Auto save password chrome

Hey, when setting custom claims in the access token where is the best place to do that? Using refreshPOST override, or make it a side effect in an api call which is called by the frontend as part of the login process? I've been reading through the docs and I can see a few examples of doing it for a /login route but just struggling to understand is that overriding a login route provided ootb by supertokens or is it in addition to the normal flows?

I'm thinking it could have something to do with express 4. To set headers in express 4: res.set(key,value). But looking at this it seems it tries setting the header with methods res.header and res.setHeader. https://github.com/supertokens/supertokens-node/blob/master/lib/ts/framework/utils.ts

I'm using NextJS. In the supertokens example it uses

EmailPasswordReact

and

SessionReact

. However, when trying to customize the SignIn UI, I'm getting an error:

Error: No instance of EmailPassword found. Make sure to call the EmailPassword.init method

. Do I need to modify the code to use

EmailPassword

and not

EmailPasswordReact

?

Hi, I'm getting a 404 on

/auth/callback/github

when trying to implement social login, but it works fine with email/password. Am I supposed to set up the backend callback myself ? I am using express (node) for the backend.

Hi all, we've been evaluating Supertokens as well, we were researching the flow and session management and had a question around session extension. Are there accommodations for usage-based session extension, for example, from a public machine? We have a heavy use case on public machines, our existing system uses a 'short-medium term lived access token whose usage extends their expiry' type of session management. Additionally, we have a mobile use case (and additional cases in the future) that fits perfectly with the 'suggested flow' (which is why we're evaluating Supertokens in the first place). We'd like to utilize the suggested Supertokens flow, but with the ability to extend a short-term session based on usage. We were wondering if this was a use case and if there were recommendations around this type of behavior

Hey team , looks like supertokens is down . All the auth api's are failing with 500 . https://supertokens.com/dashboard-saas , the dashboard is not working as well . However the status page shows 100 % uptime https://supertokens.instatus.com/ . Can someone confirm this please .

Hey guys - where can I see what kind of user data is stored in the data?

hello.@rp_st when resetting password, how can I detect if newPassword is the same as old one? supertokens server is selfhosted, and is seperated from api backend. the only receives when resetting password are just password and token.

I want to override the SessionAuth's behaviour of checking if the session is present or not and if not redirect to login page. I know I need to modify the overrideGlobalClaimValidators field but I am having troubles finding documentation on it. I don't know what exactly to put. All I know is the authorization part where it checks the roles.