3 comments

[ 3.2 ms ] story [ 16.8 ms ] thread
Bad solution. I don't want to create separate postgresql users for each restriction. It should be based on a context variable or something similar, but not on postgresql users.
IIRC, it can indeed work like that. See Postgraphile and maybe Hasura, on how they handle it. I'm fairly certain it doesn't _need_ to be Postgres users.