Self-Hosted Supabase MCP Server

update_auth_user

Update user details in the auth.users table of a self-hosted Supabase instance, including email, password, role, and metadata. Requires a service_role key and direct database connection.

Instructions

Updates fields for a user in auth.users. WARNING: Password handling is insecure. Requires service_role key and direct DB connection.

Input Schema

TableJSON Schema

Name	Required	Description
`app_metadata`	No	New app metadata (will overwrite existing).
`email`	No	New email address.
`password`	No	New plain text password (min 6 chars). WARNING: Insecure.
`role`	No	New role.
`user_id`	Yes	The UUID of the user to update.
`user_metadata`	No	New user metadata (will overwrite existing).

Implementation Reference

src/tools/update_auth_user.ts:57-154 (handler)

The execute handler function that implements the core logic for updating an auth user in the Supabase auth.users table using direct PostgreSQL queries.

    execute: async (input: UpdateAuthUserInput, context: ToolContext): Promise<UpdateAuthUserOutput> => { // Use UpdateAuthUserOutput
        const client = context.selfhostedClient;
        const { user_id, email, password, role, app_metadata, user_metadata } = input;

        if (!client.isPgAvailable()) {
            context.log('Direct database connection (DATABASE_URL) is required to update auth user details.', 'error');
            throw new Error('Direct database connection (DATABASE_URL) is required to update auth user details.');
        }

        const updates: string[] = [];
        const params: (string | object | null)[] = [];
        let paramIndex = 1;

        // Dynamically build SET clauses and params array
        if (email !== undefined) {
            updates.push(`email = $${paramIndex++}`);
            params.push(email);
        }
        if (password !== undefined) {
            updates.push(`encrypted_password = crypt($${paramIndex++}, gen_salt('bf'))`);
            params.push(password);
            console.warn(`SECURITY WARNING: Updating password for user ${user_id} with plain text password via direct DB update.`);
        }
        if (role !== undefined) {
            updates.push(`role = $${paramIndex++}`);
            params.push(role);
        }
        if (app_metadata !== undefined) {
            updates.push(`raw_app_meta_data = $${paramIndex++}::jsonb`);
            params.push(JSON.stringify(app_metadata));
        }
        if (user_metadata !== undefined) {
            updates.push(`raw_user_meta_data = $${paramIndex++}::jsonb`);
            params.push(JSON.stringify(user_metadata));
        }

        // Add user_id as the final parameter for the WHERE clause
        params.push(user_id);
        const userIdParamIndex = paramIndex;

        const sql = `
            UPDATE auth.users
            SET ${updates.join(', ')}, updated_at = NOW()
            WHERE id = $${userIdParamIndex}
            RETURNING id, email, role, raw_app_meta_data, raw_user_meta_data, created_at::text, updated_at::text, last_sign_in_at::text;
        `;

        console.error(`Attempting to update auth user ${user_id}...`);
        context.log(`Attempting to update auth user ${user_id}...`);

        const updatedUser = await client.executeTransactionWithPg(async (pgClient: PoolClient) => {
             // Check pgcrypto if password is being updated
             if (password !== undefined) {
                try {
                    await pgClient.query("SELECT crypt('test', gen_salt('bf'))");
                } catch (err) {
                    throw new Error('Failed to execute crypt function for password update. Ensure pgcrypto extension is enabled.');
                }
             }

            try {
                const result = await pgClient.query(sql, params);
                if (result.rows.length === 0) {
                    throw new Error(`User update failed: User with ID ${user_id} not found or no rows affected.`);
                }
                return UpdatedAuthUserZodSchema.parse(result.rows[0]);
            } catch (dbError: unknown) {
                let errorMessage = 'Unknown database error during user update';
                let isUniqueViolation = false;

                // Check for potential email unique constraint violation if email was updated
                if (typeof dbError === 'object' && dbError !== null && 'code' in dbError) {
                    if (email !== undefined && dbError.code === '23505') {
                        isUniqueViolation = true;
                        errorMessage = `User update failed: Email '${email}' likely already exists for another user.`;
                    } else if ('message' in dbError && typeof dbError.message === 'string') {
                        errorMessage = `Database error (${dbError.code}): ${dbError.message}`;
                    } else {
                        errorMessage = `Database error code: ${dbError.code}`;
                    }
                } else if (dbError instanceof Error) {
                     errorMessage = `Database error during user update: ${dbError.message}`;
                } else {
                     errorMessage = `Database error during user update: ${String(dbError)}`;
                }

                console.error('Error updating user in DB:', dbError);
                
                // Throw the specific error message
                throw new Error(errorMessage);
            }
        });

        console.error(`Successfully updated user ${user_id}.`);
        context.log(`Successfully updated user ${user_id}.`);
        return updatedUser; // Matches UpdateAuthUserOutput (AuthUser)
    },
};

src/tools/update_auth_user.ts:8-18 (schema)

Zod schema for input validation of the update_auth_user tool, ensuring required fields and at least one update field is provided.

const UpdateAuthUserInputSchema = z.object({
    user_id: z.string().uuid().describe('The UUID of the user to update.'),
    email: z.string().email().optional().describe('New email address.'),
    password: z.string().min(6).optional().describe('New plain text password (min 6 chars). WARNING: Insecure.'),
    role: z.string().optional().describe('New role.'),
    app_metadata: z.record(z.unknown()).optional().describe('New app metadata (will overwrite existing).'),
    user_metadata: z.record(z.unknown()).optional().describe('New user metadata (will overwrite existing).'),
}).refine(data => 
    data.email || data.password || data.role || data.app_metadata || data.user_metadata,
    { message: "At least one field to update (email, password, role, app_metadata, user_metadata) must be provided." }
);

src/tools/update_auth_user.ts:22-31 (schema)

Zod schema for output validation of the updated auth user object.

const UpdatedAuthUserZodSchema = z.object({
    id: z.string().uuid(),
    email: z.string().email().nullable(),
    role: z.string().nullable(),
    created_at: z.string().nullable(),
    updated_at: z.string().nullable(), // Expect this to be updated
    last_sign_in_at: z.string().nullable(),
    raw_app_meta_data: z.record(z.unknown()).nullable(),
    raw_user_meta_data: z.record(z.unknown()).nullable(),
});

src/index.ts:117-117 (registration)
Registration of the update_auth_user tool in the availableTools object, which is used to populate the MCP server's tool capabilities.
```
[updateAuthUserTool.name]: updateAuthUserTool as AppTool,
```
src/index.ts:28-28 (registration)
Import statement for the update_auth_user tool in the main index file.
```
import { updateAuthUserTool } from './tools/update_auth_user.js';
```

Tool Definition Quality

A3.7/5.0

Behavior4/5

Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?

With no annotations provided, the description carries the full burden of behavioral disclosure. It effectively adds context beyond the input schema by warning about 'Password handling is insecure' and specifying requirements like 'Requires service_role key and direct DB connection', which are crucial for safe and correct usage. However, it doesn't detail potential side effects or response behavior, preventing a perfect score.

Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.

Conciseness5/5

Is the description appropriately sized, front-loaded, and free of redundancy?

The description is appropriately sized and front-loaded with the core purpose and critical warnings in just two sentences. Every sentence earns its place by conveying essential information without waste, making it highly efficient and well-structured.

Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.

Completeness3/5

Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?

Given the complexity of a user update tool with 6 parameters, no annotations, and no output schema, the description is moderately complete. It covers key behavioral aspects like security warnings and prerequisites, but lacks details on return values, error handling, or full mutation implications, which would be beneficial for comprehensive understanding.

Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.

Parameters3/5

Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?

The schema description coverage is 100%, so the input schema already documents all parameters thoroughly. The description adds no additional parameter semantics beyond what's in the schema, such as explaining interactions between fields or usage nuances. This meets the baseline of 3 when the schema does the heavy lifting.

Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.

Purpose4/5

Does the description clearly state what the tool does and how it differs from similar tools?

The description clearly states the verb 'Updates' and resource 'fields for a user in auth.users', making the purpose specific and understandable. However, it doesn't explicitly differentiate from sibling tools like 'create_auth_user' or 'delete_auth_user' beyond the update action, which keeps it from a perfect score.

Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.

Usage Guidelines3/5

Does the description explain when to use this tool, when not to, or what alternatives exist?

The description provides some context with 'Requires service_role key and direct DB connection', implying prerequisites for usage. However, it lacks explicit guidance on when to use this tool versus alternatives like 'create_auth_user' or 'delete_auth_user', leaving usage scenarios somewhat implied rather than clearly defined.

Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.

Install Server

Related Tools

update_auth_user
@HenkDz/selfhosted-supabase-mcp
create_auth_user
@HenkDz/selfhosted-supabase-mcp
list_auth_usersC
@abushadab/selfhosted-supabase-mcp-basic-auth
get_auth_userC
@abushadab/selfhosted-supabase-mcp-basic-auth
get_auth_user
@HenkDz/selfhosted-supabase-mcp
call_auth_admin_methodA
@alexander-zuev/supabase-mcp-server

Latest Blog Posts

Tool Definition Quality Score (TDQS)
By punkpeye on April 3, 2026.
mcp
The Hackers Who Tracked My Sleep Cycle
By punkpeye on March 26, 2026.
security
Open Source Has a Bot Problem
By punkpeye on March 19, 2026.
open source

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/abushadab/selfhosted-supabase-mcp-basic-auth'

If you have feedback or need assistance with the MCP directory API, please join our Discord server