@knowcode/doc-builder 1.7.6 → 1.8.0

package/html/private/supabase-auth-integration-plan.html

@@ -0,0 +1,657 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <meta name="description" content="Transform @knowcode/doc-builder from basic client-side authentication to a sophisticated, centralized authentication system powered by Supabase that enables:">
+    <title>Supabase Authentication Integration Plan for @k...</title>
+    
+    <meta name="author" content="Lindsay Smith">
+    <meta name="keywords" content="documentation, markdown, static site generator, vercel, notion-style, authentication, security">
+    <meta name="robots" content="index, follow">
+    <link rel="canonical" href="https://doc-builder-delta.vercel.app/private/supabase-auth-integration-plan.html">
+    
+    <!-- Open Graph / Facebook -->
+    <meta property="og:type" content="article">
+    <meta property="og:url" content="https://doc-builder-delta.vercel.app/private/supabase-auth-integration-plan.html">
+    <meta property="og:title" content="Supabase Authentication Integration Plan for @k...">
+    <meta property="og:description" content="Transform @knowcode/doc-builder from basic client-side authentication to a sophisticated, centralized authentication system powered by Supabase that enables:">
+    <meta property="og:image" content="https://doc-builder-delta.vercel.app/og-default.png">
+    <meta property="og:site_name" content="@knowcode/doc-builder">
+    <meta property="og:locale" content="en_US">
+    
+    <!-- Twitter Card -->
+    <meta name="twitter:card" content="summary_large_image">
+    <meta name="twitter:site" content="@planbbackups">
+    <meta name="twitter:creator" content="@planbbackups">
+    <meta name="twitter:title" content="Supabase Authentication Integration Plan for @k...">
+    <meta name="twitter:description" content="Transform @knowcode/doc-builder from basic client-side authentication to a sophisticated, centralized authentication system powered by Supabase that enables:">
+    <meta name="twitter:image" content="https://doc-builder-delta.vercel.app/og-default.png">
+    
+    <!-- Custom Meta Tags -->
+    <meta name="google-site-verification" content="FtzcDTf5BQ9K5EfnGazQkgU2U4FiN3ITzM7gHwqUAqQ">
+    <meta name="msvalidate.01" content="B2D8C4C12C530D47AA962B24CAA09630">
+    
+    <!-- Fonts -->
+    <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&family=JetBrains+Mono:wght@400;500&display=swap" rel="stylesheet">
+    
+    <!-- Icons -->
+    <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.css">
+    <link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/@phosphor-icons/web@2.1.1/src/regular/style.css">
+    
+    <!-- Mermaid -->
+    <script src="https://cdn.jsdelivr.net/npm/mermaid@10.6.1/dist/mermaid.min.js"></script>
+    
+    <!-- Styles -->
+    <link rel="stylesheet" href="/css/notion-style.css">
+    
+    
+    
+    <!-- Favicon -->
+    <link rel="icon" href="data:image/svg+xml,<svg xmlns=%22http://www.w3.org/2000/svg%22 viewBox=%220 0 100 100%22><text y=%22.9em%22 font-size=%2290%22>✨</text></svg>">
+    
+    <script type="application/ld+json">
+{
+  "@context": "https://schema.org",
+  "@type": "TechArticle",
+  "headline": "Supabase Authentication Integration Plan for @knowcode/doc-builder",
+  "description": "Transform @knowcode/doc-builder from basic client-side authentication to a sophisticated, centralized authentication system powered by Supabase that enables:",
+  "author": {
+    "@type": "Person",
+    "name": "Lindsay Smith"
+  },
+  "publisher": {
+    "@type": "Organization",
+    "name": "Knowcode Ltd",
+    "url": "https://knowcode.tech"
+  },
+  "datePublished": "2025-07-26T09:59:23.010Z",
+  "dateModified": "2025-07-26T09:59:23.010Z",
+  "mainEntityOfPage": {
+    "@type": "WebPage",
+    "@id": "https://doc-builder-delta.vercel.app/private/supabase-auth-integration-plan.html"
+  },
+  "breadcrumb": {
+    "@type": "BreadcrumbList",
+    "itemListElement": [
+      {
+        "@type": "ListItem",
+        "position": 1,
+        "name": "@knowcode/doc-builder",
+        "item": "https://doc-builder-delta.vercel.app"
+      },
+      {
+        "@type": "ListItem",
+        "position": 2,
+        "name": "Private",
+        "item": "https://doc-builder-delta.vercel.app/private/"
+      },
+      {
+        "@type": "ListItem",
+        "position": 3,
+        "name": "Supabase Auth Integration Plan",
+        "item": "https://doc-builder-delta.vercel.app/private/supabase-auth-integration-plan.html"
+      }
+    ]
+  }
+}
+</script>
+</head>
+<body>
+    <!-- Header -->
+    <header class="header">
+        <div class="header-content">
+            <a href="/index.html" class="logo">@knowcode/doc-builder</a>
+            
+            <div class="header-actions">
+                <div class="deployment-info">
+                    <span class="deployment-date" title="Built with doc-builder v1.8.0">Last updated: Jul 26, 2025, 09:59 AM UTC</span>
+                </div>
+                
+                
+                
+                <button id="theme-toggle" class="theme-toggle" aria-label="Toggle theme">
+                    <i class="fas fa-moon"></i>
+                </button>
+                
+                <button id="menu-toggle" class="menu-toggle" aria-label="Toggle menu">
+                    <i class="fas fa-bars"></i>
+                </button>
+            </div>
+        </div>
+    </header>
+    
+    <!-- Preview Banner -->
+    <div id="preview-banner" class="preview-banner">
+        <div class="banner-content">
+            <i class="fas fa-exclamation-triangle banner-icon"></i>
+            <span class="banner-text">This documentation is a preview version - some content may be incomplete</span>
+            <button id="dismiss-banner" class="banner-dismiss" aria-label="Dismiss banner">
+                <i class="fas fa-times"></i>
+            </button>
+        </div>
+    </div>
+    
+    <!-- Breadcrumbs -->
+    <nav class="breadcrumbs" id="breadcrumbs">
+        <!-- Breadcrumbs will be generated by JavaScript -->
+    </nav>
+    
+    <!-- Main Content -->
+    <div class="main-wrapper">
+        <!-- Sidebar -->
+        <aside class="sidebar">
+            <div class="sidebar-header">
+                <div class="filter-box">
+                    <input type="text" placeholder="Filter items..." class="filter-input" id="nav-filter">
+                    <i class="fas fa-search filter-icon"></i>
+                </div>
+            </div>
+            <nav class="navigation">
+                
+      <div class="nav-section" data-level="0">
+        <a class="nav-title" href="/README.html"  >
+          <i class="fas fa-home"></i> Documentation
+        </a>
+        <div class="nav-content" >
+        <a href="/README.html" class="nav-item" data-tooltip="@knowcode/doc-builder."><i class="fas fa-file-alt"></i> Overview</a>
+        <a href="/documentation-index.html" class="nav-item" data-tooltip="This directory contains additional documentation for the @knowcode/doc-builder project, organized by topic and purpose."><i class="fas fa-file-alt"></i> Documentation Index</a>
+        <a href="/vercel-cli-setup-guide.html" class="nav-item" data-tooltip="This guide provides comprehensive instructions for installing the Vercel CLI across different operating systems."><i class="fas fa-file-alt"></i> Vercel Cli Setup Guide</a>
+        <a href="/vercel-first-time-setup-guide.html" class="nav-item" data-tooltip="This guide walks you through the Vercel deployment process when using ."><i class="fas fa-file-alt"></i> Vercel First Time Setup Guide</a></div></div>
+      <div class="nav-section" data-level="1">
+        <a class="nav-title collapsible" href="#" data-target="nav-guides-1" >
+          <i class="fas fa-chevron-right collapse-icon"></i><i class="fas fa-folder"></i> Guides
+        </a>
+        <div class="nav-content collapsed" id="nav-guides-1">
+        <a href="/guides/authentication-default-change.html" class="nav-item" data-tooltip="Starting from version 1.7.4, @knowcode/doc-builder now defaults to no authentication for all documentation sites."><i class="fas fa-file-alt"></i> Authentication Default Change</a>
+        <a href="/guides/authentication-guide.html" class="nav-item" data-tooltip="@knowcode/doc-builder supports enterprise-grade authentication through Supabase - a secure, scalable authentication platform."><i class="fas fa-file-alt"></i> Authentication Guide</a>
+        <a href="/guides/claude-workflow-guide.html" class="nav-item" data-tooltip="This guide demonstrates an efficient workflow for using Claude Code with a refined CLAUDE.md file to create high-quality documentation and deploy it..."><i class="fas fa-file-alt"></i> Claude Workflow Guide</a>
+        <a href="/guides/documentation-standards.html" class="nav-item" data-tooltip="This document defines the documentation standards and conventions for the @knowcode/doc-builder project."><i class="fas fa-file-alt"></i> Documentation Standards</a>
+        <a href="/guides/phosphor-icons-guide.html" class="nav-item" data-tooltip="@knowcode/doc-builder automatically converts Unicode emojis in your markdown files to beautiful Phosphor icons in the generated HTML."><i class="fas fa-file-alt"></i> Phosphor Icons Guide</a>
+        <a href="/guides/private-directory-authentication.html" class="nav-item" data-tooltip="The @knowcode/doc-builder now includes automatic authentication for documents placed in a directory."><i class="fas fa-file-alt"></i> Private Directory Authentication</a>
+        <a href="/guides/public-site-deployment.html" class="nav-item" data-tooltip="The @knowcode/doc-builder now supports deploying public documentation sites without authentication."><i class="fas fa-file-alt"></i> Public Site Deployment</a>
+        <a href="/guides/search-engine-verification-guide.html" class="nav-item" data-tooltip="Search engine verification provides access to powerful webmaster tools:."><i class="fas fa-file-alt"></i> Search Engine Verification Guide</a>
+        <a href="/guides/seo-guide.html" class="nav-item" data-tooltip="@knowcode/doc-builder includes comprehensive SEO (Search Engine Optimization) features to help your documentation rank better in search results and..."><i class="fas fa-file-alt"></i> Seo Guide</a>
+        <a href="/guides/seo-optimization-guide.html" class="nav-item" data-tooltip="@knowcode/doc-builder includes comprehensive SEO (Search Engine Optimization) features that automatically optimize your documentation for search..."><i class="fas fa-file-alt"></i> Seo Optimization Guide</a>
+        <a href="/guides/troubleshooting-guide.html" class="nav-item" data-tooltip="This guide helps you resolve common issues when using @knowcode/doc-builder."><i class="fas fa-file-alt"></i> Troubleshooting Guide</a>
+        <a href="/guides/windows-setup-guide.html" class="nav-item" data-tooltip="This guide helps Windows users set up the complete AI-powered documentation workflow using Claude Code, @knowcode/doc-builder, and Vercel."><i class="fas fa-file-alt"></i> Windows Setup Guide</a></div></div>
+            </nav>
+            <div class="resize-handle"></div>
+        </aside>
+        
+        <!-- Content Area -->
+        <main class="content">
+            <div class="content-inner">
+                <h1>Supabase Authentication Integration Plan for @knowcode/doc-builder</h1>
+<h2>Vision</h2>
+<p>Transform @knowcode/doc-builder from basic client-side authentication to a sophisticated, centralized authentication system powered by Supabase that enables:</p>
+<ul>
+<li><strong>Single Sign-On (SSO)</strong> across all deployed documentation sites</li>
+<li><strong>Multi-tenant support</strong> with fine-grained access control</li>
+<li><strong>Enterprise-grade security</strong> with JWT tokens and Row Level Security</li>
+<li><strong>Scalable user management</strong> for teams of any size</li>
+<li><strong>Audit logging</strong> for compliance and security</li>
+</ul>
+<h2>Architecture Overview</h2>
+<div class="mermaid-wrapper">
+      <div class="mermaid">graph TB
+    subgraph "Supabase Cloud"
+        DB[(PostgreSQL)]
+        AUTH[Auth Service]
+        RLS[Row Level Security]
+        
+        DB --> |Protected by| RLS
+        AUTH --> |Issues| JWT[JWT Tokens]
+    end
+    
+    subgraph "Documentation Sites"
+        Site1[docs.company1.com]
+        Site2[docs.company2.com]
+        Site3[internal.docs.com]
+    end
+    
+    subgraph "Client Browser"
+        SDK[Supabase JS SDK]
+        Cookie[Secure Cookie]
+    end
+    
+    AUTH --> SDK
+    SDK --> Cookie
+    Cookie --> Site1
+    Cookie --> Site2
+    Cookie --> Site3
+    
+    style AUTH fill:#4ade80
+    style DB fill:#60a5fa
+    style RLS fill:#f87171</div>
+    </div>
+<h2>Database Schema</h2>
+<h3>Core Tables</h3>
+<pre><code class="language-sql">-- Organizations table
+CREATE TABLE organizations (
+    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+    name TEXT NOT NULL,
+    slug TEXT UNIQUE NOT NULL,
+    created_at TIMESTAMPTZ DEFAULT NOW(),
+    settings JSONB DEFAULT &#39;{}&#39;::jsonb
+);
+
+-- Documentation sites table
+CREATE TABLE doc_sites (
+    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+    org_id UUID REFERENCES organizations(id),
+    name TEXT NOT NULL,
+    domain TEXT UNIQUE NOT NULL,
+    config JSONB DEFAULT &#39;{}&#39;::jsonb,
+    created_at TIMESTAMPTZ DEFAULT NOW(),
+    is_active BOOLEAN DEFAULT true
+);
+
+-- User access table (many-to-many)
+CREATE TABLE user_site_access (
+    user_id UUID REFERENCES auth.users(id),
+    site_id UUID REFERENCES doc_sites(id),
+    role TEXT NOT NULL DEFAULT &#39;viewer&#39;,
+    granted_at TIMESTAMPTZ DEFAULT NOW(),
+    granted_by UUID REFERENCES auth.users(id),
+    expires_at TIMESTAMPTZ,
+    PRIMARY KEY (user_id, site_id)
+);
+
+-- Access logs for audit trail
+CREATE TABLE access_logs (
+    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+    user_id UUID REFERENCES auth.users(id),
+    site_id UUID REFERENCES doc_sites(id),
+    action TEXT NOT NULL,
+    metadata JSONB DEFAULT &#39;{}&#39;::jsonb,
+    ip_address INET,
+    user_agent TEXT,
+    created_at TIMESTAMPTZ DEFAULT NOW()
+);
+
+-- Invitation links
+CREATE TABLE invitations (
+    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+    site_id UUID REFERENCES doc_sites(id),
+    email TEXT NOT NULL,
+    role TEXT NOT NULL DEFAULT &#39;viewer&#39;,
+    token TEXT UNIQUE NOT NULL,
+    created_by UUID REFERENCES auth.users(id),
+    created_at TIMESTAMPTZ DEFAULT NOW(),
+    expires_at TIMESTAMPTZ NOT NULL,
+    claimed_at TIMESTAMPTZ,
+    claimed_by UUID REFERENCES auth.users(id)
+);
+</code></pre>
+<h3>Row Level Security Policies</h3>
+<pre><code class="language-sql">-- Users can only see sites they have access to
+CREATE POLICY &quot;Users can view accessible sites&quot; ON doc_sites
+    FOR SELECT USING (
+        EXISTS (
+            SELECT 1 FROM user_site_access
+            WHERE site_id = doc_sites.id
+            AND user_id = auth.uid()
+            AND (expires_at IS NULL OR expires_at &gt; NOW())
+        )
+    );
+
+-- Access logs are append-only
+CREATE POLICY &quot;Insert access logs&quot; ON access_logs
+    FOR INSERT WITH CHECK (user_id = auth.uid());
+
+-- Users can view their own access logs
+CREATE POLICY &quot;View own access logs&quot; ON access_logs
+    FOR SELECT USING (user_id = auth.uid());
+</code></pre>
+<h2>Implementation Architecture</h2>
+<h3>1. Authentication Flow</h3>
+<div class="mermaid-wrapper">
+      <div class="mermaid">sequenceDiagram
+    participant User
+    participant DocSite
+    participant SupabaseSDK
+    participant SupabaseAuth
+    participant Database
+    
+    User->>DocSite: Visit protected page
+    DocSite->>SupabaseSDK: Check session
+    
+    alt No valid session
+        SupabaseSDK-->>DocSite: No session
+        DocSite->>User: Redirect to login
+        User->>DocSite: Enter credentials
+        DocSite->>SupabaseAuth: signInWithPassword()
+        SupabaseAuth->>Database: Verify credentials
+        Database-->>SupabaseAuth: User data + access
+        SupabaseAuth-->>DocSite: JWT token
+        DocSite->>DocSite: Store in secure cookie
+    end
+    
+    DocSite->>Database: Check site access
+    Database-->>DocSite: Access granted/denied
+    
+    alt Access granted
+        DocSite->>User: Show documentation
+        DocSite->>Database: Log access
+    else Access denied
+        DocSite->>User: Show 403 error
+    end</div>
+    </div>
+<h3>2. Client-Side Implementation</h3>
+<pre><code class="language-javascript">// lib/supabase-auth.js
+import { createClient } from &#39;@supabase/supabase-js&#39;;
+
+class SupabaseAuthManager {
+  constructor(config) {
+    this.supabase = createClient(
+      config.supabaseUrl,
+      config.supabaseAnonKey,
+      {
+        auth: {
+          persistSession: true,
+          autoRefreshToken: true,
+          detectSessionInUrl: true
+        }
+      }
+    );
+    this.siteId = config.siteId;
+  }
+
+  async checkAccess() {
+    const { data: { user } } = await this.supabase.auth.getUser();
+    if (!user) return false;
+
+    const { data, error } = await this.supabase
+      .from(&#39;user_site_access&#39;)
+      .select(&#39;role, expires_at&#39;)
+      .eq(&#39;user_id&#39;, user.id)
+      .eq(&#39;site_id&#39;, this.siteId)
+      .single();
+
+    if (error || !data) return false;
+    if (data.expires_at &amp;&amp; new Date(data.expires_at) &lt; new Date()) return false;
+    
+    // Log access
+    await this.logAccess(&#39;page_view&#39;);
+    
+    return data;
+  }
+
+  async signIn(email, password) {
+    const { data, error } = await this.supabase.auth.signInWithPassword({
+      email,
+      password
+    });
+
+    if (error) throw error;
+
+    // Check if user has access to this site
+    const access = await this.checkAccess();
+    if (!access) {
+      await this.supabase.auth.signOut();
+      throw new Error(&#39;You do not have access to this documentation site&#39;);
+    }
+
+    return data;
+  }
+
+  async signInWithMagicLink(email) {
+    const { error } = await this.supabase.auth.signInWithOtp({
+      email,
+      options: {
+        emailRedirectTo: window.location.origin
+      }
+    });
+
+    if (error) throw error;
+  }
+
+  async logAccess(action, metadata = {}) {
+    await this.supabase.from(&#39;access_logs&#39;).insert({
+      site_id: this.siteId,
+      action,
+      metadata,
+      ip_address: await this.getClientIP(),
+      user_agent: navigator.userAgent
+    });
+  }
+}
+</code></pre>
+<h3>3. Build-Time Integration</h3>
+<pre><code class="language-javascript">// lib/core-builder.js modifications
+async function buildWithSupabaseAuth(config) {
+  if (config.features.authentication === &#39;supabase&#39;) {
+    // Inject Supabase configuration
+    const supabaseConfig = {
+      supabaseUrl: config.auth.supabaseUrl,
+      supabaseAnonKey: config.auth.supabaseAnonKey,
+      siteId: config.auth.siteId
+    };
+
+    // Create enhanced auth.js with Supabase integration
+    const authScript = generateSupabaseAuthScript(supabaseConfig);
+    await fs.writeFile(
+      path.join(outputDir, &#39;js&#39;, &#39;auth.js&#39;),
+      authScript
+    );
+
+    // Create login page with Supabase UI
+    const loginPage = generateSupabaseLoginPage(config);
+    await fs.writeFile(
+      path.join(outputDir, &#39;login.html&#39;),
+      loginPage
+    );
+
+    // Add Supabase SDK to dependencies
+    await injectSupabaseSDK(outputDir);
+  }
+}
+</code></pre>
+<h2>Configuration Options</h2>
+<h3>Enhanced doc-builder.config.js</h3>
+<pre><code class="language-javascript">module.exports = {
+  siteName: &#39;Internal Documentation&#39;,
+  
+  features: {
+    authentication: &#39;supabase&#39;, // &#39;basic&#39; | &#39;supabase&#39; | false
+  },
+  
+  auth: {
+    // Supabase configuration
+    supabaseUrl: process.env.SUPABASE_URL,
+    supabaseAnonKey: process.env.SUPABASE_ANON_KEY,
+    siteId: process.env.DOC_SITE_ID,
+    
+    // Optional: Custom login page styling
+    loginTheme: {
+      logo: &#39;/assets/logo.png&#39;,
+      primaryColor: &#39;#4F46E5&#39;,
+      backgroundImage: &#39;/assets/login-bg.jpg&#39;
+    },
+    
+    // Optional: Authentication providers
+    providers: [&#39;email&#39;, &#39;google&#39;, &#39;github&#39;],
+    
+    // Optional: Custom redirect after login
+    redirectUrl: &#39;/&#39;,
+    
+    // Optional: Require email verification
+    requireEmailVerification: false,
+    
+    // Optional: Session timeout (minutes)
+    sessionTimeout: 1440, // 24 hours
+    
+    // Optional: Enable SSO
+    sso: {
+      enabled: true,
+      domain: &#39;company.com&#39;
+    }
+  }
+};
+</code></pre>
+<h2>Migration Strategy</h2>
+<h3>Phase 1: Backward Compatibility (Week 1-2)</h3>
+<ol>
+<li>Add Supabase as optional authentication method</li>
+<li>Keep existing basic auth as default</li>
+<li>Allow configuration to choose auth type</li>
+<li>No breaking changes to existing deployments</li>
+</ol>
+<h3>Phase 2: Feature Parity (Week 3-4)</h3>
+<ol>
+<li>Implement core Supabase authentication</li>
+<li>Add login/logout pages with Supabase UI</li>
+<li>Implement access checking</li>
+<li>Add basic user management CLI commands</li>
+</ol>
+<h3>Phase 3: Advanced Features (Week 5-6)</h3>
+<ol>
+<li>Multi-site SSO support</li>
+<li>Role-based access control</li>
+<li>Invitation system</li>
+<li>Audit logging</li>
+<li>Admin dashboard</li>
+</ol>
+<h3>Phase 4: Migration Tools (Week 7-8)</h3>
+<ol>
+<li>Migration script from basic auth to Supabase</li>
+<li>Bulk user import</li>
+<li>Documentation and guides</li>
+<li>Deprecation notices for basic auth</li>
+</ol>
+<h2>CLI Commands</h2>
+<h3>New Authentication Commands</h3>
+<pre><code class="language-bash"># Initialize Supabase auth for a project
+npx @knowcode/doc-builder auth init
+
+# Add a user to documentation site
+npx @knowcode/doc-builder auth add-user email@example.com --role editor
+
+# Generate invitation link
+npx @knowcode/doc-builder auth invite email@example.com --expires 7d
+
+# List users with access
+npx @knowcode/doc-builder auth list-users
+
+# Revoke access
+npx @knowcode/doc-builder auth revoke email@example.com
+
+# View access logs
+npx @knowcode/doc-builder auth logs --days 30
+</code></pre>
+<h2>Security Benefits</h2>
+<h3>Current Basic Auth Vulnerabilities</h3>
+<ul>
+<li><i class="ph ph-x-circle" aria-label="error"></i> Credentials visible in browser</li>
+<li><i class="ph ph-x-circle" aria-label="error"></i> No password hashing</li>
+<li><i class="ph ph-x-circle" aria-label="error"></i> No session management</li>
+<li><i class="ph ph-x-circle" aria-label="error"></i> No audit trail</li>
+<li><i class="ph ph-x-circle" aria-label="error"></i> Single shared password</li>
+</ul>
+<h3>Supabase Auth Security</h3>
+<ul>
+<li><i class="ph ph-check-circle" aria-label="checked"></i> Server-side authentication</li>
+<li><i class="ph ph-check-circle" aria-label="checked"></i> Bcrypt password hashing</li>
+<li><i class="ph ph-check-circle" aria-label="checked"></i> JWT tokens with expiration</li>
+<li><i class="ph ph-check-circle" aria-label="checked"></i> Row Level Security</li>
+<li><i class="ph ph-check-circle" aria-label="checked"></i> Comprehensive audit logs</li>
+<li><i class="ph ph-check-circle" aria-label="checked"></i> Multi-factor authentication support</li>
+<li><i class="ph ph-check-circle" aria-label="checked"></i> OAuth provider support</li>
+</ul>
+<h2>Cost Analysis</h2>
+<h3>Supabase Free Tier</h3>
+<ul>
+<li>50,000 Monthly Active Users</li>
+<li>Unlimited authentication providers</li>
+<li>Row Level Security</li>
+<li>Real-time subscriptions</li>
+</ul>
+<h3>Estimated Usage</h3>
+<ul>
+<li>Small teams (&lt; 100 users): <strong>Free</strong></li>
+<li>Medium organizations (&lt; 5,000 users): <strong>Free</strong></li>
+<li>Large enterprises (&lt; 50,000 users): <strong>Free</strong></li>
+<li>Very large (&gt; 50,000 users): <strong>$25/month</strong> Pro tier</li>
+</ul>
+<h2>Implementation Timeline</h2>
+<h3>Week 1-2: Foundation</h3>
+<ul>
+<li><input disabled="" type="checkbox"> Add Supabase SDK integration</li>
+<li><input disabled="" type="checkbox"> Create database schema</li>
+<li><input disabled="" type="checkbox"> Implement basic auth flow</li>
+<li><input disabled="" type="checkbox"> Update configuration system</li>
+</ul>
+<h3>Week 3-4: Core Features</h3>
+<ul>
+<li><input disabled="" type="checkbox"> Build login/logout pages</li>
+<li><input disabled="" type="checkbox"> Implement access checking</li>
+<li><input disabled="" type="checkbox"> Add session management</li>
+<li><input disabled="" type="checkbox"> Create CLI commands</li>
+</ul>
+<h3>Week 5-6: Advanced Features</h3>
+<ul>
+<li><input disabled="" type="checkbox"> Multi-site SSO</li>
+<li><input disabled="" type="checkbox"> Role management</li>
+<li><input disabled="" type="checkbox"> Invitation system</li>
+<li><input disabled="" type="checkbox"> Audit logging</li>
+</ul>
+<h3>Week 7-8: Polish &amp; Migration</h3>
+<ul>
+<li><input disabled="" type="checkbox"> Migration tools</li>
+<li><input disabled="" type="checkbox"> Documentation</li>
+<li><input disabled="" type="checkbox"> Testing &amp; QA</li>
+<li><input disabled="" type="checkbox"> Release preparation</li>
+</ul>
+<h2>Benefits Summary</h2>
+<h3>For End Users</h3>
+<ul>
+<li><strong>Single Sign-On</strong>: One account for all documentation</li>
+<li><strong>Better Security</strong>: Enterprise-grade authentication</li>
+<li><strong>Password Recovery</strong>: Self-service password reset</li>
+<li><strong>OAuth Login</strong>: Sign in with Google/GitHub</li>
+</ul>
+<h3>For Administrators</h3>
+<ul>
+<li><strong>User Management</strong>: Add/remove users easily</li>
+<li><strong>Access Control</strong>: Fine-grained permissions</li>
+<li><strong>Audit Trail</strong>: Complete access history</li>
+<li><strong>Compliance</strong>: Meet security requirements</li>
+</ul>
+<h3>For Developers</h3>
+<ul>
+<li><strong>Easy Integration</strong>: Simple configuration</li>
+<li><strong>Extensible</strong>: Add custom auth logic</li>
+<li><strong>Well-Documented</strong>: Comprehensive guides</li>
+<li><strong>Open Source</strong>: Fully transparent</li>
+</ul>
+<h2>Next Steps</h2>
+<ol>
+<li><strong>Validate Architecture</strong>: Review with team</li>
+<li><strong>Create Prototype</strong>: Build proof of concept</li>
+<li><strong>Security Review</strong>: Audit implementation</li>
+<li><strong>Documentation</strong>: Write integration guides</li>
+<li><strong>Beta Testing</strong>: Deploy to test sites</li>
+<li><strong>Release</strong>: Publish new version</li>
+</ol>
+<h2>Conclusion</h2>
+<p>This Supabase integration transforms @knowcode/doc-builder from a basic documentation generator into an enterprise-ready documentation platform with professional authentication and access control. The centralized auth approach enables organizations to manage documentation access across multiple sites while maintaining security and compliance.</p>
+
+            </div>
+        </main>
+    </div>
+    
+    <!-- Scripts -->
+    <script>
+    // Pass configuration to frontend
+    window.docBuilderConfig = {
+      features: {
+        showPdfDownload: true,
+        menuDefaultOpen: false
+      }
+    };
+    </script>
+    <script src="/js/main.js"></script>
+    
+</body>
+</html>