Hi, I'm a newbie, so maybe this question sound silly. So I followed this tutorial, https://supabase.com/docs/guides/getting-started/tutorials/with-nuxt-3. It's very cool, but it connect to profile table. So how do I connect to different table? Secondly, how do I hash password that stored in the table? I'm still trying to learn postgre, so is there certain function I can use in supabase? Thank you.

Anyone experience a failure after restoration? I cannot unpause my project.

I'm trying to filter based on a varchar[] column but using a string[] gives me a bad request. Any ideas on whats going on here?

Hi, is there a way to get the project ref from the sql level? Is it stored in some internal table or sth?

Hello, It seems that if I try to login using oAuth (Facebook), the login does not work, as there is no user in Supabase users under "auth". If I manually invite the user using his email through supabase admin users, then the specific email can login using facebook social sign in. Seems a bit weird overall to me - I would expect new users who used social login to be created automatically upon their first sign in attempt?

Created a new project in supabase (website) supabase cli is at 1.27.7 ran supabase init then supabase link --project-ref xxxxx I get this error. Any ideas?

Hey guys, I have a decent amount of images stored in a bucket and a friend would like them so he can use it to train his AI model. Is there anyway to export and download the an entire bucket?

I want to host a server side node backend, aside from Supabase, to handle subscriptions. I want to be able to authenticate users in the server side before doing anything. However, the getUserByCookie is deprecated. I am also unable to use getUser() using the 'sb-access-token' inside the cookie, it says token is expired. Nor can I use setSession passing in the sb access and reference token inside the client cookie. How can I authenticate users in a seperate Node backend?

Can I bring my own SMS provider for my phone auth? Twilio has very unfair pricing compared to something like Plivo. Let me know if this is in the pipeline!

Hi, I;m using citext property which is text case insensitive, but database definitions for it are unknown | null, can postgrest & supabase-js interpret is as string?

Hi, let's assume I insert data in plain text into a Supabase database. Is the data stored encrypted on the database or in plain text?

I had one working fine. Then realized I needed to change a header, so had to delete and re-create. New one doesn't seem to be working. I realize this is in alpha; just trying to figure out what might be going on. The webhook sends a request to an edge function. I see no invocation or logs for the edge function, whenever the webhook is supposed to fire (on table insert. and the row does populate). I tried to nose around the pg_net docs, to see if I could somehow find the webhook listed; but I'm not sure if that's how it works.

Hi everyone, I'm using Supabase in conjunction with Solid.js's Solid-Start framework. So far I've been able to utilize the Supabase javascript client to perform authentication tasks. Now I'm trying to use it to interact with the database. But I'm running into trouble with RLS. The problem seems to be that because I'm running all of the supabase client functions server side, it doesn't have the opportunity that it usually does to pull things like the jwt out of local storage for use in the db api calls. And because the db api calls are going without a jwt, it assumes they're anon calls. I also cannot see a way to supply the functions with my jwt. Has anyone else run across an issue like this? Is there any good way of running the supabase client server side?

Hello! Do you plan to create a Swift SDK, with examples for how to authenticate to Superbase from a native iOS app? I would be happy to use Superbase as my backend, but currently, I'm unable to get the auth part working from an iOS app. The existing descriptions/examples are all out of date.. So currently, I will be ditching Superbase and use AWS Amplify instead because of the lack of documentation and examples around how to get the auth working on iOS with Swift. My use case would be signing in with Google and Apple from an iOS app. Any help/guidance would be appreciated. Thank you!

My team is preparing our production environment, and we are trying to understand how to keep our Supabase key secure. According to the API settings, the anon public key "is safe to use in a browser if you have enabled Row Level Security for your tables and configured policies." We have this set in a Nextjs / Vercel public environment variable

NEXT_PUBLIC_SUPABASE_ANON_KEY

and we're concerned that it is exposed to the browser. How do we make sure that this does not enable access to our system? What does Row Level Security actually do and how can I make sure that it is enabled?

Can you deploy a nextjs app to the supabase platform? I noticed that some of the guidelines suggest deploying the NextJS app to the Vercel platform. Just trying to confirm that’s the proper way - NextJS on Vercel, data stored on Supabase. if so, it recommended to proxy data calls through nextjs or directly to supabase?

I've tried with supabase python and I don't think there's a way to query auth schema or access to auth.admin API Is there another way to access this? I have the user ID from profiles but I need access to the users metadata to extract their twitter username and not suew how to do this

How do we access logs on a self-host, any particular directory where the logs are stored?

Anyone have experience with using env variables in .toml files? I am trying get the single sign in providers working and I need to pass in a few secrets from my .env file.

I have a form using the

anon

key with RLS which lets users subscribe to updates. It checks if their email is already exists in the table using the

SELECT

operation but I only want to allow the user to check if their email exists in the table instead of allowing them to view every email stored. Is that possible to do?

As the titles says. We have an admin app (internal) that we'd like to use Supabase with, but, it has SSR disabled as its an internal tool. Thanks!

Edit: Title should be how to CREATE* I want to set up some type of rate limiting feature on my database where a user with a given ID can only insert X amount of rows per hour (30 min?) let's say. Is there something in postgres I can tap into to achieve this? I want to prevent bad actors from destroying my database in production.

I am trying to access the body of a request inside a serve() function like so

js
serve(async (req) => {
  const body = req.body.get();
  const signature = req.headers.get('X-Samsara-Signature')
  const timestamp = req.headers.get('X-Samsara-Timestamp')
  return new Response(
    { headers: { "Content-Type": "application/json" } },
  )
})

what is standard practice here? I now have a masters in streams, but I still can't get the result I want. which is to say, the request body.

My storage costs shot up unexpectedly this month. Can I configure a cap / max spend? Can't find if/where to do it?

Hello, is there a way to init Supabase flutter client with multiple schemas? I tried and I get the error that the client is already initialized if. It works for the first schema, but for the next one, it throws that error. The code in question:

for (final schema in SupabaseSchemas.values) {
      schemas[schema] = schemas[schema] == null || schemas[schema] is! SupabaseClient
          ? (await Supabase.initialize(url: endpoint, anonKey: anonKey, debug: kDebugMode)).client
          : schemas[schema]!;
    }

I guess it can be done by disposing of and re-init-ing the Supabase client every time a new query from another schema is needed, but this doesn't seem that pretty IMO. Is this the normal way to do this? does this impact the performance or have any side effects? TY.

Say I have a table A that contains info about the user's profile. It also contains their uuid. Table B has a Foreign key to A. I only want B to be readable by the user that created table A that this row is connected to. I use a join to get all of this data. Question is.... is there a way to make a policy that allows this without having to add uuid to table B as well?

Currently in my application, when a user signs up a key value of "onboard: false" is included in their raw_user_meta_data. This is used to properly allow routing to the correct screens. What would be the best way of calling an update function to update this value to true when they were complete?

I already have data in my db, how to update or move data to new db?

is there a documentation for the rest apis and websockets apis?

I'm implementing auth in my app using Supabase and I noticed a user flow path which isn't documented in the JS lib, and I'm not sure what the best way to handle it is. When the user tries to click a password recovery link (in an email) that was already used, Supa redirects my app to the following URL: http://localhost:3000/#error=unauthorized_client&error_code=401&error_description=Email+link+is+invalid+or+has+expired I feel that it's a bit "out of character" when it comes to the Supabase auth lib. When the link is good (happy path), I receive a PASSWORD_RECOVERY event and I can show the proper form to the user. When the link is bad, I feel that there should be a similar event. Taking over the URL is not pretty and I don't like that the syntax is imposed. So now I have to parse for that #error anchor, which potentially could already be in use in my app. Am I missing something and there is a better way to handle this situation? If not, I'm ready to file a bug/request on GitHub to put this on the map. Thank you!