Usage of Auth Provider for Endpoint Authentications

cliffchew84 / SG-Lib-Books

This is a side project of a book lover from Singapore, who wants a quick way to view the availability of library books from the Singapore libraries

MIT License

3 stars 1 forks source link

Usage of Auth Provider for Endpoint Authentications #166

Open kiritowu opened 3 days ago

kiritowu commented 3 days ago

Current use of cookie as form of identification is vulnerable to impersonation. There is a need to use OAuth 2.0 process with Bearer JWT for endpoint authentication. Usage of Supabase Auth is required since supabase is already introduced into the stack.

cliffchew84 commented 15 hours ago

I was also looking at https://auth0.com as well, because it seems to have a higher volume for their free tier, but settled with Supabase first because I was already using it for our database. Feel free to explore what is comfortable for you.