Added snippet and updated examples

Author: D-K-P

docs/guides/examples/supabase-database-operations.mdx

@@ -5,6 +5,7 @@ description: "These examples demonstrate how to run basic CRUD operations on a t
 ---
 
 import SupabaseDocsCards from "/snippets/supabase-docs-cards.mdx";
+import SupabaseAuthInfo from "/snippets/supabase-auth-info.mdx";
 
 ## Add a new user to a table in a Supabase database
 
@@ -27,22 +28,37 @@ This is a basic task which inserts a new row into a table from a Trigger.dev tas
 ```ts trigger/supabase-database-insert.ts
 import { createClient } from "@supabase/supabase-js";
 import { task } from "@trigger.dev/sdk/v3";
+import jwt from "jsonwebtoken";
 // Generate the Typescript types using the Supabase CLI: https://supabase.com/docs/guides/api/rest/generating-types
 import { Database } from "database.types";
 
-// Create a single Supabase client for interacting with your database
-// 'Database' supplies the type definitions to supabase-js
-const supabase = createClient<Database>(
-  // These details can be found in your Supabase project settings under `API`
-  process.env.SUPABASE_PROJECT_URL as string, // e.g. https://abc123.supabase.co - replace 'abc123' with your project ID
-  process.env.SUPABASE_SERVICE_ROLE_KEY as string // Your service role secret key
-);
-
 export const supabaseDatabaseInsert = task({
   id: "add-new-user",
   run: async (payload: { userId: string }) => {
     const { userId } = payload;
 
+    // Get JWT secret from env vars
+    const jwtSecret = process.env.SUPABASE_JWT_SECRET;
+    if (!jwtSecret) {
+      throw new Error("SUPABASE_JWT_SECRET is not defined in environment variables");
+    }
+
+    // Create JWT token for the user
+    const token = jwt.sign({ sub: userId }, jwtSecret, { expiresIn: "1h" });
+
+    // Initialize Supabase client with JWT
+    const supabase = createClient<Database>(
+      process.env.SUPABASE_URL as string,
+      process.env.SUPABASE_ANON_KEY as string,
+      {
+        global: {
+          headers: {
+            Authorization: `Bearer ${token}`,
+          },
+        },
+      }
+    );
+
     // Insert a new row into the user_subscriptions table with the provided userId
     const { error } = await supabase.from("user_subscriptions").insert({
       user_id: userId,
@@ -60,12 +76,7 @@ export const supabaseDatabaseInsert = task({
 });
 ```
 
-<Note>
-  This task uses your service role secret key to bypass Row Level Security. There are different ways
-  of configuring your [RLS
-  policies](https://supabase.com/docs/guides/database/postgres/row-level-security), so always make
-  sure you have the correct permissions set up for your project.
-</Note>
+<SupabaseAuthInfo />
 
 ### Testing your task
 

docs/guides/examples/supabase-storage-upload.mdx

@@ -5,6 +5,7 @@ description: "This example demonstrates how to upload files to Supabase Storage
 ---
 
 import SupabaseDocsCards from "/snippets/supabase-docs-cards.mdx";
+import SupabaseAuthInfo from "/snippets/supabase-auth-info.mdx";
 
 ## Overview
 
@@ -137,6 +138,8 @@ export const supabaseStorageUploadS3 = task({
 });
 ```
 
+<SupabaseAuthInfo />
+
 ### Testing your task
 
 To test this task in the dashboard, you can use the following payload:

docs/guides/frameworks/supabase-edge-functions-basic.mdx

@@ -17,6 +17,8 @@ import NextjsTroubleshootingButtonSyntax from "/snippets/nextjs-button-syntax.md
 import WorkerFailedToStartWhenRunningDevCommand from "/snippets/worker-failed-to-start.mdx";
 import SupabaseDocsCards from "/snippets/supabase-docs-cards.mdx";
 
+import SupabaseAuthInfo from "/snippets/supabase-auth-info.mdx";
+
 ## Overview
 
 Supabase edge functions allow you to trigger tasks either when an event is sent from a third party (e.g. when a new Stripe payment is processed, when a new user signs up to a service, etc), or when there are any changes or updates to your Supabase database.
@@ -109,11 +111,12 @@ You can now deploy your edge function with the following command in your termina
 supabase functions deploy edge-function-trigger --no-verify-jwt
 ```
 
-<Note>
+<Warning>
   `--no-verify-jwt` removes the JSON Web Tokens requirement from the authorization header. By
-  default this should be on, but it is not required for this example. Learn more about JWTs
-  [here](https://supabase.com/docs/guides/auth/jwts).
-</Note>
+  default this should be on, but it is not strictly required for this hello world example.
+</Warning>
+
+<SupabaseAuthInfo />
 
 Follow the CLI instructions and once complete you should now see your new edge function deployment in your Supabase edge functions dashboard.
 

docs/guides/frameworks/supabase-edge-functions-database-webhooks.mdx

@@ -12,6 +12,7 @@ import NextjsTroubleshootingMissingApiKey from "/snippets/nextjs-missing-api-key
 import NextjsTroubleshootingButtonSyntax from "/snippets/nextjs-button-syntax.mdx";
 import WorkerFailedToStartWhenRunningDevCommand from "/snippets/worker-failed-to-start.mdx";
 import SupabaseDocsCards from "/snippets/supabase-docs-cards.mdx";
+import SupabaseAuthInfo from "/snippets/supabase-auth-info.mdx";
 
 ## Overview
 
@@ -136,6 +137,12 @@ yarn install @deepgram/sdk @supabase/supabase-js fluent-ffmpeg
 
 These dependencies will allow you to interact with the Deepgram and Supabase APIs and extract audio from a video using FFmpeg.
 
+<Warning>
+  When updating your tables from a Trigger.dev task which has been triggered by a database change,
+  be extremely careful to not cause an infinite loop. Ensure you have the correct conditions in
+  place to prevent this.
+</Warning>
+
 ```ts /trigger/videoProcessAndUpdate.ts
 // Install any missing dependencies below
 import { createClient as createDeepgramClient } from "@deepgram/sdk";
@@ -235,11 +242,12 @@ export const videoProcessAndUpdate = task({
 ```
 
 <Warning>
-  When updating your tables from a Trigger.dev task which has been triggered by a database change,
-  be extremely careful to not cause an infinite loop. Ensure you have the correct conditions in
-  place to prevent this.
+  This task uses your service role secret key to bypass Row Level Security. This is not recommended
+  for production use as it has unlimited access and bypasses all security checks.
 </Warning>
 
+<SupabaseAuthInfo />
+
 ### Adding the FFmpeg build extension
 
 Before you can deploy the task, you'll need to add the FFmpeg build extension to your `trigger.config.ts` file.

docs/snippets/supabase-docs-cards.mdx

@@ -2,7 +2,7 @@
 
 ### Full walkthrough guides from development to deployment
 
-<CardGroup cols={2}>
+<CardGroup cols={1}>
   <Card
     title="Edge function hello world guide"
     icon="book"
@@ -17,6 +17,14 @@
   >
     Learn how to trigger a task from a Supabase edge function when an event occurs in your database.
   </Card>
+  <Card
+    title="Supabase authentication guide"
+    icon="book"
+    href="/guides/frameworks/supabase-authentication"
+  >
+    Learn how to authenticate Supabase tasks using JWTs for Row Level Security (RLS) or service role
+    keys for admin access.
+  </Card>
 </CardGroup>
 
 ### Task examples with code you can copy and paste