Atomic CRM uses Supabase as a backend. This document explains how to configure a remote Supabase instance hosted at supabase.com.
Atomic CRM comes with a CLI utility to create a backend instance on supabase.com:
make supabase-remote-initThe script will ask you for the Supabase instance name, create the database, apply the migrations and deploy the edge functions. Finally, it will create a .env.production.local file with your remote Supabase configuration.
The script cannot yet automate the configuration of the required SMTP provider on your Supabase instance. To do that, please follow the instructions detailed in the Email Provider Setup section.
If you already created a project on supabase.com, you can configure the Atomic CRM frontend to use it.
First, log into your Supabase account:
npx supabase loginNow, link the local project to the Supabase instance. You'll be asked to enter the database password.
npx supabase link --project-ref ********************Then, apply the migrations and deploy the edge functions:
npx supabase db push
npx supabase functions deployFinally, add a .env.production.local file in the root directory with your remote Supabase credentials:
VITE_SUPABASE_URL=<instance_url>
VITE_SUPABASE_ANON_KEY=<instance_anon_token>Atomic CRM requires that you set up an email provider on your Supabase instance. If you don't have one yet, please follow the instructions detailed in the Email Provider Setup section.
Before deploying the frontend code to production, you may want to test the local frontend code when connected to the remote Supabase instance.
To do so, call the following command:
make prod-startYou will be prompted to create the first production user.
Using a remote Supabase instance can be interesting if you deploy from your computer, or if you want to test your app with production data in production mode.
In order to support the invitations workflow and the default email/password authentication (including password reset), Atomic CRM needs to be able to send emails from your Supabase instance.
By default, Supabase provides a simple SMTP server for all projects. But this server imposes a few important restrictions and is not meant for production use:
- It can only send messages to pre-authorized addresses
- It imposes significant rate-limits
- There is no SLA guarantee on message delivery or uptime
For this reason, it is recommended to use a custom SMTP provider.
A non-exhaustive list of services that work with Supabase Auth is:
- Postmark (recommended if you also plan to use the Inbound Email feature)
- Resend
- AWS SES
- Twilio SendGrid
- ZeptoMail
- Brevo
Once you've set up your account with an email sending service, head to the Authentication settings page to enable and configure custom SMTP.
Once you save these settings, your project's Auth server will send messages to all addresses. To protect the reputation of your newly set up service a low rate-limit of 30 messages per hour is imposed. To adjust this to an acceptable value for your use case head to the Rate Limits configuration page.
Note: Alternatively, you can also set up an authentication hook to send the emails yourself.
Atomic CRM uses Supabase's authentication system. When a user logs in, Supabase redirects them to an authentication callback URL that is handled by the frontend.
When developing with a local Supabase instance, the callback URL is already configured--you don't need to do anything.
When using a remote Supabase instance, you need to configure the callback URL as follows:
- Go to the project dashboard at supabase.com.
- Go to Authentication > URL Configuration.
- Set up the callback URL of the production frontend in the Site URL field.
If you host Atomic CRM under the https://example.com/atomic-crm/ URL, the callback URL should be https://example.com/atomic-crm/auth-callback.html.
Atomic CRM uses Supabase to send authentication-related emails (confirm signup, reset password, etc).
When developing with a local Supabase instance, you test your custom mail templates via the supabase TOML config file. An example of a custom template has been done for the recovery email. Note that you will need to restart your supabase instance to apply the changes.
When using a remote Supabase instance, you can configure the email templates as follows:
- Go to the project dashboard at supabase.com.
- Go to Authentication > Email Templates.
- Choose the template you want to change using the email template tabs.
- Paste the template source code in the editor and save.
If you want more information on how to customize email templates, check the Customizing Email Templates documentation.
I have a Security Definer View error in Security Advisor
This warning informs you that the init_state state view is public and can be called by everybody.
This view is required to test if the CRM has been setup correctly. It doesn't expose any data, so you can ignore the Security Advisor error.