Supabase Auth + Google | Notion

Login with Google | Supabase Docs

ChatGPT Image Jul 24, 2025, 11_44_03 AM.png

1. Authentication Protocols

Supabase Auth supports multiple authentication providers:

Email/password (traditional login).
Magic links (passwordless login via email).
3rd-party OAuth (Google, GitHub, Facebook, etc.).
Phone (SMS OTP).
Custom JWTs.

Each method issues JWT (JSON Web Tokens) upon successful login.

2. Session Management

When a user signs in, Supabase Auth generates:
- Access Token (JWT): Short-lived (about 1 hour).
- Refresh Token: Used to get a new access token when it expires.
These tokens are stored in the _supabase_auth.token local storage (or cookies if you choose).

3. Database Integration

Supabase Auth is deeply integrated with your database:

Every user is automatically inserted into the auth.users table in the database.
You can link user IDs (uuid) with your app tables for relationships.