https://wiki.postgresql.org/wiki/What's_new_in_PostgreSQL_9.5#Row-Level_Security_Policies
I'm thinking of using this in a new web application, giving every user who signs up a Postgres user account, and using that role for every database query.
Is there any reason why it would not make sense to do so?