Overview
Learn how to authenticate users in your extension.
TurboStarter uses Supabase Auth to handle authentication. It's built on top of Supabase and provides you with a set of tools to manage your users and their sessions.
Why Supabase Auth?
One of the core principles of TurboStarter is to do things as simple as possible, and to use as few dependencies as possible.
As we're using Supabase for the database, and it provides a robust authentication solution with growing community, we decided to use it for authentication as well.
You can read more about Supabase Auth in the official documentation.
IMPORTANT: Shared session
We're not implementing fully-featured auth flow in the extension. Instead, we're sharing the same auth session with the web app.
It's a common practice in the industry used e.g. by Notion and Google Workspace.
That way, when the user is signed in to the web app, the extension can use the same session to authenticate the user, so user doesn't have to sign in again. Also, signing out from the extension will affect both platforms.
Make sure to configure your web auth flow first, and then head back to the extension with session cookie name.
Read more about managing auth session, OAuth providers, redirects and more in the following sections:
Last updated on