Signing out
Signing out a user
Signing out a user works the same way no matter what method they used to sign in.
Call the sign out method from the client library. It removes the active session and clears Auth data from the storage medium.
_10async function signOut() {_10 const { error } = await supabase.auth.signOut()_10}
Sign out and scopes
Supabase Auth allows you to specify three different scopes for when a user invokes the sign out API in your application:
global
(default) when all sessions active for the user are terminated.local
which only terminates the current session for the user but keep sessions on other devices or browsers active.others
to terminate all but the current session for the user.
You can invoke these by providing the scope
option:
_10// defaults to the global scope_10await supabase.auth.signOut()_10_10// sign out from the current session only_10await supabase.auth.signOut({ scope: 'local' })
Upon sign out, all refresh tokens and potentially other database objects related to the affected sessions are destroyed and the client library removes the session stored in the local storage medium.
Access Tokens of revoked sessions remain valid until their expiry time, encoded in the exp
claim. The user won't be immediately logged out and will only be logged out when the Access Token expires.