It's a little bit involved but doable. https://postgrest.org/en/stable/reference... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

hasty_pudding 9 months ago | parent | context | favorite | on: PostgREST: Providing HTML Content Using Htmx

It's a little bit involved but doable.

https://postgrest.org/en/stable/references/auth.html

bigEnotation 9 months ago [–]

So where is the secret key stored for signing the JWT? In the front end as well?

Edit: Oh I found it here: https://postgrest.org/en/stable/how-tos/sql-user-management....

That’s a pretty neat design. Also an interesting attack surface

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact