pacnpal/thrilltrack-explorer
1
0
Fork 0
mirror of https://github.com/pacnpal/thrilltrack-explorer.git synced 2025-12-20 06:11:11 -05:00
Code Issues Packages Projects Releases Wiki Activity

Fix RLS policies for email threads

Browse Source
This commit is contained in:
gpt-engineer-app[bot]
2025-10-28 18:55:23 +00:00
parent 0257bccc45
commit 8300243bb2
1 changed files with 23 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
supabase/migrations/20251028185509_1ef98987-5147-4803-83ea-9ae9a598b3cc.sql Normal file
View File

@@ -0,0 +1,23 @@
-- Drop existing restrictive policies
DROP POLICY IF EXISTS "Admins can view all email threads" ON contact_email_threads;
DROP POLICY IF EXISTS "Admins can insert email threads" ON contact_email_threads;
-- Create new inclusive SELECT policy for all admin staff roles
CREATE POLICY "Admin staff can view all email threads" ON contact_email_threads
FOR SELECT
TO authenticated
USING (
has_role(auth.uid(), 'superuser'::app_role) OR
has_role(auth.uid(), 'admin'::app_role) OR
has_role(auth.uid(), 'moderator'::app_role)
);
-- Create new inclusive INSERT policy for all admin staff roles
CREATE POLICY "Admin staff can insert email threads" ON contact_email_threads
FOR INSERT
TO authenticated
WITH CHECK (
has_role(auth.uid(), 'superuser'::app_role) OR
has_role(auth.uid(), 'admin'::app_role) OR
has_role(auth.uid(), 'moderator'::app_role)
);