Help for session/auth
Hi everyone,
Started using supabase yesterday and focused on auth system.
Now, I have a hard time with RLS/policies mechanic.
I have a clients table with RLS and this policy:
I call a Node app with the following code:
When trying to get clients without sign in before, I have a empty array, it's ok.
Then, I log using Postman, and I can retrieve my clients table from everywhere (Postman, browser ...)
I really don't understand the behavior, how it work. Supabase use sessions table, but, why log in from Postman allow me to retrieve the data from everywhere ?
Started using supabase yesterday and focused on auth system.
Now, I have a hard time with RLS/policies mechanic.
I have a clients table with RLS and this policy:
I call a Node app with the following code:
When trying to get clients without sign in before, I have a empty array, it's ok.
Then, I log using Postman, and I can retrieve my clients table from everywhere (Postman, browser ...)
I really don't understand the behavior, how it work. Supabase use sessions table, but, why log in from Postman allow me to retrieve the data from everywhere ?
