diff --git a/BRANCH_ORGANIZATION.md b/BRANCH_ORGANIZATION.md
new file mode 100644
index 0000000..eecfdd5
--- /dev/null
+++ b/BRANCH_ORGANIZATION.md
@@ -0,0 +1,101 @@
+# OAuth2 库分支组织
+
+## 📋 分支说明
+
+这个项目使用功能分支来组织不同的 OAuth2 提供者实现,以保持代码整洁和功能分离。
+
+## 🌳 分支结构
+
+### 主分支
+- **`master`** - 稳定的主分支,包含经过测试的功能
+- 包含: 基础 OAuth2 框架和成熟的提供者(GitHub、Google 等)
+
+### 功能分支
+
+#### 🔐 Supabase 分支
+- **分支名**: `cursor/implement-supabase-authentication-86da`
+- **功能**: Supabase OAuth2 提供者
+- **状态**: ✅ 完成
+- **包含**:
+ - `supabase/supabase.go` - Supabase OAuth2 实现
+ - `supabase/README.md` - 详细文档
+ - `example/supabase/` - 完整示例应用
+
+#### 🔑 WebAuthn 分支
+- **分支名**: `feature/webauthn-support`
+- **功能**: WebAuthn 无密码认证
+- **状态**: ✅ 完成
+- **包含**:
+ - `webauthn/webauthn.go` - WebAuthn OAuth2 适配器
+ - `webauthn/user.go` - 用户和会话管理
+ - `webauthn/README.md` - 详细文档和使用指南
+ - `example/webauthn/` - 完整示例应用(中文界面)
+ - `webauthn/webauthn_test.go` - 单元测试
+
+## 🚀 特性对比
+
+| 功能 | Supabase 分支 | WebAuthn 分支 |
+|-----|-------------|-------------|
+| 认证方式 | 传统 OAuth2 | 无密码认证 |
+| 安全性 | 标准 OAuth2 | 生物识别 + 硬件密钥 |
+| 用户体验 | 传统登录流程 | 现代无密码体验 |
+| 浏览器要求 | 所有现代浏览器 | Chrome 67+, Firefox 60+, Safari 14+ |
+| 硬件要求 | 无特殊要求 | 需要支持 WebAuthn 的设备 |
+
+## 📦 如何使用
+
+### 切换到 Supabase 分支
+```bash
+git checkout cursor/implement-supabase-authentication-86da
+cd example/supabase
+go run main.go
+```
+
+### 切换到 WebAuthn 分支
+```bash
+git checkout feature/webauthn-support
+cd example/webauthn
+go run main.go
+```
+
+## 🔄 分支合并策略
+
+1. **功能分支 → master**: 当功能稳定且经过充分测试后
+2. **独立开发**: 各功能分支独立开发,避免冲突
+3. **向前兼容**: 新功能不影响现有功能
+
+## 📝 开发建议
+
+### Supabase 分支开发
+- 专注于 Supabase 特定功能和改进
+- 保持与 Supabase API 的同步
+- 增强错误处理和用户体验
+
+### WebAuthn 分支开发
+- 关注无密码认证的安全性和兼容性
+- 扩展支持更多浏览器和设备
+- 优化用户体验和错误处理
+
+## 🛡️ 安全考虑
+
+### Supabase 分支
+- ✅ HTTPS 要求
+- ✅ 标准 OAuth2 安全流程
+- ✅ 令牌安全存储
+
+### WebAuthn 分支
+- ✅ 生物识别验证
+- ✅ 硬件密钥支持
+- ✅ 防钓鱼攻击
+- ✅ 域名绑定验证
+
+## 📊 测试状态
+
+| 分支 | 编译状态 | 测试状态 | 示例运行 |
+|-----|---------|---------|---------|
+| Supabase | ✅ 通过 | ⚠️ 需要测试 | ✅ 正常 |
+| WebAuthn | ✅ 通过 | ✅ 全部通过 | ✅ 正常 |
+
+---
+
+**💡 提示**: 这种分支组织确保了功能的独立性,便于维护和合并,同时避免了不同功能之间的冲突。
\ No newline at end of file
diff --git a/README.md b/README.md
index 0cb2564..fc6e80c 100644
--- a/README.md
+++ b/README.md
@@ -13,6 +13,43 @@ To install the package, run:
go get github.com/go-zoox/oauth2
```
+## Supported Providers
+
+This library supports many OAuth2 providers, including:
+
+- **Supabase** - Full-featured authentication platform
+- **GitHub** - Version control and collaboration
+- **Google** - Google services authentication
+- **Auth0** - Identity and access management
+- **Microsoft Azure** - Microsoft cloud services
+- **Slack** - Team communication platform
+- **Discord** - Gaming and community communication
+- **Facebook** - Social networking
+- **GitLab** - DevOps platform
+- **Twitter** - Social media platform
+- **WeChat** - Chinese messaging platform
+- **Doreamon** - Custom authentication provider
+- And many more...
+
+### Supabase Provider
+
+The Supabase provider offers seamless integration with Supabase Auth:
+
+```go
+import "github.com/go-zoox/oauth2/supabase"
+
+// Create Supabase client
+client, err := supabase.New(&supabase.SupabaseConfig{
+ BaseURL: "https://your-project.supabase.co",
+ ClientID: "your-client-id",
+ ClientSecret: "your-client-secret",
+ RedirectURI: "http://localhost:8080/auth/callback",
+ Scope: "openid email profile",
+})
+```
+
+For detailed Supabase setup instructions, see the [Supabase provider documentation](supabase/README.md).
+
## Getting Started
### Example 1: Using only one oauth2 provider => doreamon
diff --git a/example/supabase/.env.example b/example/supabase/.env.example
new file mode 100644
index 0000000..4d78066
--- /dev/null
+++ b/example/supabase/.env.example
@@ -0,0 +1,16 @@
+# Supabase OAuth2 Configuration
+# Copy this file to .env and fill in your actual values
+
+# Your Supabase project URL (found in your Supabase dashboard)
+SUPABASE_BASE_URL=https://your-project-id.supabase.co
+
+# OAuth2 credentials from your Supabase project
+# These can be found in: Authentication > Settings > OAuth2
+SUPABASE_CLIENT_ID=your-client-id
+SUPABASE_CLIENT_SECRET=your-client-secret
+
+# Callback URL - make sure this matches what you set in Supabase dashboard
+SUPABASE_REDIRECT_URI=http://localhost:8080/auth/callback
+
+# Optional: Port for the example server (defaults to 8080)
+PORT=8080
\ No newline at end of file
diff --git a/example/supabase/main.go b/example/supabase/main.go
new file mode 100644
index 0000000..6024af5
--- /dev/null
+++ b/example/supabase/main.go
@@ -0,0 +1,163 @@
+package main
+
+import (
+ "fmt"
+ "log"
+ "net/http"
+ "os"
+
+ "github.com/go-zoox/oauth2"
+ "github.com/go-zoox/oauth2/supabase"
+)
+
+func main() {
+ // Environment variables needed:
+ // SUPABASE_BASE_URL=https://your-project.supabase.co
+ // SUPABASE_CLIENT_ID=your-client-id
+ // SUPABASE_CLIENT_SECRET=your-client-secret
+ // SUPABASE_REDIRECT_URI=http://localhost:8080/auth/callback
+
+ baseURL := os.Getenv("SUPABASE_BASE_URL")
+ clientID := os.Getenv("SUPABASE_CLIENT_ID")
+ clientSecret := os.Getenv("SUPABASE_CLIENT_SECRET")
+ redirectURI := os.Getenv("SUPABASE_REDIRECT_URI")
+
+ if baseURL == "" || clientID == "" || clientSecret == "" || redirectURI == "" {
+ log.Fatal("Missing required environment variables: SUPABASE_BASE_URL, SUPABASE_CLIENT_ID, SUPABASE_CLIENT_SECRET, SUPABASE_REDIRECT_URI")
+ }
+
+ // Create Supabase OAuth2 client
+ client, err := supabase.New(&supabase.SupabaseConfig{
+ BaseURL: baseURL,
+ ClientID: clientID,
+ ClientSecret: clientSecret,
+ RedirectURI: redirectURI,
+ Scope: "openid email profile",
+ })
+ if err != nil {
+ log.Fatal("Failed to create Supabase client:", err)
+ }
+
+ // Home page
+ http.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) {
+ html := `
+
+
+
+ Supabase OAuth2 Example
+
+
+
+ Supabase OAuth2 Example
+ This is a simple example of using Supabase OAuth2 authentication.
+ Login with Supabase
+ Logout
+
+
+ `
+ w.Header().Set("Content-Type", "text/html")
+ w.Write([]byte(html))
+ })
+
+ // Login endpoint
+ http.HandleFunc("/login", func(w http.ResponseWriter, r *http.Request) {
+ client.Authorize("oauth2-state", func(loginURL string) {
+ http.Redirect(w, r, loginURL, http.StatusFound)
+ })
+ })
+
+ // Logout endpoint
+ http.HandleFunc("/logout", func(w http.ResponseWriter, r *http.Request) {
+ client.Logout(func(logoutURL string) {
+ if logoutURL == "" {
+ // If no logout URL provided, redirect to home
+ http.Redirect(w, r, "/", http.StatusFound)
+ } else {
+ http.Redirect(w, r, logoutURL, http.StatusFound)
+ }
+ })
+ })
+
+ // OAuth callback endpoint
+ http.HandleFunc("/auth/callback", func(w http.ResponseWriter, r *http.Request) {
+ code := r.URL.Query().Get("code")
+ state := r.URL.Query().Get("state")
+
+ client.Callback(code, state, func(user *oauth2.User, token *oauth2.Token, err error) {
+ if err != nil {
+ log.Printf("OAuth callback error: %v", err)
+ http.Error(w, "Authentication failed: "+err.Error(), http.StatusInternalServerError)
+ return
+ }
+
+ // Successful authentication
+ log.Printf("User authenticated: %+v", user)
+ log.Printf("Token: %+v", token)
+
+ // Create a simple success page
+ html := `
+
+
+
+ Authentication Success
+
+
+
+ Authentication Success!
+
+
Welcome, you have successfully authenticated with Supabase!
+
+
+
User Information:
+
ID: %s
+
Email: %s
+
Username: %s
+
Nickname: %s
+