top | item 38690762 (no title) marktangotango | 2 years ago How is authentication/authorization handled with this stack? Or sign up with email validation and password reset? discuss order hn newest hasty_pudding|2 years ago It's a little bit involved but doable.https://postgrest.org/en/stable/references/auth.html bigEnotation|2 years ago So where is the secret key stored for signing the JWT? In the front end as well?Edit: Oh I found it here: https://postgrest.org/en/stable/how-tos/sql-user-management....That’s a pretty neat design. Also an interesting attack surface unknown|2 years ago [deleted] est|2 years ago RDBMS auth and roles are a thing. They even support mTLS.
hasty_pudding|2 years ago It's a little bit involved but doable.https://postgrest.org/en/stable/references/auth.html bigEnotation|2 years ago So where is the secret key stored for signing the JWT? In the front end as well?Edit: Oh I found it here: https://postgrest.org/en/stable/how-tos/sql-user-management....That’s a pretty neat design. Also an interesting attack surface unknown|2 years ago [deleted]
bigEnotation|2 years ago So where is the secret key stored for signing the JWT? In the front end as well?Edit: Oh I found it here: https://postgrest.org/en/stable/how-tos/sql-user-management....That’s a pretty neat design. Also an interesting attack surface
hasty_pudding|2 years ago
https://postgrest.org/en/stable/references/auth.html
bigEnotation|2 years ago
Edit: Oh I found it here: https://postgrest.org/en/stable/how-tos/sql-user-management....
That’s a pretty neat design. Also an interesting attack surface
unknown|2 years ago
[deleted]
est|2 years ago