Lovable Cloud is the built-in managed hosting layer that comes enabled by default on every Lovable project. It bundles PostgreSQL, authentication, file storage, Edge Functions, and AI capabilities into one platform with zero infrastructure setup. Select your region when creating the project — it cannot be changed later. Your workspace includes a $25 monthly Cloud balance to cover usage.
What Lovable Cloud gives you out of the box
Lovable Cloud launched in September 2025, following Lovable's acquisition of cloud provider Molnett. It uses Supabase's open-source stack under the hood — PostgreSQL, auth, storage, and Edge Functions — but abstracts away every configuration step. You never touch a server, a container, a deploy script, or a database connection string. Every new Lovable project has Lovable Cloud enabled by default, and it cannot be disabled.
The platform is organized around a security model with two zones. The blue zone is your client-side React app — it uses a publishable Supabase key that is safe to expose in the browser, with Row Level Security (RLS) policies controlling what each user can access. The red zone is your Edge Functions layer — this is where secret API keys live, where server-side logic runs, and where all calls to authenticated external services happen. You can invoke Edge Functions from the frontend, but you can never read their code or secrets from the client. This separation is what lets you build production-grade apps in the browser without exposing credentials.
Edge Functions in Lovable Cloud run on Deno Deploy infrastructure, deployed globally so they execute close to your users. They support TypeScript, NPM modules, and Node.js built-ins. Lovable creates, deploys, and wires them automatically when you describe backend behavior in chat — you do not write or deploy functions manually. Storage supports files up to 2 GB with public and private bucket options. The built-in AI capabilities use Gemini 3 Flash and cover summaries, sentiment analysis, chatbots, and translation without any external API key required.
Integration method
Lovable Cloud is always-on and pre-configured; interact with it through the Cloud tab in the Lovable editor, not through a traditional connector setup flow.
Prerequisites
- A Lovable account (free tier is sufficient to explore Lovable Cloud features)
- A new or existing Lovable project — Lovable Cloud is enabled automatically
- Understanding that Lovable Cloud region is selected at project creation and cannot be changed afterward
- Familiarity with what an Edge Function is (a server-side function that runs on Lovable's infrastructure)
Step-by-step guide
Open the Cloud tab and review your project's resources
Open the Cloud tab and review your project's resources
The Cloud tab is your dashboard for everything Lovable Cloud provides. To open it, look for the '+' icon at the top of the left sidebar in the Lovable editor — clicking it reveals a panel with several tabs. Click 'Cloud' to see your project's current resource state. You will find the following sections: Database (your PostgreSQL instance with a table editor and SQL runner), Users & Auth (email/password, magic links, and OAuth provider settings), Storage (file buckets with upload/download management), Edge Functions (list of deployed server-side functions), AI (built-in AI feature configuration), Secrets (encrypted environment variable storage), Logs (real-time execution output), and Usage (resource consumption metrics against your monthly balance). At the top of the Usage section you will see your balance — every workspace starts with a $25 monthly Cloud balance. Lovable Cloud also provides a $1 AI balance for testing AI-powered features. Resource alerts fire automatically when disk space drops below 10% of your allocation, IO budget drops below 50%, or CPU load exceeds 80%. These alerts appear as notifications in the editor. Spend a few minutes exploring each section before building — understanding what is available here will inform how you prompt the AI agent throughout the rest of your project. The region your project runs in (Americas, Europe, or Asia Pacific) was selected at creation and is shown here as a read-only field. If you need a different region, you will need to create a new project.
Show me a summary of what database tables, storage buckets, and Edge Functions currently exist in my Lovable Cloud project.
Paste this in Lovable chat
Expected result: The Cloud tab opens with all sections visible. You can see any existing database tables, an empty or pre-populated auth configuration, and your current usage against the $25 monthly balance.
Create a database table using natural language
Create a database table using natural language
Lovable Cloud's PostgreSQL database is the primary data layer for your app. You do not write SQL to create tables — you describe what you need in plain English and the AI generates the schema, creates the table, and configures Row Level Security policies automatically. This is one of the biggest advantages of using Lovable Cloud over a manually connected external database: the AI understands your full project context and can generate correct, secure schemas without any manual wiring. In the Lovable chat prompt (bottom-left), describe the data your feature needs. Be specific about the fields, their types, and who should be able to read or write the data. For example, if you are building a feedback tool, describe the columns you need and whether feedback should be visible only to admins or to the user who submitted it. Lovable will generate a database migration, apply it to your Lovable Cloud PostgreSQL instance, add appropriate RLS policies, and update your frontend code to query the new table — all in one step. After the change applies, navigate to Cloud tab → Database to verify the table was created with the expected columns. You can also use the SQL editor in that tab to run test queries directly against your database.
Create a database table called 'feedback' with columns: id (auto-generated UUID), user_id (references the logged-in user), message (text, required), sentiment (text, optional), and created_at (timestamp, auto-set). Only authenticated users should be able to insert their own feedback. Admins should be able to read all rows.
Paste this in Lovable chat
Expected result: The Cloud tab → Database section shows the new 'feedback' table with the correct columns. An RLS policy is listed that restricts inserts to authenticated users and allows admin read access. The frontend code includes a query that inserts to this table.
Store a secret and use it in an Edge Function
Store a secret and use it in an Edge Function
When your app needs to call an authenticated external service — a payment processor, an email API, a third-party AI model — the API key must never appear in your frontend code. Lovable Cloud's Secrets panel is where these credentials live, encrypted and accessible only from Edge Functions in the red zone. The client-side blue zone can never read them. To add a secret, go to the Cloud tab and click 'Secrets'. Click 'Add secret', enter the exact name you will reference in code (for example, RESEND_API_KEY), paste the key value, and save. The name is case-sensitive and must match exactly what you use in your Edge Function. Platform secrets like your Supabase URL and the Lovable API key are pre-populated and cannot be edited — leave those alone. Once the secret is stored, describe the backend behavior you need in chat. Lovable will generate an Edge Function that reads the secret using Deno.env.get('RESEND_API_KEY'), makes the server-side API call, and returns a result to the frontend. You should never paste API keys directly into the Lovable chat — on the free plan, chat history is publicly visible, and keys pasted in chat can be recovered from commit history. Always use the Secrets panel or the secure 'Add API Key' form that Lovable prompts you with when it detects a new credential is needed.
Create an Edge Function called 'send-welcome-email' that uses my RESEND_API_KEY secret to send a welcome email via Resend's API. The function should accept a JSON body with 'to' and 'name' fields, send an email from hello@myapp.com with subject 'Welcome to the app', and return a success or error response. Wire it so it triggers automatically when a new user registers.
Paste this in Lovable chat
Expected result: Cloud tab → Edge Functions shows a new 'send-welcome-email' function. Cloud tab → Secrets shows RESEND_API_KEY is stored. Cloud tab → Logs shows execution output when the function is invoked during a test registration.
Configure file storage with the correct access level
Configure file storage with the correct access level
Lovable Cloud Storage (built on Supabase Storage) supports files up to 2 GB per upload and organizes files into buckets — containers that each have their own access settings. The most important thing to understand about storage is that the default configuration makes buckets publicly accessible. If you are storing user profile photos, app assets, or public download files, this is fine. If you are storing invoices, personal documents, contracts, or any sensitive content, you must explicitly configure the bucket for authenticated access with signed URLs. To set up storage through chat, describe what files your app will handle and who should be able to access them. Lovable will create the bucket, set the appropriate RLS policies on the storage.objects table, and generate the frontend code to handle upload and download. For public buckets, files are served directly via a stable URL. For private buckets, downloads require generating a short-lived signed URL server-side through an Edge Function — Lovable can scaffold this pattern for you automatically when you specify that access should be restricted. After setup, navigate to Cloud tab → Storage to see your buckets and verify the access settings. You can upload a test file directly from this panel to confirm the configuration is correct before writing frontend upload logic.
Create a private storage bucket called 'user-documents' where authenticated users can upload their own files (up to 10 MB each) and only download files they uploaded themselves. Generate a signed URL when a user clicks to view a file, so the URL expires after 1 hour. Show uploaded files in a list on the user's dashboard page.
Paste this in Lovable chat
Expected result: Cloud tab → Storage shows the 'user-documents' bucket with private access settings. RLS policies on storage.objects restrict uploads and downloads to the file owner. The dashboard page displays the user's uploaded files with working signed URL download links.
Monitor usage and understand your Cloud balance
Monitor usage and understand your Cloud balance
Lovable Cloud usage is tracked against your monthly $25 Cloud balance, which resets each billing period. Different resources consume different amounts: database storage, storage bandwidth, Edge Function invocations, and Auth monthly active users all count against the balance. On free plans, you are on a Tiny instance with limited resources. Paid plans allow upgrading to Small, Medium, or Large instances as your app scales. To monitor usage, open Cloud tab → Usage. This view shows your current consumption for each resource category alongside your allocation. Resource alerts are sent automatically — at 10% remaining disk, 50% remaining IO budget, and 80% CPU load — but checking this panel proactively is good practice, especially after launches or traffic spikes. If you see unexpectedly high Edge Function invocation counts, check Cloud tab → Logs to identify which functions are being called and how often. Logs provide real-time output from all Edge Functions and are the first place to check when debugging backend behavior. For paid plan users, if your app consistently exceeds Tiny instance limits, upgrade the instance size from Cloud tab → Database. You cannot change your hosting region after the project is created, but you can upgrade instance size at any time. For complex scaling questions or if you are hitting resource limits unexpectedly, RapidDev's team can help audit your Edge Function architecture and database query patterns to reduce unnecessary resource consumption.
Check my Lovable Cloud usage and tell me which features are consuming the most resources. If any Edge Functions are being called more than expected, show me the recent logs for those functions and suggest ways to optimize them.
Paste this in Lovable chat
Expected result: The AI returns a summary of resource consumption from the Usage panel, identifies any high-usage Edge Functions, and shows recent log output. If there are optimization opportunities, it provides specific suggestions.
Common use cases
Store a secret and use it in an Edge Function
Use Lovable Cloud with Lovable to store a secret and use it in an edge function. This is one of the most common use cases when integrating Lovable Cloud into your Lovable application.
Show me a summary of what database tables, storage buckets, and Edge Functions currently exist in my Lovable Cloud project.
Copy this prompt to try it in Lovable
Configure file storage with the correct access level
Take your Lovable Cloud integration further by configure file storage with the correct access level. This builds on the basic setup to create a more complete experience.
Create a database table called 'feedback' with columns: id (auto-generated UUID), user_id (references the logged-in user), message (text, required), sentiment (text, optional), and created_at (timestamp, auto-set). Only authenticated users should be able to insert their own feedback. Admins should be able to read all rows.
Copy this prompt to try it in Lovable
Monitor usage and understand your Cloud balance
Prepare your Lovable Cloud integration for production by monitor usage and understand your cloud balance. Ensures your integration works reliably for real users.
Create an Edge Function called 'send-welcome-email' that uses my RESEND_API_KEY secret to send a welcome email via Resend's API. The function should accept a JSON body with 'to' and 'name' fields, send an email from hello@myapp.com with subject 'Welcome to the app', and return a success or error response. Wire it so it triggers automatically when a new user registers.
Copy this prompt to try it in Lovable
Troubleshooting
Edge Function returns an error: 'Secret [NAME] not found' (error code P0001)
Cause: The secret name in your Edge Function code does not exactly match the name stored in Cloud → Secrets. Secret names are case-sensitive.
Solution: Open Cloud tab → Secrets and copy the exact secret name character-for-character. Compare it to what your Edge Function uses in Deno.env.get('NAME'). A common mistake is using underscores versus hyphens or mixing uppercase and lowercase. Update the secret name in one place to match the other, then re-deploy the Edge Function by asking Lovable to redeploy it.
Frontend gets a CORS error when trying to call an external API
Cause: Your frontend code is calling an authenticated external API directly from the browser instead of routing through an Edge Function. Most APIs block browser-origin requests from unknown domains.
Solution: Ask Lovable to create an Edge Function that proxies the API call server-side. The frontend calls your Edge Function, which calls the external API using a secret key, and returns the result. CORS disappears because the server-to-server call has no origin restriction. Never call authenticated external APIs directly from frontend code.
Storage files that should be private are accessible to anyone with the URL
Cause: The storage bucket was created with public access settings, which is the default. RLS policies on storage.objects may not be restricting access correctly.
Solution: Open Cloud tab → Storage, select the bucket, and verify its access settings. Then ask Lovable: 'Make the [bucket-name] storage bucket private, restrict downloads to the file owner only, and generate signed URLs that expire after 1 hour for file access.' Lovable will update the bucket policy and RLS rules. After the change, test that unauthenticated direct URL access returns a 403.
Best practices
- Select your hosting region (Americas, Europe, or Asia Pacific) carefully at project creation — it is immutable and affects latency for all your users and Edge Function executions.
- Always store API keys in Cloud tab → Secrets, never in chat messages or in code. On the free plan, chat history is publicly visible and keys in messages can be recovered from Git history.
- Explicitly configure storage buckets as private for any user-generated content that should not be public. The default is public access, which is correct for app assets but wrong for user documents, invoices, or personal files.
- Review auto-generated RLS policies in Cloud tab → Database before publishing. Lovable creates sensible defaults but always verify that insert, select, update, and delete permissions match your actual requirements.
- Use Cloud tab → Logs as your first debugging tool for any backend issue. Logs show Edge Function execution output in real time and are faster to check than adding console statements and redeploying.
- Monitor Cloud tab → Usage regularly, especially after app launches or feature releases. Resource alerts at 10% disk, 50% IO, and 80% CPU are automatic, but proactive checks prevent surprises.
- Use the built-in AI capabilities (Cloud tab → AI) for features like sentiment analysis, summarization, and translation before reaching for an external LLM API. The $1 AI balance covers exploration at no additional cost.
- When an Edge Function handles webhooks from external services, always verify the webhook signature asynchronously using constructEventAsync() — the Deno runtime requires async signature verification, and using the synchronous version will silently fail.
Alternatives
Choose AWS S3 if you need to store files outside of Lovable's managed platform — for example, integrating with an existing AWS infrastructure, storing assets that other AWS services need to access directly, or requiring S3-specific features like lifecycle policies and Glacier archival.
Choose the standalone Supabase connector if your team already has a Supabase project with existing data, needs access to the Supabase dashboard directly, or wants to share a database across multiple applications outside of Lovable Cloud's managed environment.
Choose Dropbox if your users are non-technical and already manage files there, or if your app needs to read and write to an existing Dropbox folder structure as part of a broader file management workflow.
Frequently asked questions
Can I disable Lovable Cloud and use a completely external backend?
No. Lovable Cloud is always enabled and cannot be disabled for any project. It is the foundation that Lovable's AI agent uses to generate code, deploy Edge Functions, and manage secrets. You can add external services on top of it — for example, connecting a separate Supabase project or AWS S3 — but the underlying Lovable Cloud instance remains active.
What happens if I exceed my $25 monthly Cloud balance?
On the free plan, you may be rate-limited or blocked from provisioning new resources. On paid plans, overages are billed at the usage rate for your plan tier. Lovable sends resource alerts when disk drops below 10%, IO below 50%, and CPU exceeds 80% — these are early warnings before you hit balance limits. Check Cloud tab → Usage regularly to track consumption.
Can I change my Lovable Cloud region after the project is created?
No. The hosting region — Americas, Europe, or Asia Pacific — is selected at project creation and is immutable. If you need a different region, create a new project and select the correct region upfront. This decision affects both database latency and Edge Function execution location, so choose the region closest to your primary user base.
Is Lovable Cloud storage the same as Supabase Storage?
Yes, at the infrastructure level. Lovable Cloud is built on Supabase's open-source stack, and the storage layer uses Supabase Storage under the hood. The key difference is that Lovable Cloud is fully managed — you interact with it through the Cloud tab and Lovable's AI agent, rather than through the Supabase dashboard. Lovable Cloud projects do not appear in a standalone Supabase dashboard.
What is the difference between the blue zone and the red zone in Lovable Cloud?
The blue zone is your client-side React frontend. It uses a publishable Supabase key that is visible in the browser and is safe to expose because RLS policies control all data access. The red zone is your Edge Functions layer — this is where secret API keys live, where server-side logic runs, and where calls to authenticated external services happen. API keys and sensitive credentials must always stay in the red zone, accessed via Deno.env.get() in Edge Functions, never in frontend code.
Do I need to know how to code to use Lovable Cloud features like Edge Functions and database tables?
No. Lovable's AI agent generates, deploys, and wires all Lovable Cloud resources from plain English descriptions in the chat. You describe what you need — a database table structure, a file upload flow, a server-side API call — and the agent handles the implementation. Understanding the concepts (what an Edge Function is, why secrets need to be in the red zone) helps you write better prompts, but you do not write or deploy code manually.
Talk to an Expert
Our team has built 600+ apps. Get personalized help with your project.
Book a free consultation