authentication authorization supabase supabase-database supabase-js

How to add new field to auth context than just the uid() in supabase?

Currently as I have found out that the Supabase only exposes auth.uid() to do query related to the logged in user. So I can create, read, update and delete based on the user who is logged in, what I wanna do is to store new field "organization" with the user(I know how to do this) and then later I want to be able to do crud based on it like auth.organization(), is there any way to achieve query based on something like this auth.organization()?

Solution

You can encode it in the jwt and then access the JWT like so: https://supabase.com/docs/guides/auth/row-level-security#authjwt

create policy "User is in team" 
on my_table
to authenticated
using ( team_id in (select auth.jwt() -> 'app_metadata' -> 'teams'));

Azure "easy auth" OpenID Connect scope
What If Session Expires While User Is Still On The Website
Remix run: Authentication succeeds on validation failures
WMS service basic authentication
How to manage user claims?
How to get the popup menu to select user certificate in Tomcat 10 server?
Enable password and unix_socket authentication for MariaDB root user?
How to consume from an eventsource API requiring auth headers?
How to display an Error message when logging in fails in Reactjs
Notify navbar of authenticated status when logged in (Angular)
Proper way to store a token retrieved client-side in nextjs 13 "App Router" version?
Signout and login not working in auth.js in Next14 with middleware and server actions
Laravel: Auth::user()->id trying to get a property of a non-object
404 page not found when running firebase deploy
.NET 8 Blazor Server - role authorization with Windows Authentication
Error: "OrganizationFromTenantGuidNotFound" (even with Microsoft 365 subscription)
Symfony2: How to change Entity Manager just before doing login_check
JWT signature verification failing
SMAppService register() - How to detect launch at startup/login vs regular launch?
AppwriteException: User (role: guest) missing scope (account), not able to get account after creating a session
authMiddleware doesn't exist after installing clerk
Stop request in CookieAuthenticationEvents.OnValidatePrincipal after response body has been written to
Blazor Hosted WebAssembly with Keycloak and Basic Authentication Issue
How to change the app name for Firebase authentication (what the user sees)
How do I restrict Apache/SVN access to specific users (LDAP/file-based authentication)?
Unexpected authorization behaviour in a Blazor Web App with .NET 8
MongoDB: Understand createUser and db admin
Update react context without refreshing page on state update
What is the standard/modern way to use CAC/PIV card authentication in Java/Tomcat web applications?
Keycloak retrieve custom attributes to KeycloakPrincipal