JWT Keys

Control the keys used to sign JSON Web Tokens for your project

Legacy JWT secret

Used to sign and verify JWTs issued by Supabase Auth.

Access token expiry time

seconds

How long access tokens are valid for before a refresh token has to be used. Recommendation: 3600 (1 hour).

Generate a new JWT secret

A random secret will be created, or you can create your own.

You need additional permissions to update JWT settings