From 095bcfd16dfe17747ca1f5bba4b710a4af734a9d Mon Sep 17 00:00:00 2001
From: Cemal Kilic <cemalkilic96@gmail.com>
Date: Thu, 19 Feb 2026 14:35:58 +0800
Subject: [PATCH] fix(auth): pass GOTRUE_JWT_VALID_METHODS env var for GoTrue
 compatibility

---
 internal/start/start.go | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/internal/start/start.go b/internal/start/start.go
index dd9ca740f..5a5cec56c 100644
--- a/internal/start/start.go
+++ b/internal/start/start.go
@@ -627,7 +627,9 @@ EOF
 		if keys, err := json.Marshal(utils.Config.Auth.SigningKeys); err == nil {
 			env = append(env, "GOTRUE_JWT_KEYS="+string(keys))
 			// TODO: deprecate HS256 when it's no longer supported
+			// TODO: remove VALIDMETHODS after a while to avoid breaking changes
 			env = append(env, "GOTRUE_JWT_VALIDMETHODS=HS256,RS256,ES256")
+			env = append(env, "GOTRUE_JWT_VALID_METHODS=HS256,RS256,ES256")
 		}
 
 		if utils.Config.Auth.Email.Smtp != nil && utils.Config.Auth.Email.Smtp.Enabled {