I believe the answer is no, but I wanted to check: can SuperTokens act as the SAML service provider? I need to provide an application that can communicate with auth services for a university, and universities overwhelmingly use Shibboleth SAML. Is there a way to use SuperTokens in my app currently?

@rp_st any ETA on 2FA support?

Hey, I have run into the infamous Safari itp blocker. I trying to get a password less flow with otp codes working in a iframed environtment under a page that we don't control the domain on. So we cant serve out content from the correct domain. I have switched to the header

tokenTransferMethod: "header"

flow instead of the cookie based one as suggested. Everything works fine in chrome and firefox, the

authorization

header gets set with the expected value and the backend is able to authenticate the request. But in safari no header is provided, which causes the flow to not work. The consome call for the otp works fine and we get a response from the server containing all the expected tokens. But the following request to the api does not contain anything and returns with a 401. After digging around a bit it in https://github.com/supertokens/supertokens-website/blob/master/lib/ts/fetch.ts it looks like even when using the header mode all the tokens still gets stored as cookies by the client and this will then also fail because of itp. But setting values in localstorage/session should still work, with some limitations, but it should get the flow running as expected for the current session at least. So is there a way to totally disable cookies and only store all the tokens in local storage when header mode is active?

Hi, I'm trying to run the supertokens-core from my local system, it was running fine before, now it is throwing this error.

What caused the crash: com.fasterxml.jackson.databind.exc.MismatchedInputException: Cannot construct instance of `io.supertokens.config.CoreConfig` (although at least one Creator exists): no String-argument constructor/factory method to deserialize from String value ('git update-index --skip-worktree modules.txt git update-index --skip-worktree settings.gradle git update-index --skip-worktree .idea/runConfigurations/CLI_Main.xml git update-index --skip-worktree .idea/compiler.xml git update-index --skip-worktree .idea/vcs.xml

prefix=`./utils/project-prefix`
url=https://bitbucket.org/vrai-labs if [[ $1 = "--ssh" ]] then url=git@bitbucket.org:vrai-labs fi
if [ $prefix == "supertokens" ]; then')
 at [Source: (File); line: 4, column: 1]

I'm using this command,

java -classpath "./core/*:./plugin-interface/*:./ee/*" io.supertokens.Main ./ DEV

please link

Hey !!! I am using supertokens python SDK as a backend with a self-hosted core. Whenever we delete the user from the user management dashboard (provided by supertokens) , the user gets deleted from the database tables that are provided by supertokens (in my case, I am using mysql database), but I want to delete the user from my application's external database at the same time whenever we click on the delete user from the dashboard. Is there a way to do it?

Is it possible to integrate SuperTokens with an encore.dev app? In general, encore.dev lets you build (in, honestly, the very best possible way) a set of lambda-type functions (which you can deploy pretty much anywhere). You specify just the function, and in a comment the URL that will be matched to that function at run-time. You really don't have to set up anything else, it's fantastic, and they deploy it. So I'm not talking about the ST core, but just the ST server routes -- is it possible to have ST "hook into" the encore.dev routing somehow? I'll ask on their slack channel as well. Thanks!

Hey, where can i see what cdi-version I use? Thanks

Hello! We have a little problem about implementation of Supetokens on Ionic/Capacitor. In particular about the native versions of it. Its like if the back-end side doesn't allow customScheme (ex: capacitor://app.id/home). After the basic implementation of docs we have this error on iOS: Unhandled Promise rejection: – "Please provide a valid domain name" Can some help me please? Thanks in advance!

Hi I'm using Supertokens for passwordless authentication. My backend is Node JS and Frontend is Angular. Im able to signup using the signinup and consume api call. But the issue is that I'm not able to create a session. Neither the cookie is getting stored in browser after the consume api call. when I checked the response header the set-cookie parameter is there. But its not storing the cookie. And When Im running the function getAccessTokenPayloadSecurely(), it throws the error session doesnt exist.