SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).

SuperTokens.com

The payload we have has the following:
- `sessionHandle`: A constant ID per session.
- `userId`
- `refreshTokenHash1`: a reference to this token's refresh token
- `parentRefreshTokenHash1`: a reference to the refresh token that was used to create this access token.
- `userData`: Any JSON object that you wish to provide
- `antiCsrfToken`: used to check if the incoming anti-csrf token is valid or not
- `expiryTime`: in Milliseconds
- `timeCreated`: in Milliseconds
- `lmrt`: Used to check when the user had last manually authenticated