How to disable direct access to table APIs and allow access only through RPC functions?
RLS🤷other🟢SQLI have some tables that I don’t want users to access directly through the default table APIs.
Access should happen only via RPC functions, which are called internally by my system.
I tried using REVOKE ALL on the tables, but when I do that, Row Level Security (RLS) stops working, which breaks my permission logic.
Does anyone know the correct way to:
- Block direct access to tables
- Keep RLS enabled and working
- Allow access only through RPC functions?
Access should happen only via RPC functions, which are called internally by my system.
I tried using REVOKE ALL on the tables, but when I do that, Row Level Security (RLS) stops working, which breaks my permission logic.
Does anyone know the correct way to:
- Block direct access to tables
- Keep RLS enabled and working
- Allow access only through RPC functions?
