Glossary

Row-level security (RLS)

Row-level security (RLS) — A Postgres feature that filters every database query so users can only read or modify their own rows. SubRemind uses RLS for every table.

Row-level security (RLS) is a Postgres feature that attaches a policy to a table so each query is filtered automatically by user identity. SubRemind enables RLS on every user-owned table (subscriptions, user_settings, user_categories) with policies that compare auth.uid() to the row's user_id on SELECT, INSERT, UPDATE, and DELETE. Even if a query were crafted to look up someone else's data, the database would silently exclude those rows.

Related terms

Subscription

← Back to glossary