Yes... I am using my encoded api key... but I don't know what is happening, I'll check the link...

Is there a way to rotate a service_role secret API key? I know it should never be exposed, but let's say a "friend" (yes me) exposed their key. Is there a way to get a new one without having to create a new Supabase project?

Hey 👋🏻, is superbase PCI-DSS compliment in terms of the cloud version?

I think for SvelteKit a cookie is what I've seen used https://github.com/supabase/supabase/discussions/1813

CREATE OR REPLACE FUNCTION public.handle_new_user() 
returns trigger as $$
begin
  insert into public.users (id, login, project) values (new.id, new.user_metadata->'user_name', ''); 
  return new;
end;
$$ language plpgsql security definer;

This is erroring - how do I access

new.user_metadata->'user_name'

?

I found this link through yours, thank you. https://github.com/ashleyconnor/sveltekit-supabase-demo

You're welcome

What do you think of these issues? https://github.com/ashleyconnor/sveltekit-supabase-demo#issues

Although they are issues I don't think its something you need to worry about much, this is handles the same way as how Firebase handles their auth on the client too. I think if there are any security implications the Supabase team will/would address them.

Oh, this is nice... https://www.ashleyconnor.co.uk/2021/06/24/authenticated-server-rendered-pages-with-sveltekit-and-supabase

Can I still use supabase storage if I'm not using supabase auth? Right now i'm getting a RLS error when uploading (obviously since I am not using supabase auth), any way to bypass this?

You can either make your supabase storage public, or create an one-for-all dev account that can upload to supabase storage's buckets

That would help

i don't seem to receive any payloads when listening to views in real time, does this have smthing to do with not being able to enable replication for a view?

?

Same as this https://github.com/supabase/supabase/discussions/2419#discussioncomment-1024026

not really. I want to know if a table exists, not if it's empty or not

I'm guessing you would get the same result from

data

if it doesn't exist or

error

would probably have information in it

indeed

thanks 🙂

👋 , does anyone know if magic links work when the Enable Email Signup is turned off? I want to use a magic link for authorization but I don't want users to be able to sign up, since it'll be for internal team members only with a specific email. When I turn Enable Email Signup off, and the user already exists, I get this error Unsupported email provider, any help?

You can just disable signup feature on your app while keeping Email Signup on Supabase turned on. @claud9

Great suggestion @User , I can do that.

No problem, @claud9. Have a good day.

You should open an issue for this anyway, maybe as a feature request as these two things shouldn't be tied together.

I'll open an issue for that tomorrow. Maybe just posting it in #867348150741237790 for now.

Thank you!

Hello guys, does anyone have any example of using Supabase's oAuth with React Router with some implementation of protected routes? I am stuck and unable to find any help :/ Seems like my issue is that redirectTo used in the supabase's sign in method redirects me before the auth session get's updated with authorized status, which results in my app being redirected back to login despite being properly logged in.

all the official examples just switch the rendered components once the supabase session changes, but nothing about routes 😦

Is it possible that the redirect happens before the supabase's onAuthStateChange triggers?