integration with Supabase and RLS?

Original message was deleted

FFO•8/14/23, 8:11 PM

Hi There

Let me try and answer your questions.

Handle B2B auth (I think this one is clear from the use cases)
Protect API routes (build with Nestjs and Fastify; I suppose yes?)
Can do passkeys auth?

Its a yes for all three in this case we have a great support for B2B, you can define close to everything on an organization (typically a business customer)

Integrate with Supabase as Postgres database and it's RLS (Row Level Security) where I can make sure specific users can only do specific CRUD operations on specific records?

I am not fully aware what the supabase rls all does (besides the postgres rls)
But in Zitadel you can use our already existing multi-tenant capable authoritzaion model and have authorization inside the tokens (or introspect endpoints)
If that is not sufficient you can add custom claims to token in Zitadel with custom code (called actions)

Some sources to read up https://zitadel.com/blog/multi-tenancy-with-organizations https://github.com/zitadel/actions/blob/main/examples/add_claim.js

Let me know

ZITADEL • The best of Auth0 and Keycloak combined. Built for the serverless era.

ZITADEL • The best of Auth0 and Keycloak combined. Built for the se...

This article explains the most important concepts on how you can structure your multi-tenancy identity architecture with organizations.

GitHub

actions/examples/add_claim.js at main · zitadel/actions

ZITADEL Actions - Easy extensibility with custom code. Think GitHub Actions in an Identity System. - zitadel/actions

FFabio @FFO Sorry for my late reply. I was busy architecting everything out and a holi...

FFO•11/25/24, 9:54 AM

Are they in some frontend from Zitadel or still in my own application?

You can create new orgs either by API or UI, both work.

Does Zitadel also support custom roles with RLS via API?

Zitadel can provide you what authorization a user has either by API call or by writting infos to the tokens.