Does this support the Next.js App Router?

Yes, this skill is specifically designed for the Next.js App Router, providing patterns for Server Components, Client Components, and Server Actions.

Why does this skill recommend getUser() over getSession()?

getSession() retrieves the session data from the cookie without verifying the JWT signature. This skill enforces getUser() to ensure the session is validated against the Supabase API for security-critical checks.

How does it handle stale authentication states?

The skill includes validation checks to ensure revalidatePath() is called within Server Actions, preventing the browser from showing cached auth states after login or logout.

How is OAuth handled in this skill?

It includes a standardized pattern for creating an auth/callback route that exchanges the provider's code for a session and handles secure redirection.

Does it include route protection?

Yes, it provides a middleware template that refreshes sessions and redirects unauthenticated users away from protected paths like /dashboard.

Next.js Supabase Auth

Name: Next.js Supabase Auth
Author: lingxling

bylingxling

•

安全与测试

Integrates Supabase Authentication into Next.js App Router projects using industry-standard patterns and security best practices.

This skill provides a comprehensive toolkit for implementing robust authentication in Next.js applications using Supabase. It automates the setup of server-side and client-side Supabase clients, handles complex OAuth callback flows, and manages session persistence via middleware. By enforcing secure practices like using getUser() over getSession() and ensuring proper cache revalidation in Server Actions, it helps developers build production-ready, secure SaaS platforms and applications with minimal boilerplate and maximum security.

主要功能

01Unified Server and Browser Supabase client configurations

02Secure Server Action patterns for login, logout, and signup

03Built-in validation for JWT security and SSR context checks

0446 GitHub stars

05Middleware-based route protection and automatic session refreshing

06End-to-end OAuth callback route implementation

使用场景

01Building a secure SaaS dashboard with protected server-side routes

02Managing authenticated user states across Server and Client Components

03Implementing social login providers like Google or GitHub in Next.js

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add lingxling/awesome-skills-cn nextjs-supabase-auth

For use in Claude.ai and ChatGPT

主要功能

01Unified Server and Browser Supabase client configurations

02Secure Server Action patterns for login, logout, and signup

03Built-in validation for JWT security and SSR context checks

0446 GitHub stars

05Middleware-based route protection and automatic session refreshing

06End-to-end OAuth callback route implementation

使用场景

01Building a secure SaaS dashboard with protected server-side routes

02Managing authenticated user states across Server and Client Components

03Implementing social login providers like Google or GitHub in Next.js

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add lingxling/awesome-skills-cn nextjs-supabase-auth

For use in Claude.ai and ChatGPT