ReifyDB$ReifyDB
[DRAFT]This page is not published. Only visible in development mode.

Access Control

ReifyDB provides users, roles, and policies for controlling access to data.

Server Required
Access control features require a running ReifyDB server and cannot be demonstrated in the browser playground.

Users and Roles

rql
CREATE USER alice;
CREATE ROLE editors;
GRANT editors TO alice

Create users and roles, then grant roles to users. Roles determine what a user can access.

Policies

rql
CREATE NAMESPACE app;
CREATE TABLE app::documents { id: int4, title: utf8 };

CREATE TABLE POLICY read_only {
  read: { FILTER { true } }
}

Policies define row-level access rules. They specify filters for read, write, and other operations.

Grant and Revoke

rql
CREATE ROLE managers;
CREATE USER bob;
GRANT managers TO bob;
REVOKE managers FROM bob

Use GRANT and REVOKE to manage role assignments.