In the backend there should be:
- a service that parse and validate a supabase jwt token and return the user or user id. this can be done throw jwt parser libraries or supabase client. explore both options.
- an auth middleware that uses the service and attach related data to the request body
In the backend there should be: