0
0
Supabasecloud~20 mins

Magic link authentication in Supabase - Practice Problems & Coding Challenges

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Challenge - 5 Problems
🎖️
Magic Link Master
Get all challenges correct to earn this badge!
Test your skills under time pressure!
service_behavior
intermediate
2:00remaining
Magic Link Email Behavior

When a user requests a magic link for authentication in Supabase, what happens immediately after the request is made?

AThe user receives an email with a permanent link that can be used multiple times.
BThe user receives an email with a link that expires after a short time and can be used only once.
CThe user is logged in instantly without any email sent.
DThe user receives a text message with a code instead of an email.
Attempts:
2 left
💡 Hint

Think about security and temporary access.

Configuration
intermediate
2:00remaining
Configuring Magic Link Expiry

Which Supabase configuration setting controls how long a magic link remains valid before expiring?

Aauth.email.link_lifetime
Bauth.magic_link.expiration_time
Cauth.email.link_expiry
Dauth.email.confirmation_expiry
Attempts:
2 left
💡 Hint

Look for a setting related to email confirmation expiry.

security
advanced
2:00remaining
Preventing Replay Attacks with Magic Links

Which practice best prevents replay attacks when using magic link authentication in Supabase?

AInvalidate the magic link immediately after the first successful use.
BUse a static magic link URL for all users.
CSend the magic link over unsecured HTTP to speed up delivery.
DAllow magic links to be used multiple times within their expiry period.
Attempts:
2 left
💡 Hint

Think about what happens after the link is used once.

Architecture
advanced
2:00remaining
Magic Link Authentication Flow

What is the correct order of steps in the magic link authentication process in Supabase?

A1,2,3,4
B2,1,3,4
C1,3,2,4
D3,1,2,4
Attempts:
2 left
💡 Hint

Think about the natural sequence from request to login.

Best Practice
expert
2:00remaining
Handling Expired Magic Links

What is the best way to handle a user clicking an expired magic link in a Supabase application?

AAutomatically log the user in anyway to avoid frustration.
BRedirect the user to the homepage without explanation.
CShow an error message and provide an option to request a new magic link.
DDelete the user's account to prevent security risks.
Attempts:
2 left
💡 Hint

Consider user experience and security.