Chart-OutputChart-OutputDashboard
← Back to Self-Hosting

SSO Setup (SAML/OAuth)

Chart-Output uses Supabase for authentication. Enable SSO via Supabase's built-in OAuth and SAML support.

OAuth Providers

Supabase supports: Google, GitHub, Azure, Slack, Discord, Bitbucket, GitLab, Apple, Facebook, and more.

Setup Steps

  1. Go to Supabase Dashboard → Authentication → Providers
  2. Enable the desired provider and add Client ID/Secret
  3. Configure redirect URL in your IdP: https://<project>.supabase.co/auth/v1/callback
  4. Users sign in via "Sign in with Google" (or other) on the login page

SAML 2.0 (Enterprise)

For Okta, Azure AD, OneLogin, or other SAML IdPs:

  1. Supabase Dashboard → Authentication → Providers → SAML 2.0
  2. ACS URL: https://<project>.supabase.co/auth/v1/sso/saml/acs
  3. Create SAML app in your IdP, download metadata, upload to Supabase
  4. Map email and name attributes

Row Level Security

All Chart-Output tables use user_id = auth.uid(). SSO users only see their own API keys, templates, and brand kits.