Row-level security

For customer-facing analytics, each end-user should only see the data they're allowed to see and nothing more. That's why row-level security (RLS) is a first-class citizen in Embeddable.

There are three ways to do RLS in Embeddable:

1. Security filters – the simplest way to get started to ensure row-level security is applied globally across all your data models. Pass filters in the Tokens API and Embeddable enforces them on every query automatically. If a filter can't be applied, the query fails — so data can never accidentally leak.
2. SQL-based security – the recommended approach if you want control of (row, schema or table-level) security at the model level (rather than just globally).
3. Access Policies – a more scalable approach to row-level security if you have a lot of models and you are using Views, or you want role-based security.