Skip to main content

Supabase Auth


Supabase Auth is designed to work with Postgres. There are two parts to every Auth system:

  • Authentication: should this person be allowed in? If yes, who are they?
  • Authorization: once they are in, what are they allowed to do?


You can authenticate your users in several ways:

  • Email & password.
  • Magic links (one-click logins).
  • Social providers.
  • Phone logins.


When you need granular authorization rules, nothing beats PostgreSQL's Row Level Security (RLS).

Policies are PostgreSQL's rule engine. They are incredibly powerful and flexible, allowing you to write complex SQL rules which fit your unique business needs.

Get started with our Row Level Security Guides.