Hey guys, I am trying to implement a Telegram-like authentication where users are logged in via OTPs as primary log-in factor + there is a possibility to add additional password protection as a second factor. Is that possible? I can see there is APIOptions parameter in the

create_code_post / consume_code_post

function calls for Passwordless recipe, which makes it possible to

get_session

using

api_options.request

. But there is no such parameter for the Email-Password recipe 🥲

Hello together We are implementing SuperTokens within our application for the first time. First of all, the documentation and the coding examples on your webpage are great! I still got some questions though. 1. We would like to have an initial user within our database right at application startup. Is there a way to configure an initial admin user (not the db account)? 2. Regarding question 1. We thought about creating a user right on startup within our application but we consider this unsafe/vulnerable. I saw that other IDPs sort of work with a client-secret which could be safely stored. Is there a similar mechanic in SuperTokens? 3. Is there some sort of admin panel (UI)? As far as I'm concerned, I haven't found one or seen any notes about one. 4. We are using SuperTokens in a FastAPI(python) backend. I haven't found out how I can overwrite the SignUp method and make a role assignment right on signing up. I saw a few documentations such as https://supertokens.com/docs/userroles/managing-roles-and-users and https://supertokens.com/docs/thirdparty/common-customizations/handling-signinup-success but its hasn't worked out for me. Could you please provide us some python coding example?

Hi, How can I delete my user and remove its session from React Native ? I am deleting my user in my api and it's working perfectly but it is not removing my client session.

I have created a GitHub project. In exchange for all your help, my intent is to provide an article with a working demo for Angular/Firebase using SuperTokens so others can refer to it. However, the demo is not yet working. There are some issues with Sessions that I am unable to figure out. Here is the link: https://github.com/dleangen/supertokens-demo-1/tree/supertokens-ThirdPartyEmailPassword

Is there a way to do single sign out from the Thriparty IDP, once the app is logged out using signout method?

Is there any documentation for the breaking changes? I am using email/password recipe for node backend and vanila js frontend. I see certain changes on the docs site and trying to follow that. 1. To install on frontend,

supertokens-website.js

import seems to be replaced with

supertokens.js

and

session.js

But this replacement had breaking changes, few I can see as following on the frontend side 2.

supertokens.init()

function now seems to have different options schema.

supertokens.init({apiDomain: ....})

seems to be replaced with

supertokens.init({appInfo: {apiDomain: ....}})

. 3.

appInfo

object

appName

and

recipeList

property seems to have become mandatory (earlier they were optional) 4.

supertokens.signOut

fn seems to be removed. Will need to dig through doc for the replacement. I am figuring these out as I see the errors popping up. It will be great if we can have a documentation of the breaking changes and if possible, a migration guide

Do you have a recommended java library for validating JWTs?

hey I implemented my project with supertokens and wanted to automate the backend site with a docker compose file. Everything works fine but the signup and signin routes are not. Any Ideas? I can provide logs

Hey, I was wondering if it's possible to remove the "Powered by SuperTokens" branding on the login and signup page. I'm using the hosted version admittedly still in the first 5000 users so not paying anything. But would happily pay to have it hidden.

Hello there! I'm trying to implement Supertokens in my Angular Frontend. The following code gives me

Object {  }

. How do i get the actual token payload? I need to check for user roles inside it.

let accessTokenPayload = await SuperTokens.getAccessTokenPayloadSecurely();
console.log(accessTokenPayload)

Any ideas? Thanks in advance