How to implement Multi Factor Authentication with super tokens

I have "staging" and "production". Production is set to "www.example.com" in appInfo(). So, "staging.example.com" is getting this error. I'm assuming this has to do with the "appInfo()" logic:

Access to fetch at 'https://www.finicky.pet/api/auth/session/refresh' from origin 'https://staging.finicky.pet' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: The 'Access-Control-Allow-Origin' header has a value 'https://www.finicky.pet' that is not equal to the supplied origin. Have the server send the header with a valid value, or, if an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled.

Does

SuperTokens

expose their error types in TypeScript? It'd be super helpful not to have to reproduce each of the potential types

How to save additional user information using Thirdparty recipe? I am using Linkedin to sign up and want to save user image URL, first name and last name.

Hello Team. How to add multiple frontend client to a single ST-CORE and AUTH-API, we have an app very much similar to canva.com, the frontend divided into two part 1. The data/content management (all content + content created by a user) created using "nextjs" 2nd The editor itself where user can go and edit (written in plain reactjs). Both frontend clients needed to get authentication layer. see the pic below.

Hi guys, trying to explore if supertokens is the right solution for us. right now we have our own

authentication

solution but we are searching for a more secure solution with session management 😉 the only thing whats not really clear for me, if we can use our existing UI. We have a multistep register form build with chakra-ui/react-hook-form?

Hi, I wanted to delete all users, so I connected to db directly and emptied all the tables (cloud managed service). Now the total no is 0, but the total active sessions shows 1. So there is a warning "number of active sessions is greater than the number of total users". Can I clean that up too? or is there a way to kill my instance and create a new one? Thank you very much!

And you guys are using Java, which is pretty pog. But why didn't you use the spring framework to make your lives easier?

hi, Im trying to verify a session by sending a post request to /recipe/session/verify with headers: { "api-key": "key", "cid-version": "2.13", "rid": "session", "content-type": "application/json; charset=utf-8" } and body { "accessToken": "token" } but i keep getting invalid api key. I have checked and restart several times with other keys and made sure they match. Any idea of what i am missing in this call?

Hi again. Quick question, the JWT token we get on clientside by

let jwt = (await SuperTokens.getAccessTokenPayloadSecurely()).jwt

and the token we get from backend method

session.getAccessTokenPayload().jwt

should return the same token right?