Postgres RLS with Tenant Guard

Use the CLI to plan safe Row‑Level Security and validate Prisma changes.

Plan policies

pnpmnpmyarnbun

bash

pnpm prisma-tenant-guard rls --plan

bash

npm exec prisma-tenant-guard rls --plan

bash

yarn prisma-tenant-guard rls --plan

bash

bunx prisma-tenant-guard rls --plan

This generates RLS suggestions based on your models and tenant keys.

Apply and check

Apply the generated SQL under a migration.
Validate:

pnpmnpmyarnbun

bash

pnpm prisma-tenant-guard check

bash

npm exec prisma-tenant-guard check

bash

yarn prisma-tenant-guard check

bash

bunx prisma-tenant-guard check

Enforce at runtime

All Prisma access goes through the Tenant Guard extension; unsafe paths throw. Pair with AuthzKit decisions to compile where/select for least‑privilege data access.

Postgres RLS with Tenant Guard ​

Plan policies ​

Apply and check ​

Enforce at runtime ​

Postgres RLS with Tenant Guard

Plan policies

Apply and check

Enforce at runtime