|
@@ -63,6 +63,26 @@ npx supabase login
|
|
|
npx supabase link --project-ref <project-ref>
|
|
npx supabase link --project-ref <project-ref>
|
|
|
```
|
|
```
|
|
|
|
|
|
|
|
|
|
+### Edge Functions JWT Verification
|
|
|
|
|
+
|
|
|
|
|
+Some Edge Functions have **built-in JWT/auth verification** and require Supabase's default JWT verification to be **disabled** in `config.toml`. This is configured with `verify_jwt = false`.
|
|
|
|
|
+
|
|
|
|
|
+| Function | Reason for Disabled Supabase JWT |
|
|
|
|
|
+|----------|----------------------------------|
|
|
|
|
|
+| `auth` | Handles login/signup - no token yet |
|
|
|
|
|
+| `shopify-oauth` | OAuth callback from Shopify |
|
|
|
|
|
+| `woocommerce-oauth` | OAuth callback from WooCommerce |
|
|
|
|
|
+| `oauth-shoprenter-init` | OAuth initiation for ShopRenter |
|
|
|
|
|
+| `oauth-shoprenter-callback` | OAuth callback from ShopRenter |
|
|
|
|
|
+| `webhook-shoprenter-uninstall` | Webhook from ShopRenter (HMAC verified) |
|
|
|
|
|
+| `validate-shoprenter-hmac` | HMAC validation endpoint |
|
|
|
|
|
+| `gdpr-webhooks` | GDPR webhooks from platforms |
|
|
|
|
|
+| `shop-data-api` | Public API with custom API key auth |
|
|
|
|
|
+| `woocommerce-scheduled-sync` | Internal scheduled sync (service role) |
|
|
|
|
|
+| `shoprenter-scheduled-sync` | Internal scheduled sync (service role) |
|
|
|
|
|
+
|
|
|
|
|
+**Important**: When adding new Edge Functions that handle OAuth callbacks, webhooks, or have custom authentication, add them to `supabase/config.toml` with `verify_jwt = false`.
|
|
|
|
|
+
|
|
|
## Technology Stack
|
|
## Technology Stack
|
|
|
|
|
|
|
|
### Frontend
|
|
### Frontend
|
Fszontagh