SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).

SuperTokens.com

@everyone new release for node SDK (v6.0.2 - non breaking):
- Fixes an issue that allowed third party sites to log out users by calling the `/auth/session/refresh POST` endpoint without providing anti-csrf protection. More info about this here: https://github.com/supertokens/supertokens-node/issues/141.

If you are using an older version of the supertokens-node SDK, that can't easily be upgraded to 6.0.1, then please DM me so that we can provide this fix for your version as well.