Quiz Question:

What is a Row-Level Security (RLS) policy in Supabase, and why is it important?

Visitors can only read their own data.

→ ✅ Correct. This is a common example of an RLS policy. It explicitly defines that users should only see rows in the database that belong to them.

It automatically encrypts sensitive data.

→ ❌ Incorrect. RLS does not handle encryption. It controls who can access which rows, but encryption is a separate concern.

It blocks all access to the database.

→ ❌ Incorrect. RLS doesn’t block all access by default. It lets you define specific access rules. Without any rules, Supabase actually blocks all access when RLS is enabled until you explicitly allow it.

It lets the ANON key access all rows in the table.

→ ❌ Incorrect. RLS is used to restrict access, not to grant full access. If you want to allow everything, you would explicitly write an RLS policy to do that.