auth-js icon indicating copy to clipboard operation
auth-js copied to clipboard

Published 20 hours ago verified publisher icon supabase

Create a custom Token for authentification serverside

Open flowhorn opened this issue 3 years ago • 0 comments

Feature request

Is your feature request related to a problem? Please describe.

To support special cases for authentification like signing in by scanning a qr code on the web (e.g. Whatsapp Web) it should be possible to create a custom Token for authentification serverside using the gotrue-js package. This is currently not possible to implement in supabase using the api directly.

Describe the solution you'd like

A function in the gotrueapi like .api.createCustomToken(userId: string, adittionalClaims): Promise<string>. On the client side there would be a function like .auth.signInWithCustomToken(customToken:string): Promise<session>. AdditionalClaims would contain things like an expiration time for the token. This is a feature I really liked in Firebase Auth (see Additional context).

Describe alternatives you've considered

This might be able to do by signing your own refreshToken or accessToken, but I think it would be better to have it directly implemented into the Api.

Additional context

The Firebase Auth Docs: https://firebase.google.com/docs/auth/admin/create-custom-tokens

flowhorn avatar Jan 04 '22 11:01 flowhorn