If you want a JWT, then you should use the feature we released today: https://supertokens.io/docs/thirdpartyemailpassword/common-customizations/sessions/with-jwt/enabling-jwts. With this, you can extract a JWT from the session and then verify that using any standard JWT verification method.