Authentication

Authentication Overview

Apollo uses Supabase Auth with JWT-based authentication. All API requests require a valid JWT token passed in the Authorization header.

Email & Password
Invitation
Password Reset

The standard sign-in method. Users register with email and password, then confirm their email via a verification link.

Navigate to the login page at apol.dev
Enter your email and password
Click Sign In

Session Management

Sessions are managed by Supabase with automatic token refresh
Navigation history is persisted in localStorage so you return to where you left off
Sessions persist across browser refreshes

User Types

Apollo supports three user types, determined by organization membership:

User Type	Description	Access
Internal	Full team members (org roles: owner, admin, member)	All features based on role
Customer	External clients with limited view	Simplified dashboard, assigned projects only
External Collaborator	Third-party contributors	Specific project access only

User types are derived from the organization_members role, not set directly. An external_collaborator org role maps to the External Collaborator user type.

Permission Model

Apollo uses a three-tier permission model. See Permissions for the full breakdown.

Quick Start

Apollo CLI

Authentication Overview
Sign-In Methods
Session Management
User Types
Permission Model

Getting Started

CLI

Core Features

AI Features

My Space

Collaboration

Integrations

Platform & Admin

Organization

User Experience

Authentication

Authentication Overview

Session Management

User Types

Permission Model

Getting Started

CLI

Core Features

AI Features

My Space

Collaboration

Integrations

Platform & Admin

Organization

User Experience

​Authentication Overview

​Sign-In Methods

​Session Management

​User Types

​Permission Model

Authentication Overview

Sign-In Methods

Session Management

User Types

Permission Model