nougatbyte
Nuxt SSR + Supabase security
Not an expert but I think security should be handled on the supabase side with rls and the built-in user management.
You should also be able to set permissions via triggers in supabase.
Most of my tables have a user_id column which I use to give full permissions for this row to the owner and some rules that give read permission to other users, like attendees of an event from the owner
3 replies
Nuxt SSR + Supabase security
At least on the frontend/Vue you should be pretty safe from XSS as long as you dont use the v-html attribute or inject user defined html/js via any other methods
https://vuejs.org/guide/best-practices/security.html
3 replies