This is an extended version of create-t3-turbo implementing authentication using Supabase Auth on both the web and mobile applications.
iOS: One of the requirements for Apple's review process requires you to implement native Sign in with Apple if you're providing any other third party authentication method. Read more in Section 4.8 - Design: Sign in with Apple.
We have preconfigured this for you which you can find here. All you need to do is to enable the Apple Provider in your Supabase dashboard and fill in your information.
We currently only supports
Sign in with Apple- support for more providers on mobile are being worked on!
To get it running, follow the steps below:
# Install dependencies
pnpm i
# Configure environment variables.
# There is an `.env.example` in the root directory you can use for reference
cp .env.example .env
# Push the Drizzle schema to your database (w/ drizzle-kit push)
pnpm db:push
# Or use migrations (w/ drizzle-kit generate and drizzle-kit migrate)
pnpm db:generate
pnpm db:migrateMigrations seem preferable for Supabase. Still figuring out the best way to do migrations for local development/branching. https://twitter.com/plushdohn/status/1780126181490135371
-
Go to the Supabase dashboard and create a new project.
-
Under project settings, retrieve the environment variables
reference id,project url&anon public keyand paste them into .env and apps/expo/.env in the necessary places. You'll also need the database password you set when creating the project. -
Under
Auth, configure any auth provider(s) of your choice. This repo is using Github for Web and Apple for Mobile. -
If you want to use the
Emailprovider andemail confirmation, go toAuth->Email Templatesand change theConfirm signupfrom{{ .ConfirmationURL }}to{{ .RedirectTo }}&token_hash={{ .TokenHash }}&type=signup, according to https://supabase.com/docs/guides/auth/redirect-urls#email-templates-when-using-redirectto..RedirectTowill need to be added to yourRedirect URLsin the next step. -
Under
Auth->URL Configuration, set theSite URLto your production URL and addhttp://localhost:3000/**andhttps://*-username.vercel.app/**toRedirect URLsas detailed here https://supabase.com/docs/guides/auth/redirect-urls#vercel-preview-urls. -
Setup a trigger when a new user signs up: https://supabase.com/docs/guides/auth/managing-user-data#using-triggers. Can run this in the SQL Editor.
-- inserts a row into public.profile create function public.handle_new_user() returns trigger language plpgsql security definer set search_path = public as $$ begin insert into public.t3turbo_profile (id, email, name, image) values ( new.id, new.email, COALESCE( new.raw_user_meta_data ->> 'name', new.raw_user_meta_data ->> 'full_name', new.raw_user_meta_data ->> 'user_name', '[redacted]' ), new.raw_user_meta_data ->> 'avatar_url' ) on conflict (id) do update set email = excluded.email, name = excluded.name, image = excluded.image; return new; end; $$; -- trigger the function every time a user is created create trigger on_auth_user_created after insert on auth.users for each row execute procedure public.handle_new_user(); -- trigger the function when a user signs in/their email is confirmed to get missing values if any create trigger on_auth_user_verified after update on auth.users for each row when ( old.last_sign_in_at is null and new.last_sign_in_at is not null ) execute procedure public.handle_new_user();
-- drop a trigger if needed drop trigger "on_auth_user_verified" on auth.users;
-
Remove access to the
publicschema as we are only using the server
By default, Supabase exposes the public schema to the PostgREST API to allow the supabase-js client query the database directly from the client. However, since we route all our requests through the Next.js application (through tRPC), we don't want our client to have this access. To disable this, execute the following SQL query in the SQL Editor on your Supabase dashboard:
REVOKE USAGE ON SCHEMA public FROM anon, authenticated;
Note: This means you also don't need to enable row-level security (RLS) on your database if you don't want to.
-
Make sure you have XCode and XCommand Line Tools installed as shown on expo docs.
NOTE: If you just installed XCode, or if you have updated it, you need to open the simulator manually once. Run
npx expo startin the root dir, and then enterIto launch Expo Go. After the manual launch, you can runpnpm devin the root directory.+ "dev": "expo start --ios", -
Run
pnpm devat the project root folder.
TIP: It might be easier to run each app in separate terminal windows so you get the logs from each app separately. This is also required if you want your terminals to be interactive, e.g. to access the Expo QR code. You can run
pnpm --filter expo devandpnpm --filter nextjs devto run each app in a separate terminal window.
-
Install Android Studio tools as shown on expo docs.
-
Change the
devscript atapps/expo/package.jsonto open the Android emulator.+ "dev": "expo start --android", -
Run
pnpm devat the project root folder.
Choose one of these (Requires Development Builds):
If you need an Expo Go option:
NOTE: I would not be worried about using development builds. It is the standard way to develop Expo apps. You create a development build once with the native packages installed, and then you get all the benefits of hot reloading etc.
- For more useful information on how to deploy this stack, refer to t3-oss/create-t3-turbo.
- Supabase Documentation
- This stack originates from create-t3-app.
- A blog post where I wrote how to migrate a T3 app into this.