Supabase user_metadata vs app_metadata

Supabase user_metadata vs app_metadata: user_metadata typically stores information that users can manage themselves. app_metadata is designed for admin-only changes and is better suited for sensitive information like permissions and roles in JWT claims. Recommendation: Use app_metadata for critical information that users should not be able to modify.