rembrembdocs
supabaseoriginal source ↗

Auth

Use Supabase to authenticate and authorize your users.

Supabase Auth makes it easy to implement authentication and authorization in your app. We provide client SDKs and API endpoints to help you create and manage users.

Your users can use many popular Auth methods, including password, magic link, one-time password (OTP), social login, and single sign-on (SSO).

About authentication and authorization#

Authentication and authorization are the core responsibilities of any Auth system.

Supabase Auth uses JSON Web Tokens (JWTs) for authentication. For a complete reference of all JWT fields, see the JWT Fields Reference. Auth integrates with Supabase's database features, making it easy to use Row Level Security (RLS) for authorization.

The Supabase ecosystem#

You can use Supabase Auth as a standalone product, but it's also built to integrate with the Supabase ecosystem.

Auth uses your project's Postgres database under the hood, storing user data and other Auth information in a special schema. You can connect this data to your own tables using triggers and foreign key references.

Auth also enables access control to your database's automatically generated REST API. When using Supabase SDKs, your data requests are automatically sent with the user's Auth Token. The Auth Token scopes database access on a row-by-row level when used along with RLS policies.

Providers#

Supabase Auth works with many popular Auth methods, including Social and Phone Auth using third-party providers. See the following sections for a list of supported third-party providers.

Social Auth#

[

Apple Icon

Apple

](/docs/guides/auth/social-login/auth-apple)[

Azure (Microsoft) Icon

Azure (Microsoft)

](/docs/guides/auth/social-login/auth-azure)[

Bitbucket Icon

Bitbucket

](/docs/guides/auth/social-login/auth-bitbucket)[

Discord Icon

Discord

](/docs/guides/auth/social-login/auth-discord)[

Facebook Icon

Facebook

](/docs/guides/auth/social-login/auth-facebook)[

Figma Icon

Figma

](/docs/guides/auth/social-login/auth-figma)[

GitHub Icon

GitHub

](/docs/guides/auth/social-login/auth-github)[

GitLab Icon

GitLab

](/docs/guides/auth/social-login/auth-gitlab)[

Google Icon

Google

](/docs/guides/auth/social-login/auth-google)[

Kakao Icon

Kakao

](/docs/guides/auth/social-login/auth-kakao)[

Keycloak Icon

Keycloak

](/docs/guides/auth/social-login/auth-keycloak)[

LinkedIn Icon

LinkedIn

](/docs/guides/auth/social-login/auth-linkedin)[

Notion Icon

Notion

](/docs/guides/auth/social-login/auth-notion)[

Slack Icon

Slack

](/docs/guides/auth/social-login/auth-slack)[

Spotify Icon

Spotify

](/docs/guides/auth/social-login/auth-spotify)[

Twitter Icon

Twitter

](/docs/guides/auth/social-login/auth-twitter)[

Twitch Icon

Twitch

](/docs/guides/auth/social-login/auth-twitch)[

WorkOS Icon

WorkOS

](/docs/guides/auth/social-login/auth-workos)[

Zoom Icon

Zoom

](/docs/guides/auth/social-login/auth-zoom)

You can also add any OAuth2 or OIDC-compatible identity provider using Custom OAuth/OIDC Providers.

Phone Auth#

[

MessageBird Icon

MessageBird

](/docs/guides/auth/phone-login?showSmsProvider=MessageBird)[

Twilio Icon

Twilio

](/docs/guides/auth/phone-login?showSmsProvider=Twilio)[

Vonage Icon

Vonage

](/docs/guides/auth/phone-login?showSmsProvider=Vonage)

Pricing#

Charges apply to Monthly Active Users (MAU), Monthly Active Third-Party Users (Third-Party MAU), and Monthly Active SSO Users (SSO MAU) and Advanced MFA Add-ons. For a detailed breakdown of how these charges are calculated, refer to the following pages: