Hey all, is there a way with Supertokens to handle account management ? I have multiple users with different roles (admin, user) linked to one account. These users can only retrieve data from entries linked to that account. Pretty common for B2B apps. How do you deal with that ? Thanks a lot

Hi, is there any way to make test users seeder with commands from sdk or with another way?

My stack: Next.js frontend Nest.js backend Postgres 1. Getting Next.js to work with SuperTokens seems easy. However, once the user has logged into the Next.js app and starts making API calls, how does the Nest.js app know if the user has logged in from the API calls? 2. I'd like to store user details such as email, auth provider, etc. on my own Postgres database. Is there some kind of callback that will send a request to my API when the user changes email or a new account has just been created?

I have another architectural question regarding SuperTokens and its Core. How suitable is the solution for use by multiple services? I would like to use SuperTokens to manage users which are authenticated into multiple apps, and plan on using the UserMetadata recipe as well as UserRoles recipe to store permissions, roles and groups (using the metadata as unfortunately groups aren't part of the UserRoles recipe). My question is particularly regarding some features like initializing recipes and creating all the roles and permissions - from what I can tell I just have to call an initialization method in my service and create all those beforehand to avoid issues later, but if I have to do this in every service just to ensure that the data really exists it seems like this isn't the best approach. How would you go about managing users that are accessed by different apps, and was SuperTokens built for this use-case?

Hi, I'm looking for info as I have to choose between cookie based/jwt login. But I cannot find right documentation. I have a multitenant, microservice ecosystem, with multiple (web) frontend apps and multiple apis. Once I login in a single frontend app, I must be authenticated in all frontend apps. I have a dedicated supertokens backend microservice (with core hosted internally) where I actually do authentication. No user is shared between different tenant. I cannot use (and I do not want to do it) supertokens SDK in all my backend microservices exposing api (they are a lot, in many different languages). What's the correct choice?

Hey team, how can i get user's email id which they entered in FE, and set it in accessTokenPayload i tried using

userInfo, err := passwordless.GetUserByID(userID)

but it errors out log

text
2024/04/07 21:58:59.624599 superToken.go:187: [Info] User Info: map[_default:map[request:0x1400063f9e0]]
2024/04/07 21:58:59.624630 superToken.go:188: [Info] acces token payload map[iss:http://localhost:4000 st-perm:map[t:1712507339623 v:[]] st-role:map[t:1712507339622 v:[]]]
2024/04/07 21:58:59.636381 superToken.go:98: [Info] 96edb6d9-74ad-4c81-9801-6cdf00b84ec5
2024/04/07 21:58:59.638689 roles.go:94: [Info] Role added to user: &{false} with user_id:96edb6d9-74ad-4c81-9801-6cdf00b84ec5 role: admin

I am testing a service using a hosted production supertokens using a valid sms key, and I need to perform OTP sign in many times. However all of a sudden I stopped receiving sms messages and there are no logs in the console. I am wondering if this could be due to some default spam detection or if this could be due to some rate limiting against my phone number?

Hi, I have nodejs app with react. On the deployement domain, the application works perfect. Also, on the localhost it works perfect. But, I have a react developer that only has the react app. The app is pointing to the deployment server because I cant install the entire app at his computer. This way he can develop client side features without the server complexity. The problem is that the react is at

localhost:9001

the remote server is at

domain.com

. he is able to login, and immedietly after the redirection to the success page he gets disconnected. I assume It is because we operating the app under 2 domains

localhost:9001

and

domain.com

. how can I configure the app info on the client side to supprt that? is that possible to have 2 different domains? Thanks

Is it possible to modify the "Sign In" text in the prebuilt UI such as adding additional text?

Hi 🙂 After reading the docs, I'm unsure what to do in my use case. I have a social login set up in nextjs, and I would like to send the provider refresh token to my backend API (different service). I already extracted the refresh token in the backend config

override.functions.signInUp

section. I need to make an authenticated call to my backend with the current user. Since I don't have a session in the

override.functions.signInUp

function, I'm unsure how to proceed. Will appreciate your help 🙏