💾 Archived View for dioskouroi.xyz › thread › 29390454 captured on 2021-11-30 at 20:18:30. Gemini links have been rewritten to link to archived content
-=-=-=-=-=-=-
________________________________________________________________________________
I don’t think you can get around SQL (in my industry of healthcare) because most of the middleware API generators do the fine grained row level access controls at the API layer. They take over your DB schema without using it for security features, so you have to go in and write SQL either way. That was what turned me off to Hasura a while ago. Their Auth system is fantastic, but it didn’t at the time live in the database, so it didn’t meet my use case. Still a great way to get going and I’m sure folks can figure out how to enable security on the database side if they try. I’m a simpleton and just use SQL
Why would you like to have the Auth system in the database?
Take a look at
Indeed but I don't see Postgresql hosting included in their plan.
I'm thinking more into a fully managed backend solution including Postgresql, auth, async tasks, Recaptcha to protect public mutation. This would be backed by postgraphile that is open source and quite powerful.
Hasura supports authentication and ACLs with the builtin PostgreSQL user system. And we use Kratos (from the ory.sh ecosystem) for OAuth.
It supports PostgreSQL triggers, and webhooks so you can implement your own business logic.
Hasura is open source and provide way more features than postgraphile. IIRC, their SaaS offering includes a PostgreSQL.
It's a wonderful piece of technology that covers 95% of your needs. They also provide a complete docker-compose so you can start tinkering with it on your dev host.
Supabase:
You prefer postgrest API over Grapql?
Hasura is fantastic. While they don’t manage Postgres they do give you a one click deploy to Heroku.
Overall it’s a fantastic tool
Fantastic only because you have Graphql environment few second?