Prerequisites

14px] text-muted-foreground">A [Supabase account

A Supabase project (free tier works)

Step 1: Get your credentials

14px] text-muted-foreground">Open [Supabase Dashboard

Select your project → Settings → API

Copy:

- Project URL (looks like https://xyzabc.supabase.co)

- Anon key (also called "publishable key")

Step 2: Add to DreamOS86

Open Settings → Integrations and paste both values. Or add them directly to your project's environment variables:

NEXT_PUBLIC_SUPABASE_URL=https://your-project.supabase.co
NEXT_PUBLIC_SUPABASE_ANON_KEY=your-anon-key

Step 3: Configure redirect URLs

In Supabase: Auth → URL Configuration

Add your app URL to Redirect URLs:

- http://localhost:3000/auth/callback (development)

- https://yourdomain.com/auth/callback (production)

Row Level Security (RLS)

Supabase uses RLS to secure your tables. Every generated project enables RLS by default. The AI generates appropriate policies, but you should review them:

Auth policies: Users can only read/write their own data

Public tables: Explicitly marked as world-readable

Admin routes: Protected by is_admin flag on the profiles table

Database types

When you modify your schema, regenerate the TypeScript types:

npx supabase gen types typescript --project-id your-project-id > src/lib/supabase/types.ts

Troubleshooting

"Your project's URL and API key are required"

→ Check that NEXT_PUBLIC_SUPABASE_URL and NEXT_PUBLIC_SUPABASE_ANON_KEY are set in your .env.local file.

"User not found" after login

→ Make sure your profiles table has a trigger on auth.users to create profiles on signup.

OAuth not working

→ Enable the provider in Supabase → Auth → Providers, and add the callback URL to the provider's allowed redirect URIs.