Software Engineer role on Supabase's Auth team. Supabase is the Postgres development platform providing Database, Auth, Storage, Edge Functions, Realtime, and Vector Search. Auth, written in Go (server) with client libraries for TypeScript, SSR, and other frameworks, is one of the most popular products in the Supabase stack. You help build new and maintain existing Auth features, working across the stack from server-side protocols to client-side libraries, and own the performance, reliability, and scalability of the Auth server across Supabase's infrastructure. Fully remote, hiring globally.
Stack
Responsibilities
- ▹Design and implement secure, scalable authentication features in Go and TypeScript
- ▹Work across the stack, from server-side protocols to client-side libraries for frameworks like Next.js
- ▹Own the performance, reliability, and scalability of the Auth server across Supabase's infrastructure
- ▹Contribute to the evolution of the Auth architecture, including support for OAuth, OIDC, SAML, and other protocols
- ▹Plan and execute safe database migrations across a large fleet of Postgres instances
- ▹Build and improve observability: metrics, tracing, alerting, and dashboards to keep the system healthy at scale
- ▹Write and review RFCs as part of the product development process
- ▹Collaborate with engineers across Supabase to ensure a seamless developer experience
- ▹Support the community and respond to developer feedback on GitHub, Discord, and other channels
Requirements
- ▹4+ years of professional experience writing and shipping Go in production (required)
- ▹2+ years of professional experience working on an authentication system, including protocol support and maintenance at scale (required)
- ▹Strong relational database experience (Postgres or MySQL); Postgres experience is a bonus (required)
- ▹Strong knowledge of TypeScript in addition to Go (languages used daily)
- ▹Strong knowledge of web technology fundamentals (cookies, sessions, JWT, HTTP, browser APIs)
- ▹Good knowledge of and deep interest in authentication security (passwords, protocols such as OAuth, OIDC, or SAML, cryptography fundamentals such as hash functions, signatures, and ciphers)
- ▹Experience with multiple web frameworks like Next.js (or other SSR alternative) and traditional web frameworks like Ruby on Rails, Django, or Laravel
- ▹Good technical writing skills (the RFC process is important for changes to the Auth product)
- ▹Hands-on experience building and operating services at significant scale
- ▹Deep understanding of systems-level concerns: memory management, concurrency patterns, and compute resource optimization in Go
- ▹Experience with Kubernetes and AWS (or comparable cloud platform) in a production setting
- ▹Solid grasp of observability practices (metrics, distributed tracing, structured logging, and alerting, e.g., Prometheus, Grafana, OpenTelemetry)
- ▹Experience managing database schema migrations safely at scale
Nice to have
- ▹Postgres experience specifically (over other relational databases)
Soft skills
Strong technical writing and RFC authoringCross-team collaborationCommunity engagement and developer supportComfort working asynchronously and managing own time
What we offer
- ▹Fully remote with a WeWork membership or co-working allowance usable anywhere in the world
- ▹ESOP (equity ownership) for every team member
- ▹Tech allowance to set up your ideal work environment
- ▹Health benefits: 100% of health insurance for employees and 80% for dependents
- ▹Annual company off-sites
- ▹Flexible, asynchronous work
- ▹Annual professional development / education allowance
