Self-Hosting

Auth Self-hosting Config


A config.toml file is generated after running supabase init. This file is located in the supabase folder under supabase/config.toml.

General

General settings.

Parameters
    project_id
    REQUIRED
    no type

    A string used to distinguish different Supabase projects on the same host. Defaults to the working directory name when running supabase init.

    auth.external.github
    REQUIRED
    no type

    Describes whether the Github provider is enabled or not.

    auth.site_url
    REQUIRED
    no type

    The base URL of your website. Used as an allow-list for redirects and for constructing URLs used in emails.

    auth.additional_redirect_urls
    REQUIRED
    no type

    A list of exact URLs that auth providers are permitted to redirect to post authentication.

    auth.jwt_expiry
    REQUIRED
    no type

    How long tokens are valid for, in seconds. Defaults to 3600 (1 hour), maximum 604,800 seconds (one week).

    auth.enable_signup
    REQUIRED
    no type

    Allow/disallow new user signups to your project.

    auth.email.enable_signup
    REQUIRED
    no type

    Allow/disallow new user signups via email to your project.

    auth.email.double_confirm_changes
    REQUIRED
    no type

    If enabled, a user will be required to confirm any email change on both the old, and new email addresses. If disabled, only the new email is required to confirm.

    auth.email.enable_confirmations
    REQUIRED
    no type

    If enabled, users need to confirm their email address before signing in.