SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).

SuperTokens.com

Out of curiosity... Why do the tokens use custom claim names instead of the well-known/existing claim names? I'm thinking, in particular, of `sub`, `exp`, and `iat` (from RFC 7519) and `sid` (OIDC).
```json
{
  "sessionHandle": "0d...",
  "userId": "97d...",
  "refreshTokenHash1": "550...",
  "userData": {},
  "expiryTime": 1623598349546,
  "timeCreated": 1623594749546,
  "lmrt": 1623594749546
}
```