DIY Real-Time Polling App waxay ku qiyaasta Access iyo Permit.io

authenticated can read and create polls

creator can read, update, and delete polls

(Optional) Waxaad ka heli karaa xisaabinta xisaabinta ka mid ah mid ka mid ah this ama ka mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah

• authenticated can read and create polls

• creator can read, update, and delete polls

(Optional) Waxaad ka heli karaa xisaabinta xisaabinta ka mid ah this ama ka mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ah mid

• authenticated waxaa loo isticmaali karaa read iyo create polls

authenticated waxaa loo isticmaali karaa read iyo create polls

authenticatedreadcreate

• creator waxaa laga yaabaa read, update, iyo wax yar polls

creator waxaa laga yaqaan read, update, iyo delete polls

creatorreadupdatedelete

• (Optional) Waxaad ka heli karaa xisaabtood ka mid ah this ama ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ah

  (Optional) Waxaad ka heli karaa xisaabtood ka mid ah this ama ka mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah.

  
  

  

  

  
  

  Waayo, waxaa laga yaabaa in ka mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid

  Diiwaanka ugu horeysay ee ku saabsan

  Waqtiisa ah oo ku yaala

  • Go to Directory → Instances

  • Add individual poll IDs as resource instances (you will automate this later when new polls are created)

  • Assign roles to users per poll (e.g. user123 is creator of poll456)

    
    

• Go to Directory → Instances

Go to Directory → Instances

Dhammaanada → Dhammaanada

• Waax ka mid ah ID-ga ah oo ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah.

Waqtiyo ID-ga ah oo ku yaalaa mid ka mid ah macluumaadka ah (wax yar u isticmaalaa in ay ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah mid ah mid ka mid ah.

• Waax yar oo ka mid ah macluumaad ka mid ah macluumaadka (e.g. user123 waa creator of poll456)

  
  

Waax yar oo ka mid ah macluumaad ka mid ah macluumaadka (e.g. user123 waa creator of poll456)

user123creatorpoll456








Waaqada this waxay ka dhigi karaa in ay ku xiran karaa qiyaasadaha qiyaasadaha iyo si ay u isticmaalo, per poll.




Now that we have completed the initial setup on the Permit dashboard, let's use it in our application. Next, we’ll connect Permit.io to our Supabase project via Edge Functions that:

Permit.io
• Sync isticmaalka cusub
• Role creator Assign
• Check access on demand
• Sync isticmaalka cusub
• Waax yar oo dhan
• Check access on demand

Waqtiisa waxaa loo isticmaali karaa in la isticmaali karaa

Waqtiisa loo yaqaan 'Polling Application'

Permit offers multiple ways to integrate with your application, but we'll use the Container PDP for this tutorial. You have to host the container online to access it in Supabase Edge functions. You can use services like railway.com. Once you have hosted it, save the url for your container.

railway.com




Dhammaan API-ka Dhammaan ka mid ah "Projects" ee tababarka tababarka Dhammaan, si ay u shaqeeyaan in ay u shaqeeyaan, si ay u mid ka mid ah three dots, oo ka mid ah "Copy API Key".








Creeing Supabase Edge Function API for Authorization

Supabase Edge Functions waa mid ka mid ah si ay u isticmaali karaa adeegga kale sida Permit.io. Waxaan loo isticmaali karaa si ay u isticmaali karaa qiyaasta ReBAC ee la xiran tahay in ay isticmaali karaa si ay u isticmaali karaa macluumaadka gaarka ah.

Supabase Edge Functions

Waaq u soo xiriir oo loo isticmaali karaa

Waaq u soo xiriir in Supabase

Diiwaanka Supabase ee shuruudahaaga iyo loo helo 3 kala duwan oo loo isticmaalo Supabase functions new command.supabase functions new

npx supabase init npx supabase function new syncUser npx supabase function new updateCreatorRole npx supabase function new checkPermission 

npx supabase init npx supabase functions new syncUser npx supabase functions new updateCreatorRole npx supabase functions new checkPermission

Diiwaanka waxaa loo isticmaali karaa foldera functions ee foldera supabase sida loo isticmaali karaa endpoints.

functionssupabase

Syncing Users to Permit.io on Signup (syncUser.ts)

syncUser.ts

Function this listens for Supabase's SIGNED_UP auth event. Markaad ka mid ah isticmaalka cusub waa in la soo xiriir, waxaan soo xiriir si loo isticmaalaa Permit.io iyo si ay u soo xiriir authenticated rol.

SIGNED_UPauthenticated




Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku:import "jsr:@supabase/functions-js/edge-runtime.d.ts"; import { Permit } from "npm:permitio"; const corsHeaders = { 'Access-Control-Allow-Origin': "*", 'Access-Control-Allow-Headers': 'Authorization, x-client-info, apikey, Content-Type', 'Access-Control-Allow-Methods': 'POST, GET, OPTIONS, PUT, DELETE', } // Supabase Edge Function to sync new users with Permit.io Deno.serve(async (req) => { const permit = new Permit({ token: Deno.env.get("PERMIT_API_KEY"), pdp: "<https://real-time-polling-app-production.up.railway.app>", }); try { const { event, user } = await req.json(); // Only proceed if the event type is "SIGNED_UP" if (event === "SIGNED_UP" && user) { const newUser = { key: user.id, email: user.email, name: user.user_metadata?.name || "Someone", }; // Sync the user to Permit.io await permit.api.createUser(newUser); await permit.api.assignRole({ role: "authenticated", tenant: "default", user: user.id, }); console.log(`User ${user.email} synced to Permit.io successfully.`); } // Return success response return new Response( JSON.stringify({ message: "User synced successfully!" }), { status: 200, headers: corsHeaders }, ); } catch (error) { console.error("Error syncing user to Permit: ", error); return new Response( JSON.stringify({ message: "Error syncing user to Permit.", "error": error }), { status: 500, headers: { "Content-Type": "application/json" } }, ); } });

Diiwaanka Role Creator (updateCreatorRole.ts)

updateCreatorRole.ts

Wala soo saarka isticmaalka loo soo saarka, function this is called to:

Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku:

• Sync si aad u baahan tahay in ay ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah.

  Sync ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ahHaku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku: Haku:

  Waaxii isticmaalka creator rol oo ka mid ah in la helo

  creator

  
  

  Waayo, waxaa laga yaabaa in ka mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah midimport "jsr:@supabase/functions-js/edge-runtime.d.ts"; import { Permit } from "npm:permitio"; const corsHeaders = { 'Access-Control-Allow-Origin': "*", 'Access-Control-Allow-Headers': 'Authorization, x-client-info, apikey, Content-Type', 'Access-Control-Allow-Methods': 'POST, GET, OPTIONS, PUT, DELETE', } Deno.serve(async (req) => { const permit = new Permit({ token: Deno.env.get("PERMIT_API_KEY"), pdp: "<https://real-time-polling-app-production.up.railway.app>", }); try { const { userId, pollId } = await req.json(); // Validate input parameters if (!userId || !pollId) { return new Response( JSON.stringify({ error: "Missing required parameters." }), { status: 400, headers: { "Content-Type": "application/json" } }, ); } // Sync the resource (poll) to Permit.io await permit.api.syncResource({ type: "polls", key: pollId, tenant: "default", attributes: { createdBy: userId } }); // Assign the creator role to the user for this specific poll await permit.api.assignRole({ role: "creator", tenant: "default", user: userId, resource: { type: "polls", key: pollId, } }); return new Response( JSON.stringify({ message: "Creator role assigned successfully", success: true }), { status: 200, headers: corsHeaders }, ); } catch (error) { console.error("Error assigning creator role: ", error); return new Response( JSON.stringify({ message: "Error occurred while assigning creator role.", error: error }), { status: 500, headers: { "Content-Type": "application/json" } }, ); } });

  
  

  Qalabka dhismaha (checkPermission.ts)

  checkPermission.ts

  Function this function acts as the gatekeeper—it checks whether a user is allowed to perform a given action (create, read, update, delete) on a particular poll.

  createreadupdatedelete

  
  

  Waayo, waxaa laga yaabaa in ka mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka midimport "jsr:@supabase/functions-js/edge-runtime.d.ts"; import { Permit } from "npm:permitio"; const corsHeaders = { "Access-Control-Allow-Origin": "*", "Access-Control-Allow-Headers": "Authorization, x-client-info, apikey, Content-Type", "Access-Control-Allow-Methods": "POST, GET, OPTIONS, PUT, DELETE", }; Deno.serve(async req => { const permit = new Permit({ token: Deno.env.get("PERMIT_API_KEY"), pdp: "<https://real-time-polling-app-production.up.railway.app>", }); try { const { userId, operation, key } = await req.json(); // Validate input parameters if (!userId || !operation || !key) { return new Response( JSON.stringify({ error: "Missing required parameters." }), { status: 400, headers: { "Content-Type": "application/json" } } ); } // Check permissions using Permit's ReBAC const permitted = await permit.check(userId, operation, { type: "polls", key, tenant: "default", // Include any additional attributes that Permit needs for relationship checking attributes: { createdBy: userId, // This will be used in Permit's policy rules }, }); return new Response(JSON.stringify({ permitted }), { status: 200, headers: corsHeaders, }); } catch (error) { console.error("Error checking user permission: ", error); return new Response( JSON.stringify({ message: "Error occurred while checking user permission.", error: error, }), { status: 500, headers: { "Content-Type": "application/json" } } ); } });

  Local Testing

  Diiwaanka adeegga Supabase ee loo yaqaan 'Development Server' ee loo yaqaan 'Development Server':

  nppx supabase start nppx supabase functions serve 

  npx supabase start npx supabase functions serve

  Saacadda waxaad ka heli karaa:

  <http://localhost:54321/functions/v1/><function-name> 

  <http://localhost:54321/functions/v1/><function-name> Tusaale: Tusaale: Tusaale: Tusaale: Tusaale

  <http://localhost:54321/functions/v1/checkPermission> 

  <http://localhost:54321/functions/v1/checkPermission>

  Integrating Authorization Checks in UI

  Wala soo saarka loo soo saarka logic autorization la Permit.io iyo loo soo saarka via Supabase Edge Functions, waxaa laga yaabaa in la qiyaasta in ay ka mid ah qiyaasta ah ee app.

  
  

  In this section, waxaan soo dejiso components UI key si ay u soo xiriir macluumaadka iyo si ay u qiyaastii karaa ama si ay u qiyaastii wax soo saarka macaamiisha sida si ay u dhiso ama si ay u qiyaastii si ay u qiyaastii qiyaastii.

  NewPoll.tsx: Dhammaan Dhammaan Dhammaan Dhammaan DhammaanNewPoll.tsx

  Saacad ka dib markii loo soo saarka oo ku salaysan in Supabase, waxaan ka heli updateCreatorRole function in:

  updateCreatorRole{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{

  Sync si loo isticmaali karaa mid ka mid ah 'Permit.io

  Sync si aad u soo xiriir sida resource in Permit.io

  {{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{

  Waaxii isticmaalka ugu horeysay ee creator rol for that specific poll

  creator

  
  

  Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabka Qalabkaconst handleSubmit = async (e: React.FormEvent) => { e.preventDefault(); if (question.trim() && options.filter(opt => opt.trim()).length < 2) { setErrorMessage("Please provide a question and at least two options."); return; } try { // Create the poll const { data: poll, error: pollError } = await supabase .from("polls") .insert({ question, expires_at: new Date(expiryDate).toISOString(), created_by: user?.id, creator_name: user?.user_metadata?.user_name, }) .select() .single(); if (pollError) { console.error("Error creating poll:", pollError); setErrorMessage(pollError.message); return; } // Create the options const { error: optionsError } = await supabase.from("options").insert( options .filter(opt => opt.trim()) .map(text => ({ poll_id: poll.id, text, })) ); if (optionsError) { console.error("Error creating options:", optionsError); setErrorMessage(optionsError.message); return; } // Update the creator role in Permit.io const response = await fetch( "<http://127.0.0.1:54321/functions/v1//updateCreatorRole>", { method: "POST", headers: { "Content-Type": "application/json", }, body: JSON.stringify({ userId: user?.id, pollId: poll.id, }), } ); const { success, error } = await response.json(); if (!success) { console.error("Error updating creator role:", error); // Note: We don't set an error message here as the poll was still created successfully } setSuccessMessage("Poll created successfully!"); handleCancel(); } catch (error) { console.error("Error in poll creation process:", error); setErrorMessage("An unexpected error occurred while creating the poll."); } };

  ViewPoll.tsx: Qalabka ugu soo saarkaViewPoll.tsx

  Wala soo bandhigay user ka soo bandhigay on a poll, waxaan soo bandhigay checkPermission function si ay u soo bandhigay create permit on the votes resource. This is how we enforce the rule: “A creator cannot vote on their own poll.”

  checkPermissioncreatevotes“A creator cannot vote on his own poll.”

  
  

  Diiwaanka xisaabinta:

  Waqtiisa loo yaabaa in la soo xiriir:

  
  

  Waayo, waxaa laga yaabaa in ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka midconst [canVote, setCanVote] = useState(false); useEffect(() => { const checkPermission = async () => { if (!user || !query.id) return; try { const response = await fetch("<http://127.0.0.1:54321/functions/v1/checkPermission>", { method: "POST", headers: { "Content-Type": "application/json", }, body: JSON.stringify({ userId: user.id, operation: "create", key: query.id, }), }); const { permitted } = await response.json(); setCanVote(permitted); } catch (error) { console.error("Error checking permission:", error); setCanVote(false); } }; checkPermission(); }, [user, query.id]);

  
  

  Diiwaanka si aad u isticmaali karaa:

  Waax yar oo ka mid ah wax soo saarka:

  
  

  <button onClick={() => handleVote(option.id)} disabled={!user Mediateca !canVote}} className="w-full text-left p-4 rounded-md hover:bg-slate-100 transition-colors disabled:opacity-50 disabled:cursor-not-allowed"> {option.text} </button> 

  <button onClick={() => handleVote(option.id)} disabled={!user || !canVote}} className="w-full text-left p-4 rounded-md hover:bg-slate-100 transition-colors disabled:opacity-50 disabled:cursor-not-allowed"> {option.text} </button>

  
  

  Show a message if the user is not allowed to vote:

  Show a message if user is not allowed to vote:

  
  

  {user && !canVote && ( <p className="mt-4 text-gray-600">Diiwaanka waxaa laga yaabaa in aad u hesho</p> )} 

  {user && !canVote && ( <p className="mt-4 text-gray-600">You cannot vote on your own poll</p> )}

  PollCard.tsx: Qalabka ugu soo saarkaPollCard.tsx

  Waa soo bandhigay ka mid ah macluumaadka loo isticmaali karaa (xirfadaha iyo xiran) by checking if the user has the update or delete permission on that poll.

  updatedelete

  
  

  Diiwaanka xisaabinta:

  Diiwaanka xanuunada xanuunada:

  
  

  Waayo, waxaa laga yaabaa in ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah midconst [canManagePoll, setCanManagePoll] = useState(false); useEffect(() => { const checkPollPermissions = async () => { if (!user || !poll.id) return; try { // Check for both edit and delete permissions const [editResponse, deleteResponse] = await Promise.all([ fetch("<http://127.0.0.1:54321/functions/v1/checkPermission>", { method: "POST", headers: { "Content-Type": "application/json", }, body: JSON.stringify({ userId: user.id, operation: "update", key: poll.id, }), }), fetch("/api/checkPermission", { method: "POST", headers: { "Content-Type": "application/json", }, body: JSON.stringify({ userId: user.id, operation: "delete", key: poll.id, }), }), ]); const [{ permitted: canEdit }, { permitted: canDelete }] = await Promise.all([editResponse.json(), deleteResponse.json()]); // User can manage poll if they have either edit or delete permission setCanManagePoll(canEdit || canDelete); } catch (error) { console.error("Error checking permissions:", error); setCanManagePoll(false); } }; checkPollPermissions(); }, [user, poll.id]);

  
  

  Diiwaanka dhismaha dhismaha dhismaha:

  Ganacsiga dhismaha dhismaha dhismaha:

  
  

  Tusaale:

  Tusaale:

  {user?.id === poll?.created_by && ( 

  {user?.id === poll?.created_by && (

  
  

  Marka:

  With:

  {canManagePoll && ( <div className="flex justify-start gap-4 mt-4"> <button type="button" onClick={handleEdit}> </button> <button type="button" onClick={handleDelete}> </button> </div> )} 

  {canManagePoll && ( <div className="flex justify-start gap-4 mt-4"> <button type="button" onClick={handleEdit}> </button> <button type="button" onClick={handleDelete}> </button> </div> )}

  Testing Integraasi

  Saacad ka mid ah, sidoo kale aad u soo baxsan kartaa dhismaha ugu horeysay ee app:

  Waayo, sidoo kale waxaa laga yaabaa in ka mid ah mid ka mid ah mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid ah mid ka mid

• Wala soo xiriir waxaa laga yaabaa in la soo xiriir oo la xiriir

Wala soo xiriir waxaa laga yaabaa in la soo xiriir oo la soo xiriir

• Wala soo xiriir oo ka mid ah wax soo saarka oo ka mid ah wax soo saarka oo ka mid ah wax soo saarka oo ka mid ah wax soo saarka.

  Waxaysiinta waxaa laga yaabaa in la heli karo in ay didn't create

  Didn't waxaa laga yaabaa

• Creators cannot vote on their own polls

Creators cannot vote on their own polls

gaaxiib ah oo ku saabsan

• Only creators see edit/delete options on their polls

  
  

Only creators see edit/delete options on their polls

xirfado/xirfado








Saacadda waxaa laga yaabaa in aad u aragto wax soo saarka ah ee app si aad u aragto browser. On screen home, users can view the list of active and past polls, whether they are logged in or not. However, when they click on a poll, they will not be able to view the poll details or vote on it. Instead, they will be prompted to log in.




Saacad ka hor si ay u soo xiriir, isticmaalka waa in ay u aragti si ay u aragti si ay u aragti si ay u aragti si ay u aragti si ay u aragti si ay u aragti si ay u aragti si ay u aragti.

Diiwaanka

In this tutorials, waxaan ku yaalaa sida loo isticmaalaa Supabase authentication iyo authorization in a real-world Next.js application.

Supabase authentication iyo kharashkaDiiwaanka.js

Wala soo bandhigay Supabase Auth for login and signup, soo bandhigay dhismaha relational oo loo isticmaalo Row Level Security, iyo soo bandhigay dhismaha dhismaha dhismaha dhismaha dhismaha oo isticmaalo ReBAC.Wala soo bandhigay Supabase Edge Functions iyo a Policy Decision Point (PDP), sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale sidoo kale.

Supabase QalabkaDiiwaankaSupabase Edge Functions Policy Decision Point (PDP)




Dhammaan ka mid ah Supabase Auth iyo qiyaasta Access flexible, waxaan noqon doonaa:

Supabase Qalabka
• Dhammaan users via email and password
• Restrict voting and poll management to authorized users
• Dhammaan creators from voting on their own polls
• Dhammaan iyo si ay u hesho role users based on relationships to data
• Coolka isticmaalka email iyo password
• Dhammaan oo ka mid ah shuruudaha iyo shuruudaha waxaa laga yaqaan 'Limit voting and poll management to authorized users'.
• Diiwaanka loo isticmaali karaa in la heli karaa in la heli karo oo ka mid ah wax soo saarka.
• Dhammaan iyo si ay u hesho user roles ku salaysan relationships to data




Dhammaan waxaa loo isticmaali karaa in ay u isticmaali karaa macluumaadka macluumaadka iyo macluumaadka.

Laha soo xiriir

• Permit.io ReBAC Guide

• Permit + Authentication Providers

• Permit Elements: Embedded UI for Role Management

• Data Filtering with Permit

• Audit Logs

  
  

• Permit.io ReBAC Guide

Permit.io ReBAC Guide

Permit.io ReBAC Guide

• Permit + Authentication Providers

Permit + Authentication Providers

Permit + Authentication Providers

• Permit Elements: Embedded UI for Role Management

Permit Elements: Embedded UI for Role Management

Permit Elements: Embedded UI for Role Management

• Data Filtering with Permit

Data Filtering with Permit

Data Filtering with Permit

• Audit Logs

  
  

Audit Logs

Audit Logs




Got questions? Join our Slack community, where hundreds of developers are building and discussing authorization.

Slack communitySlack community