What services does Saints Digital Lab offer?

AI systems & automations, custom SaaS, iOS & web apps, integrations, and enterprise-grade builds. From MVP to scale.

How long does a typical project take?

Depending on scope: 4–12 weeks for MVPs, 3–6 months for full platforms. We provide clear timelines in discovery.

What makes Saints Digital Lab different?

Full-stack + AI focus, transparent process, weekly updates, and 100% code ownership for you.

Do you provide ongoing support after launch?

Yes. 30-day warranty on all projects plus flexible maintenance and support packages.

How do you handle project communication?

Weekly progress updates, live staging access, and direct contact with your dev team. We use your preferred tools (Slack, email, etc.).

← Blog

Tech

Supabase Auth in Production: JWT, RLS, and Session Refresh

February 28, 2025

Best practices for secure auth with Supabase: JWT handling, RLS policies, and session refresh.

We use Supabase Auth for many client projects. In production, a few patterns keep things secure and smooth.

**JWT and RLS.** Row Level Security policies run with the user's JWT. Design policies per table and test with different roles. Never trust client-side checks alone.

**Session refresh.** Use short-lived access tokens and refresh tokens. Supabase clients handle refresh; for server-side or API routes, validate the JWT and refresh when needed so sessions don't die mid-flow.

**Handoff.** Document your auth flow and token lifecycle so your team (or future maintainers) can debug and extend without guessing.