrant.com/en/blog/application-users-vs-row...

link
altdataseller 752 days ago
Way way too complicated. I thought this tool was suppsed to make my life easier
link
saigal 751 days ago
is there an easier way?
link
altdataseller 751 days ago
Yes write SQL
link
saigal 751 days ago
The question was around row level security
link