I have set up a couple of edgefunctions to assist with my invites and account creation.
Im using supabase as backend.
The flow goes like this:
admin on webpage sends invite to user (the one that is going to use the mobile flutterflow app)
User gets email with a code
User enters code in flutterflow
Account is created and user is logged in
The problem im facing is that the only built in option is supabase login with email and password - that means i have to send email and password to frontend which feels insecure since we are returning sensitive information to frontend.
I really want a one email flow, but not sure if i need to go with magic links with deep linking or if there is another way to solve this.
I tried a custom action which partially worked but the session wasnt set.
Any suggestions?