Is there a way to remove previous session without hard refreshing (sveltekit and Supabase)

Question

im practicing authentication at the moment with sveltekit and Supabase

RLS is on and one of the issues im having is after i log out, and i sign in with another email, i can see the info from the previous session and when i hard refresh, then i see the correct data. Im not sure how to fix this

in my store


export const user = readable(null, (set) => {
    set(supabase.auth.user());
    const unsubscribe = supabase.auth.onAuthStateChange((_, session) => {
        session ? set(session.user) : set(null);
    });
    return () => {
        unsubscribe.data.unsubscribe();
    };
});

Hi @Nicholas, did you make progress with this? – user1666767 Jul 27 '22 at 19:40 — user1666767, Jul 27 '22 at 19:40

score 1 · Answer 1 · answered Oct 27 '22 at 13:08

I currently have a similar problem. Where after sign out, still the old user persists somehow.

My auth is only on the clientside. I use sveltekit (as a static site generator)

after signOut() there is still the sb-refresh-token cookie and the sb-access-token cookie with the jwt thus, supabase.auth.getUser() still gets me the (old)user

so user does not get logged out.

what helped me is to reload the page after the signout()

aka not use the linking and goto() function of my framework but rather use the browser function

window.location.href = '/loggedOut';

This deleted the cookies for me

score 1 · Answer 2 · answered Jun 20 '23 at 21:11

1

If you're using Supabase Svelte auth helpers you can use invalidate("supabase:auth") right after calling supabase.auth.signOut()

import { invalidate } from "$app/navigation";
...
invalidate("supabase:auth");

answered Jun 20 '23 at 21:11

Sam

1,652
17
25

Is there a way to remove previous session without hard refreshing (sveltekit and Supabase)

2 Answers2