Merge pull request #49 from lucasmblanco/main

[RFC] Now the apiKey is sent independently, regardless of whether a session is active or not.
marmelab · Jan 31, 2024 · 3398447 · 3398447
2 parents 15a32ed + a8ead0f
commit 3398447
Showing 1 changed file with 3 additions and 2 deletions.
diff --git a/packages/ra-supabase-core/src/dataProvider.ts b/packages/ra-supabase-core/src/dataProvider.ts
@@ -68,8 +68,9 @@ export const supabaseHttpClient =
                 // This ensures that users are identified correctly and that RLS can be applied
                 token: `Bearer ${data.session.access_token}`,
             };
-            // This ensures the app is authorized to access the supabase instance
-            options.headers.set('apiKey', apiKey);
         }
+        // Always send the apiKey even if there isn't a session
+        options.headers.set('apiKey', apiKey);
+
         return fetchUtils.fetchJson(url, options);
     };