© 2026 Hedgehog Software, LLC

Twitter GitHub Discord

More

Communities Docs About Terms Privacy

Supabase•4y ago•

3 replies

Preventing psql function execution

I have a utility function to check claims in RLS policies. It seems to be working well but I want to make sure that a user cannot call the function via the api in order to try to learn which users have which levels of access in the event that a malicious actor gains access to another user's uid. How can I restrict the function to use only by the RLS policy?

Supabase banner

Supabase gives you the tools, documentation, and community that makes managing databases, authentication, and backend infrastructure a lot less overwhelming.

45,816Members

Resources

Recent Announcements

Similar Threads

Was this page helpful?

Similar Threads

Grants on RPC Function execution

SSupabase / help-and-questions

Edge Function execution time limit

SSupabase / help-and-questions

Access psql shell

SSupabase / help-and-questions

psql connection times outI

SSupabase / help-and-questions