What exactly does Relis extract from my Bubble app?

Relis extracts four major components: Data Structure (Data Types, fields, Privacy Rules, Option Sets), API Connector (authentication, headers, parameters, endpoints), Backend Workflows (triggers, steps, conditions, parameters), and App Settings (privacy, appearance, API keys, SEO, language configurations).

What types of documents are generated?

Relis generates ERD Diagram, DDL Script (PostgreSQL/MySQL compatible), Table Specification, Data Dictionary, API Specification Document, Backend Workflow Documentation, Enum/Constants Definition, and full Markdown exports for each extraction category.

How is my Bubble app security ensured?

We only request Viewer access as a collaborator. We extract only structure and logic, never actual database records or user data. You can remove collaborator access anytime after analysis.

How long does the analysis take?

Analysis time varies: small apps take a few minutes, medium apps several minutes, and large apps with many APIs and workflows may take longer. You can monitor progress in real-time.

Can this help me migrate away from Bubble?

Yes. Relis creates a comprehensive blueprint for migration planning: ERD and DDL scripts for database setup, API documentation for external integrations, Backend Workflow docs for business logic, and App Settings docs for configuration reproduction.

Do I need to give edit access to my Bubble app?

No. Relis only requires Viewer access as a collaborator. We never modify your app, its data, or any settings. You remain in full control and can revoke access at any time.

What Bubble app sizes are supported?

Relis handles apps of all sizes — from simple MVPs to complex enterprise applications with hundreds of data types, dozens of API connections, and extensive backend workflows. Larger apps simply take a bit more time to analyze.

How is Relis different from manually documenting my Bubble app?

Manual documentation is time-consuming, error-prone, and quickly outdated. Relis extracts everything automatically with no missed fields or forgotten workflows, generates standardized formats (ERD, DDL, Markdown) that developers expect, and provides a consistent complete snapshot of your entire architecture.

Glossary

What are Bubble.io Privacy Rules?

Privacy Rules are Bubble.io's row-level security system that controls which users can view, find, modify, or delete specific database records — serving as the primary access control mechanism for data protection in Bubble applications.

How They Work

Per-Data-Type Rules

Each data type gets its own set of privacy rules, independently controlling read, search, modify, and delete permissions.

Condition Evaluation

Rules use Bubble expressions to check the current user, field values, and relationships before granting access.

User Role Checks

Rules can reference user fields, roles, or group memberships to implement role-based access control.

Field-Level Privacy

Individual fields within a data type can be hidden from users who can otherwise see the record.

Performance Impact

Evaluated on Every Query — Privacy rules run on every database read, adding overhead proportional to rule complexity.
Missing Rules Cause Full Scans — Without explicit rules, Bubble may return all records or none — both are dangerous defaults in production.
Complex Conditions Slow Searches — Rules that traverse relationships or call external data sources can significantly slow down list queries.
Rule Order Matters — Bubble evaluates rules top-to-bottom and stops at the first match, so ordering affects both correctness and speed.

Migration Mapping

Middleware Policies — Map to Express/Next.js middleware that checks permissions before route handlers execute.
Pundit (Ruby) — Each Bubble data type becomes a Pundit policy class with methods for each action.
Django Guardian — Object-level permissions in Django mirror Bubble's per-record access control model.
Laravel Gates — Laravel's Gate and Policy system provides equivalent row-level authorization logic.

Why Extraction Matters

Security-Critical Logic — Privacy rules encode your entire authorization model. Losing them during migration means losing your security posture.
Often Undocumented — Most Bubble teams never write down their privacy rules. Extraction is the only way to capture them before migration.
Must Be Preserved Exactly — A single missing or incorrect rule can expose private data or block legitimate users in the migrated system.
Drives Architecture Decisions — Complex privacy rules often determine whether to use row-level security in Postgres, a policy engine, or custom middleware.

Related Terms

Data type extractionBackend workflowsBubble migrationOption sets

How Relis Extracts Privacy Rules

Relis automatically extracts every privacy rule from your Bubble application — including conditions, field restrictions, and role checks — and documents them as structured authorization specs your engineering team can implement directly in the target stack.

See How It Works Try Relis Free