Supabase Auth

This release introduces new features for OAuth client configuration and custom providers in the auth module, alongside several bug fixes addressing lock recovery and Realtime connection handling.

This canary release primarily addresses a bug fix related to userattributes typing within the authentication module.

This canary release primarily addresses a bug in the Realtime module related to patching channel join payloads with the access token.

This canary release introduces support for custom authentication providers and updates the UserAttributes type with the currentPassword field.

This canary release introduces a new configuration option for OAuth clients within the auth module.

This canary release primarily addresses an authentication fix by lowering the default lockAcquireTimeout and updating associated JSDoc.

This canary release primarily addresses an issue in the authentication module by implementing a steal fallback to recover from orphaned navigator locks.

This release introduces the skipAutoInitialize option for the auth module to control constructor auto-initialization.

This canary release introduces a new option to control automatic initialization within the auth module.

This release introduces a new setHeader method for BaseApiClient in storage and includes several bug fixes across auth, postgrest, and realtime modules.

This canary release primarily addresses a security-related bug fix concerning Firefox content scripts and authentication locks.

This canary release primarily focuses on a bug fix within the Postgrest client to enforce type safety for table and view names in the from() method.

This canary release introduces a new setHeader method for storage operations and fixes an unnecessary check in the realtime channel removal logic.

This release introduces canonical CORS header export for Edge Functions and includes fixes for Realtime channel management and Storage download parameters.

This patch release primarily addresses a documentation issue by adding module information to the tsdoc for the supabase integration.

This canary release (2.95.2-canary.2) primarily addresses minor fixes, including testing compatibility with older ESM versions and a small addition to the core supabase functionality.

This canary release primarily addresses a bug related to repository subpath handling.

This canary release primarily addresses an ESM release issue within the repository.

This was a version bump only, there were no code changes.

This release introduces canonical CORS header export for Supabase edge functions and includes fixes for realtime channel management and storage download parameters.

This canary release introduces canonical CORS header export for Supabase edge functions and includes fixes for realtime channel management and storage download parameters.

This patch release fixes an issue where OAuth authorization types did not correctly match API responses in the auth module.

This canary release primarily addresses an issue in the auth module by correcting OAuth authorization types to match API responses.

Version 2.94.0 introduces URL length validation and timeout protection for postgrest operations and resolves a CI script issue.

This canary release introduces URL length validation and timeout protection for postgrest, alongside a fix for the CI release script.

This canary release primarily focuses on fixing internal CI/CD and authentication verification issues related to the canary build process.

This patch release (2.93.3) focuses on minor fixes, including improvements to authentication fallback naming and handling of empty responses in storage vector operations.

This patch release reverts client platform and runtime detection headers for the supabase integration.

This canary release primarily addresses a bug fix by reverting changes related to Supabase client platform and runtime detection headers.

This patch release reverts an unnecessary validation step in the realtime postgres_changes event dispatch mechanism.

This release introduces an optional jwt parameter for authentication assurance level and improves client platform detection by adding necessary HTTP headers. Several bug fixes address promise rejections, storage handling, and realtime connection errors.

This canary release addresses an issue with environment detection for Supabase when running in Node.js versus browser contexts.

This release includes a minor fix addressing an internal implementation detail within the Supabase integration.

This release addresses a specific environment detection issue within the Supabase integration.

This release was a version bump only, containing no functional code changes.

This release was a version bump only, containing no functional code changes.

This release introduces an optional JWT parameter for assurance level retrieval and improves client platform detection via HTTP headers. Several bug fixes address promise rejections, storage handling, and realtime connection errors.

This patch release primarily focuses on fixing an issue where SSR OAuth functionality was broken in the previous version.

This canary release introduces an optional jwt parameter for the getAuthenticatorAssuranceLevel function in the auth module.

This canary release introduces improved platform detection via HTTP headers and fixes several bugs related to auth, realtime connections, and storage error reporting.

This canary release primarily focuses on fixing an issue where SSR OAuth functionality was broken in the previous version.

This release introduces an update to the default realtime serializer and includes several bug fixes related to auth operations and cross-context promise errors in Firefox.

This canary release primarily addresses a clarification regarding the behavior of updateUserById in the auth module.

This canary release introduces an update to the default serializer for realtime functionality and fixes a cross-context Promise error in the Firefox extension.

This canary release primarily addresses a deadlock issue within the authentication flow by deferring subscriber notification.

This patch release addresses critical bugs in postgrest query building and realtime event dispatch validation.

This canary release primarily addresses a bug in the PostgREST query builder to ensure proper isolation between operations.

This canary release primarily addresses a bug fix related to validating table filters during postgres_changes event dispatch.

This release introduces the exposure of heartbeat latency in realtime callbacks and includes numerous bug fixes across auth, functions, postgrest, and general supabase types to improve stability and compatibility.

This canary release primarily addresses an authentication issue by introducing a configurable lock acquisition timeout to prevent deadlocks.

This canary release addresses two specific bugs related to function content-type handling and RPC head requests with object arguments in Postgrest.

This canary release fixes an issue where the user session was not preserved if a magic link was clicked twice.

This canary release primarily addresses a bug fix in the auth module related to clearing the initial setTimeout during auto-refresh stop.

This canary release primarily addresses an issue in the supabase integration to avoid edge runtime warnings within Next.js environments.

This canary release (2.89.1-canary.3) primarily addresses a type definition issue within the supabase integration.

This canary release primarily focuses on updating the auth types by adding 'banned_until' to user and 'last_challenged_at' to factor.

This canary release primarily addresses a minor issue in the Supabase integration by splitting type-only exports to clean up import warnings.

This canary release introduces the ability to access heartbeat latency within the realtime heartbeat callback.

This release introduces new authentication features, including X (OAuth 2.0) provider support and string array support for AMR claims, alongside exporting a new utility type.

This canary release introduces the export of the DatabaseWithoutInternals utility type within the supabase module.

This canary release introduces string array support for AMR claims within the authentication module.

This canary release introduces support for the X (OAuth 2.0) authentication provider.

This release introduces custom predicates for session detection in auth, adds the 'notin' filter for Postgrest, and resolves a websocket race condition in Realtime for Node.js.

This canary release focuses on internal infrastructure improvements by migrating the build system to tsdown for better ESM/CJS compatibility.

This canary release focuses primarily on internal repository tooling updates, migrating the build process to tsup and ensuring backwards compatibility across recent changes.

This canary release introduces a new feature allowing custom predicates for the detectSessionInUrl authentication option.

This canary release introduces the 'notin' filter capability to postgrest operations.

This canary release fixes an issue where the authorization header was incorrectly included in realtime operations even when no access token was present.

This canary release primarily addresses a websocket race condition within the realtime functionality when operating in a Node.js environment.

This patch release resolves an issue with ESM imports failing in the supabase integration when using .js extensions via jsDelivr CDN.

This canary release primarily addresses a bug related to ESM imports failing on jsDelivr CDN within the supabase integration.

This canary release primarily addresses a bug related to ESM imports failing on jsDelivr CDN when using .js extensions.

This patch release (2.87.2) focuses on stability, fixing a memory leak in realtime connections, resolving a CDN import issue, and improving error handling for PKCE authentication.

This canary release focuses on stability, fixing an auth error related to PKCE, resolving a memory leak in realtime workers, and correcting an ESM import issue via jsDelivr.

This patch release (2.87.1) focuses on bug fixes across authentication and realtime subscriptions, including JWT preservation and improved null handling in filters.

This canary release addresses two specific bugs: one in auth related to session persistence and another in realtime concerning null value handling in postgres change filters.

This canary release primarily fixes an issue where custom JWT tokens were not being preserved during channel resubscription in the realtime module.

This release introduces an alignment of storage analytics with the standard { data, error } pattern and includes a minor fix to update the lock file.

This canary release introduces an alignment of storage analytics to the { data, error } pattern and includes a minor fix to update the lock file.

This patch release fixes an issue in the storage module related to the structure of QueryVectorsResponse.

This canary release primarily addresses a bug fix in the storage module related to QueryVectorsResponse structure.

This patch release focuses on stability, fixing several bugs related to authentication warnings, PostgREST type inference, and resolving lock file issues. It also introduces an ESM wrapper to improve compatibility with Nuxt.

This canary release focuses on bug fixes across auth and postgrest modules, including suppressing warnings and improving type inference, alongside adding an ESM wrapper for Nuxt compatibility.

This release introduces a new 'from' method for storage operations and integrates iceberg-js.

This canary release introduces a new feature for storage operations by integrating iceberg-js and adding a from method.

This release introduces metadata support for realtime user broadcasts and includes minor type fixes in the authentication module.

This canary release introduces metadata capabilities for realtime user broadcast pushes.

This canary release primarily addresses minor type fixes within the authentication module.

Release 2.84.0 introduces new pattern matching operators for Postgrest and includes fixes for relation name validation and Realtime serialization.

This canary release introduces new pattern matching operators for postgrest queries.

This canary release focuses on internal improvements by simplifying the realtime serializer.

This canary release primarily focuses on fixing an issue related to relation name validation within Postgrest operations.

This release primarily renames the StorageAnalyticsApi to StorageAnalyticsClient for improved clarity in the storage module.

This canary release primarily renames the StorageAnalyticsApi to StorageAnalyticsClient for clarity.

This release introduces new OAuth management endpoints in the auth module and includes several bug fixes across PostgREST, Realtime, and Storage components.

This canary release primarily addresses a bug fix related to the analytics bucket property within storage operations.

This canary release introduces new OAuth management endpoints for listing and revoking grants within the auth module.

This canary release primarily addresses a bug in the Realtime module related to null reference handling during message encoding.

This canary release primarily addresses an issue in PostgREST by ensuring fetch error causes and codes are properly propagated.

This patch release addresses compatibility issues with Next.js 16 in the auth module, improves SSO handling, and relaxes the requirement for setAuth in the realtime module when using custom JWTs.