home.social

#rowlevelsecurity — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #rowlevelsecurity, aggregated by home.social.

  1. HackerNoon @[email protected] ·

    Before I flipped my Supabase PSA tool public, I had to convince myself a fork couldn't ship a security hole. Here are the five patterns that made me trust it. hackernoon.com/defense-in-dept #rowlevelsecurity

    #rowlevelsecurity
  2. JohnnyD @[email protected] ·

    Your Django ORM protects tenant data. Your raw SQL doesn't. 😬

    That's why I built django-rls-tenants — multitenancy powered by PostgreSQL Row-Level Security, enforced at the database level.

    🔒 Every query is filtered — ORM, raw SQL, even dbshell
    🚫 Missing tenant context? Zero rows returned, never a data leak
    📦 Single schema, no connection routing headaches
    ⚡ Drop-in: one base model, one middleware, done

    Unlike schema-based or ORM-rewriting approaches, RLS policies live in PostgreSQL itself. The database becomes your last line of defense — not your app code.

    Supports Python 3.11+, Django 4.2–6.0, PostgreSQL 15+.

    Just shipped v1.0.0 🚀

    pip install django-rls-tenants

    📖 Docs & source: github.com/dvoraj75/django-rls

    Feedback, stars & contributions welcome! ⭐

    #Django #Python #PostgreSQL #MultiTenancy #RowLevelSecurity #OpenSource #WebDev #SaaS #InfoSec #Database

    #django #python #postgresql #multitenancy #rowlevelsecurity #opensource
  3. JohnnyD @[email protected] ·

    Your Django ORM protects tenant data. Your raw SQL doesn't. 😬

    That's why I built django-rls-tenants — multitenancy powered by PostgreSQL Row-Level Security, enforced at the database level.

    🔒 Every query is filtered — ORM, raw SQL, even dbshell
    🚫 Missing tenant context? Zero rows returned, never a data leak
    📦 Single schema, no connection routing headaches
    ⚡ Drop-in: one base model, one middleware, done

    Unlike schema-based or ORM-rewriting approaches, RLS policies live in PostgreSQL itself. The database becomes your last line of defense — not your app code.

    Supports Python 3.11+, Django 4.2–6.0, PostgreSQL 15+.

    Just shipped v1.0.0 🚀

    pip install django-rls-tenants

    📖 Docs & source: github.com/dvoraj75/django-rls

    Feedback, stars & contributions welcome! ⭐

    #Django #Python #PostgreSQL #MultiTenancy #RowLevelSecurity #OpenSource #WebDev #SaaS #InfoSec #Database

    #database #infosec #saas #webdev #opensource #rowlevelsecurity
  4. JohnnyD @johnnyd ·

    Your Django ORM protects tenant data. Your raw SQL doesn't. 😬

    That's why I built django-rls-tenants — multitenancy powered by PostgreSQL Row-Level Security, enforced at the database level.

    🔒 Every query is filtered — ORM, raw SQL, even dbshell
    🚫 Missing tenant context? Zero rows returned, never a data leak
    📦 Single schema, no connection routing headaches
    ⚡ Drop-in: one base model, one middleware, done

    Unlike schema-based or ORM-rewriting approaches, RLS policies live in PostgreSQL itself. The database becomes your last line of defense — not your app code.

    Supports Python 3.11+, Django 4.2–6.0, PostgreSQL 15+.

    Just shipped v1.0.0 🚀

    pip install django-rls-tenants

    📖 Docs & source: github.com/dvoraj75/django-rls

    Feedback, stars & contributions welcome! ⭐

    #django #python #postgresql #multitenancy #rowlevelsecurity #opensource
  5. JohnnyD @[email protected] ·

    🚀 Day 1 on django-rls-tenants — bringing true PostgreSQL Row-Level Security to Django multitenancy!

    Instead of separate schemas or filtered querysets, this library leverages native RLS policies at the DB level to isolate tenant data automatically.

    ✅ Pros:
    • True DB-level isolation — tenants can't bleed into each other
    • Transparent to Django ORM — no custom managers needed
    • Leaner than schema-per-tenant approaches
    • Scales well for high tenant counts
    • Security enforced even outside the app layer

    ❌ Cons:
    • PostgreSQL-only (no MySQL/SQLite support)
    • RLS policies add complexity to migrations
    • Debugging cross-tenant issues can be tricky
    • Superuser connections bypass RLS — needs care
    • Less community tooling than shared-schema approaches

    Still very early, but the foundations are solid. Would love feedback from anyone who's tackled multitenancy in Django before! 🐘🐍

    #Django #PostgreSQL #Python #Multitenancy #RLS #RowLevelSecurity #OpenSource #WebDev #SaaS #DjangoORM #DevLife

    #django #postgresql #python #multitenancy #rls #rowlevelsecurity
  6. JohnnyD @johnnyd ·

    🚀 Day 1 on django-rls-tenants — bringing true PostgreSQL Row-Level Security to Django multitenancy!

    Instead of separate schemas or filtered querysets, this library leverages native RLS policies at the DB level to isolate tenant data automatically.

    ✅ Pros:
    • True DB-level isolation — tenants can't bleed into each other
    • Transparent to Django ORM — no custom managers needed
    • Leaner than schema-per-tenant approaches
    • Scales well for high tenant counts
    • Security enforced even outside the app layer

    ❌ Cons:
    • PostgreSQL-only (no MySQL/SQLite support)
    • RLS policies add complexity to migrations
    • Debugging cross-tenant issues can be tricky
    • Superuser connections bypass RLS — needs care
    • Less community tooling than shared-schema approaches

    Still very early, but the foundations are solid. Would love feedback from anyone who's tackled multitenancy in Django before! 🐘🐍

    #django #postgresql #python #multitenancy #rls #rowlevelsecurity
  7. AI Daily Post @[email protected] ·

    Embedding policy enforcement directly into query engines gives AI agents fine‑grained, auditable control over data. Think row‑ and column‑level security, purpose‑binding, and seamless IAM integration—without sacrificing performance. Learn how this opens the path to trustworthy, open‑source AI. #PolicyEnforcement #QueryEngine #AIagents #RowLevelSecurity

    🔗 aidailypost.com/news/embedding

    #policyenforcement #queryengine #aiagents #rowlevelsecurity
  8. AI Daily Post @[email protected] ·

    Embedding policy enforcement directly into query engines gives AI agents fine‑grained, auditable control over data. Think row‑ and column‑level security, purpose‑binding, and seamless IAM integration—without sacrificing performance. Learn how this opens the path to trustworthy, open‑source AI. #PolicyEnforcement #QueryEngine #AIagents #RowLevelSecurity

    🔗 aidailypost.com/news/embedding

    #policyenforcement #queryengine #aiagents #rowlevelsecurity
  9. Hacker News @[email protected] ·

    Multi-Region Row Level Security in CockroachDB

    cockroachlabs.com/blog/fine-gr

    #HackerNews #MultiRegion #Security #CockroachDB #RowLevelSecurity #DataAccess

    #hackernews #multiregion #security #cockroachdb #rowlevelsecurity #dataaccess
  10. Hacker News @[email protected] ·

    Multi-Region Row Level Security in CockroachDB

    cockroachlabs.com/blog/fine-gr

    #HackerNews #MultiRegion #Security #CockroachDB #RowLevelSecurity #DataAccess

    #hackernews #multiregion #security #cockroachdb #rowlevelsecurity #dataaccess
  11. Hacker News @[email protected] ·

    Multi-Region Row Level Security in CockroachDB

    cockroachlabs.com/blog/fine-gr

    #HackerNews #MultiRegion #Security #CockroachDB #RowLevelSecurity #DataAccess

    #hackernews #multiregion #security #cockroachdb #rowlevelsecurity #dataaccess
  12. Hacker News @[email protected] ·

    Multi-Region Row Level Security in CockroachDB

    cockroachlabs.com/blog/fine-gr

    #HackerNews #MultiRegion #Security #CockroachDB #RowLevelSecurity #DataAccess

    #dataaccess #rowlevelsecurity #cockroachdb #security #multiregion #hackernews
  13. Hacker News @[email protected] ·

    Multi-Region Row Level Security in CockroachDB

    cockroachlabs.com/blog/fine-gr

    #HackerNews #MultiRegion #Security #CockroachDB #RowLevelSecurity #DataAccess

    #hackernews #multiregion #security #cockroachdb #rowlevelsecurity #dataaccess