pacnpal/thrilltrack-explorer
1
0
Fork 0
mirror of https://github.com/pacnpal/thrilltrack-explorer.git synced 2025-12-20 09:31:13 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
ea78aff4a7423cbe4606258f8b4b0f5914c04a01
thrilltrack-explorer/docs/versioning/BEST_PRACTICES.md
gpt-engineer-app[bot] ea78aff4a7 feat: Implement versioning documentation
2025-10-15 17:54:53 +00:00

1.1 KiB
Raw Blame History

Best Practices

When to Create Versions

DO: Let triggers handle versioning automatically
DON'T: Manually call versioning functions
DON'T: Bypass triggers with direct SQL

Performance

  • Run cleanup_old_versions() monthly
  • Keep 50-100 versions per entity
  • Use indexes for queries
  • Implement pagination for large version lists

Security

  • Never expose created_by user IDs to public
  • Always check RLS policies
  • Validate rollback permissions server-side
  • Use session variables for attribution

Testing

Test version creation on:

  • INSERT (creates version_number: 1)
  • UPDATE (increments version_number)
  • Rollback (creates new version with change_type='restored')

Attribution

Always set app.current_user_id to original submitter, NOT moderator.

// ✅ CORRECT
await supabase.rpc('set_session_variable', {
  key: 'app.current_user_id',
  value: submission.user_id,  // Original submitter
});

// ❌ WRONG
await supabase.rpc('set_session_variable', {
  key: 'app.current_user_id',
  value: auth.uid(),  // Moderator who approved
});
Reference in New Issue View Git Blame Copy Permalink