Skip to content

搜索技能.../

Agent Skill Search Engine

搜索

搜索
分类
职业

关于

关于
隐私政策
服务条款

© 2026 Skills Pool. 保留所有权利。

技能档案

Supabase Patterns

Use when working with Supabase auth, pgvector, RLS, settings tables, or JWT verification. Covers Orcanos-specific Supabase patterns including allowlist auth, live settings, and vector search.

zoharp0 星标2026年4月1日

职业

分类

安全

技能内容

Auth (`auth.py`)

Google OAuth with allowlist gate — only pre-registered emails can sign in
JWT verified on every request in auth.py
Dev mode: AUTH_DISABLED=true skips token verification (mock admin user)
First login links auth.users.id → public.users.auth_id

Auth error: "not on access list"

Create the user row in public.users table first — the auth hook blocks any Google login not pre-registered.

Live Settings (`settings.py`)

All tunable parameters live in rag_settings Supabase table
Read live on every request — no restart needed
Configurable via Settings UI (⚙️) or Admin Panel
If changes don't take effect, confirm the DB row was actually updated: GET /settings

Settings keys

相关技能

快速安装

Supabase Patterns

npx skillvault add zoharp/zoharp-claude-skills-skills-supabase-patterns-skill-md

下载 Skill 打开源码仓库

作者: zoharp
星标: 0
更新时间: 2026年4月1日
职业

本页内容

01Auth (auth.py)02

answer_temperature, router_temperature, fuzzy_match_threshold, chat_model, embedding_model, top_k_chunks, similarity_threshold, chunk_size, chunk_overlap, enable_debug_logging

pgvector / Vector Search

Extension: pgvector with cosine similarity
Embedding model: text-embedding-3-small → 1536 dimensions
Hybrid search: vector (cosine) + full-text (tsvector) merged with RRF
All searches scoped to repository_id (multi-tenant isolation)
Key RPC: search_documents_by_name() — used by router Stage 2
Key RPC: search_chunks_hybrid() — used by RAG pipeline

Multi-tenant Isolation

Every query, document, chunk, and conversation is scoped to repository_id
Users can belong to multiple repositories with different permissions (owner/editor/viewer)
Repository members managed via repository_members table

Supabase Client (`supabase_client.py`)

All DB operations centralized here:

insert_document() — upsert into documents
insert_chunks() — bulk insert into doc_chunks
update_doc_name_vector() — update name embedding for router
search_chunks_hybrid() — hybrid vector + FTS search
search_documents_by_name() — router name search RPC

Environment Variables

SUPABASE_URL=https://xxx.supabase.co
SUPABASE_SERVICE_KEY=...
SUPABASE_JWT_SECRET=...   # for local JWT verification

Never commit these. Use substitution variables in Cloud Build trigger for production.

Auth error: "not on access list"

03Live Settings (settings.py)

04Settings keys

05pgvector / Vector Search

06Multi-tenant Isolation

07Supabase Client (supabaseclient.py)

08Environment Variables

软件开发人员

1password

Set up and use 1Password CLI (op). Use when installing the CLI, enabling desktop app integration, signing in (single or multi-account), or reading/injecting/running secrets via op.

Springboot Security

Spring Security best practices for authn/authz, validation, CSRF, secrets, headers, rate limiting, and dependency security in Java Spring Boot services.

Security Review

인증 추가, 사용자 입력 처리, 시크릿 관리, API 엔드포인트 생성, 결제/민감한 기능 구현 시 이 스킬을 사용하세요. 포괄적인 보안 체크리스트와 패턴을 제공합니다.

Laravel Security

Laravel 安全最佳实践，涵盖认证/授权、验证、CSRF、批量赋值、文件上传、密钥管理、速率限制和安全部署。

Security Review

認証の追加、ユーザー入力の処理、シークレットの操作、APIエンドポイントの作成、支払い/機密機能の実装時にこのスキルを使用します。包括的なセキュリティチェックリストとパターンを提供します。

Django Security

Django 安全最佳实践、认证、授权、CSRF 防护、SQL 注入预防、XSS 预防和安全部署配置。

软件开发人员

Supabase Patterns | Skills Pool