Skip to content

Instantly share code, notes, and snippets.

View j4w8n's full-sized avatar

Jason Creviston j4w8n

23 followers · 19 following
  • xinkjs
  • Indiana, US
  • 02:52 (UTC -05:00)
  • X @j4w8n
View GitHub Profile
@j4w8n
j4w8n / pull-request-label-standard.md
Created December 13, 2024 20:14
Pull Request Label Standard

Pull Request Label Standard

In order to form a more perfect PR process, I'm proposing the use of standardized labels to mark a PR's status or statuses. It's main purpose is to benefit the community involved.

Your feedback is needed.

Notes

  • PRs are not required to be labeled at any point in their lifecycle; to remain suitable for appropriate triaging and handling.
  • PRs are not required to go through any or all "positive" steps on their way to being merged.
@j4w8n
j4w8n / implement-user-api-keys-with-supabase.md
Last active January 15, 2025 06:51
Implement user API keys with Supabase

Implement user API keys with Supabase

This is pretty much my first crack at this. I'm sure things could be improved or done differently.

Rationale

JWTs are at the heart of Supabase authorization, but sometimes we wanna build an app that also gives users access via API keys; or perhaps only exclusively via API keys. As you may know, using JWTs as API keys makes them difficult to revoke and therefore a security issue.

We also want to ensure this doesn't significantly add to RLS polices, if at all.

Finally, we'd love to have this handled by Supabase and do as little as possible in our framework. This simplifies our code and reduces third-party libraries.