Oleksiy Portal
Projects, prototypes, and experiments
Sign in

Portal

One home for every experiment.

Sign in once, explore faster. This hub knows about all of the apps running on *.oleksiyk.com and keeps your Supabase session in sync as you jump between them.

Sign in to unlock SSOArchitecture notes
No Supabase session detected.
SSO status
  • Auth domainauth.oleksiyk.com
  • Cookie scope.oleksiyk.com
  • Shared Supabase projecttrue

Projects

Everything under *.oleksiyk.com

These tiles are placeholders. Update them as apps mature—each one should point to a subdomain wired to the shared Supabase project for seamless single sign-on.

Lift and Shift

Beta

A workout plan builder and tracker.

  • Build workout plan
  • Responsive, mobile-friendly UI
  • Track progress

Dungeon Mastery Intelligence

Alpha

An AI-powered Tabletop RPG assistant.

  • Run solo games
  • Generate One-Shot adventures
  • AI assistance with character creation

Architecture

Shared auth, isolated apps

Single Supabase project

Every app uses the same Supabase URL and anon key. Keep per-app data siloed by schema and RLS policies while leveraging a consistent identity store.

Parent domain cookies

A custom auth domain like auth.oleksiyk.com issues first-party cookies scoped to.oleksiyk.com, so each subdomain can read the session server-side.

Edge middleware guards

Downstream apps add lightweight middleware to require a session on protected routes, redirecting back here when someone needs to sign in.

Optional handoff flow

If cookies ever misbehave, use an /auth/callback route per app to finalize a login on same-site redirects—no JWTs in query strings.