SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).

SuperTokens.com

<@!207802454526525440> 
> I  suppose on the backend, particularly websiteDomain, this is only relevant if we're using the EmailPassword Recipe, would that be right?
We also provide email verification with thirdparty (social login) recipe. So there too. But only if you have enabled email verificaiton. 
We also use this value to determine the properties of the session cookies. For example the value of `sameSite` is determined by if the `apiDomain` and the `websiteDomain` share the same top level domain.