Deploy on render.com

hi! how can i properly test my app's behavior when access token is expired

I'm building a simple application. At its current state, it seems fine to have my Remix SSR app, the PostgreSQL DB it uses, and SuperTokens on the same server. No Docker. Is it fine to just use a single API Key for SuperTokens in this case? Is it recommended to generate API keys? Is there a maximum character length for these keys?

Hello! I'm implementing a custom emailing system. I see that for email verification I can get the email verification link and info using

let { user, emailVerifyLink } = input;

and

let { id, email } = user;

, but how do I get the password reset link in the case when I'm sending a password reset email and

input.type !== "EMAIL_VERIFICATION"

? I'm looking at the page https://supertokens.com/docs/emailpassword/email-delivery/custom-method for reference!

Hey, not sure if this is the right place to ask, if I run supertokens self hosted, is there any kind of UI to add new applications/users etc?

Hei, I'm getting the following error whenever I run

EmailVerification.sendVerificationEmail()

.

Uncaught (in promise) SyntaxError: JSON.parse: unexpected end of data at line 1 column 1 of the JSON data

Anything I'm missing or is this a bug? I'm using the

web.js

sdk, and I'm initializing the recipe. Also tested with

EmailPassword.sendVerificationEmail()

and that works fine. > Note: I'm I correct in saying that you have to have a valid session before sending the email?

Hi there, I am trying to customize a bit the behaviour of supertokens in react. With the default react/flask instructions, everything works well. What I want to achieve is to render the login ui in the / path with some extra content around it. Followed the instructions here https://supertokens.com/docs/thirdpartyemailpassword/common-customizations/embed-sign-in-up-form but it ended up in an infinite loop of redirects. Not sure what exactly I am doing wrong. Also not sure how to use SuperTokensWrapper in the case of embedding sign in. Is there anything I should check? Or a working example I can have a look?

Hei I m getting the following error

Sharing session to vanity domain

I see that there is a flutter package for supertokens. Is this still supported?

SuperTokens.init() works just fine when I run the code, but it fails whenever I try to run my jest tests with

TypeError: Cannot read properties of undefined (reading 'bind')

- anyone solve this problem?

it looks like SuperTokens.init() makes an HTTP request. Is there any easy way to mock SuperTokens so that this doesn't happen during my tests?

Embed sign in component

Flutter support

Preventing supertokens init making http request

hello guys any password example on react native?

Hi, I'm trying to use the reactjs SDK but when I'm calling

ThirdPartyPasswordless.createPasswordlessCode({ email })

I'm getting

error:  TypeError: Cannot read properties of undefined (reading 'createCode')

any ideas of what I am doing wrong ?

hi, do the public keys for JWT verification rotate?

I would like to use Supertokens as apart of my platform where I can offer auth for my customers that they can use for their memberships / courses. As well as use it for the platform it self. The issue is multi-tenancy. One user could be a part of multiple organizations. Also, each organization would have their own users. It looks like on the road map this is coming... Wanted to get feedback on the solutions: A.) Easiest, but seems hacky is Supertokens doesn't verify email format with the rest api, it seems, so I was able to append the tenantId to the end of an email: dylan@email.com%tenantId_1 so that would create a unique email for each tenant. My would system would need to manage appending tenant Id to emails on signup, login, etc. Simple, but I feel like there is something I missing where this may become an issue later on. It would work with the account linking feature that hopefully gets done soon! 🙂 B.) Each tenant gets their database in a shared DB. Then dynamically route requests to the tenant DB with ST. But have no idea how to do that or if thats possible. Other idea is each gets their own ST core install, but not sure how to do that at scale with hundreds or thousands of tenants. Would updates need to be made to each tenant install? No idea. Any help or insights would be great!!

Hi, I have a question about memory leaks. Initially, one supertokens process occupies 96 Mb of RAM During load testing on the /telemetry, /hello, /users/count, /apiversion endpoints, the memory starts to grow (up to 512 Mb) After the load testing is stopped, the memory is not released.

Hi! I am trying to develop my custom UI with supertokens, and it seems that everything is working correctly. Except one thing... My signup/signin flow works like this: First a user signs up using email/password or social signinup then the frontend redirects it to a set username route where the user has to set a username and then an email verification link is send. I have overwritten the following functions:

doesSessionExist

and

getRedirectionPath

. It works like a charm with email and password, and also with the Facebook Provider. However, it doesn't seem to work with the Google Provider. Every time I try to sign in or up with the Google provider I get redirected to my dashboard not the set-username route. If I refresh the page supertokens instantly remembers that there shouldnt be a session and redirects me to the set-username route (The only difference I see is that you do not need to verify the Google email address, while you need to verify the Facebook email, which should be handled by a logic in the doesSessionExist where we first check the atp and then check the email). Seems like a strange thing to me...

Hi there, is there any way to check if the user is an admin or not? Like a way that we can set a particular user as an admin?

Hi, are SuperToken Sessions also working with websockets? I am using FastAPI toghether with the Ariadne GraphQL library.

I've recently upgraded and it looks like emotion/react has been bundled into the library. This is causing issues because it's loaded globally twice

emotion lib issue

Hi, is there a way to provide multiple values for

website_domain

in

supertokens.init

(on backend)? I have multiple frontends that use the same api. And what should i provide to website_domain if i am using a mobile App which has no domain?

Hey, I have enabled jwt in the sessions. i use the jwt token in a mobile app and i verify that the token i received is legit in the backend. My problem is that the jwt expires in 1 hour from its creation and i want to increase that expiration. Is there a setting/way that can achieve that? I know about the setting access_token_validity but i dont want to change the supertokens access_token expiration just the JWT that is created.

Hi, how can i handle supertokens error? I have a middleware that needs to detect an error from supertokens and get the status and message fields.

Hi @rp Can you please guide what is the issue here as I am trying to test self hosted supertoken with my node BE server though postman but getting 404 error for signup endpoint(or probably for all endpoint). I am using thirdpartyemailpassword recipie. Here I am attaching logs from the point where server starts till hitting the post request. Also the rid is sent as thirdpartymailpassword in request header.

Handling supertokens error