undefined | Better HN

0 pointsCuriouslyC5y ago0 comments

With postgrest you can add stored procedures as rest rpc calls, and you can always roll a microservice for more advanced stuff. In practice these sorts of auto-api tools make a good starting point as long as they support your authentication and authorization needs.

0 comments

rapind5y ago

What I like about postgREST is you’re leveraging a mature system for authorization (postgresql roles) rather than rolling your own outside the database and introducing a ton of code and vulnerabilities.

Not every application needs roles though, but it definitely feels like the saner approach if you do.

Also a nice side effect, depending on the team, is a significant performance boost as your forced to go deep in database land instead of leaky ORM abstractions.

j / k navigate · click thread line to collapse

0 pointsCuriouslyC5y ago0 comments

0 comments

rapind5y ago

Not every application needs roles though, but it definitely feels like the saner approach if you do.

Also a nice side effect, depending on the team, is a significant performance boost as your forced to go deep in database land instead of leaky ORM abstractions.

j / k navigate · click thread line to collapse