Adds RLS policies

dthyresson · dthyresson · commit 07d868ae0f64 · 2022-03-27T08:32:33.000-04:00
diff --git a/data/db/rls_policies.csv b/data/db/rls_policies.csv
@@ -0,0 +1,19 @@
+schemaname,tablename,policyname,permissive,roles,cmd,qual,with_check
+public,Profile,Public profiles are viewable by everyone.,PERMISSIVE,{public},SELECT,true,
+public,Profile,Users can insert their own profile.,PERMISSIVE,{public},INSERT,,(auth.uid() = id)
+public,Profile,Users can update own profile.,PERMISSIVE,{public},UPDATE,(auth.uid() = id),
+storage,objects,Avatar images are publicly accessible.,PERMISSIVE,{public},SELECT,"(bucket_id = 'avatars'::text)",
+storage,objects,Anyone can upload an avatar.,PERMISSIVE,{public},INSERT,,"(bucket_id = 'avatars'::text)"
+storage,objects,Anyone can update an avatar.,PERMISSIVE,{public},UPDATE,,"(bucket_id = 'avatars'::text)"
+public,Post,All users can view posts,PERMISSIVE,{public},SELECT,true,
+public,Post,Only authenticated users can create posts,PERMISSIVE,{public},INSERT,,"(auth.role() = 'authenticated'::text)"
+public,Post,Users can delete their own posts,PERMISSIVE,{public},DELETE,"(auth.uid() = ""profileId"")",
+public,Post,Users can edit their own posts,PERMISSIVE,{public},UPDATE,"(auth.uid() = ""profileId"")","(auth.uid() = ""profileId"")"
+public,Comment,Everyone can view comments,PERMISSIVE,{public},SELECT,true,
+public,Comment,Only authenticated users can comment,PERMISSIVE,{public},INSERT,,"(auth.role() = 'authenticated'::text)"
+public,Comment,User can edit their own comments,PERMISSIVE,{public},UPDATE,"(auth.uid() = ""profileId"")","(auth.uid() = ""profileId"")"
+public,Comment,Users can delete their own comments,PERMISSIVE,{public},DELETE,"(auth.uid() = ""profileId"")",
+public,Vote,Everyone can view votes,PERMISSIVE,{public},SELECT,true,
+public,Vote,Only authenticated users can vote,PERMISSIVE,{public},INSERT,,"(auth.role() = 'authenticated'::text)"
+public,Vote,Users can change their vote,PERMISSIVE,{public},UPDATE,"(auth.uid() = ""profileId"")","(auth.uid() = ""profileId"")"
+public,Vote,Users can delete their own votes,PERMISSIVE,{public},DELETE,"(auth.uid() = ""profileId"")",
