You should pick the passwordless recipe first

Email / sms OTP

And then, after that’s completed, as users to enter a password using custom UI

And then create an email password user from that and link that account to the passwordless one (using our account linking feature)

Hey @rp_st ,sorry to interrupt you again. But I am confused that can I able to create user from backend using my own API. like using api key or something like that. Let me share you my use case. When a user invites another user then we send an email or sms to them. When they clicked on the email I need to create that user with verified true. this is one case but I'm sure I need some kind of control to create/update/delete user in my backend environment. I checked the docs but didn't find something like this. Can we have support for this?

see the functions here: supertokens.com/docs/nodejs

Hey @rp_st, We have an email and phone no for the user and we are only maintaining is email verified state? What if I sign up with email + OTP? later I added a phone no as well (not verified yet). When I logged in with my phone no in that case it create a new account or logged in to an existing one? I have this kind of requirement users can able to log in with email or phone no. if he/she added to their profile. Can you guide me how can I handle this case?

See our MFA docs.

Or actually. Not even that’s required

Just enable automatic account linking feature. And then when the user enters their mobile number, call the create code api with it which will send them an OTP on it. And show a ui for them to enter an OTP which calls the consumeCode api. If they enter the right OTP the consumeCode api will link that user to the existing session user and you are done.

Hey @rp_st, I'm just one step away from choosing super token as an auth provider. Can I able to create and assign a session based using userId? My requirement: I have a table in db for managing invitations and who sent it and status of it with hash. When invited user clicked on the link given in email or mobile then based on hash I will create that user using node-sdk function. I also need to logged in to that user (somehow need to create a session just like we got affter submitting otp in passwordless) and redirect to profile completion page. for creating user backend side do we have a function like this thirdPartyManuallyCreateOrUpdateUser that creates a verified passwordless user & I also need to find a function to create and send a session with it. Can I do that or I need to re-invent the wheel by coding all by myself ☹️ ?

There isn't a problem using session customizations with thirdparypasswordless recipe right?

Last question, I guess then I'm good to go with integration with my application. Which function allows me in thirdpartypasswordless to create a user without sending verification mail or SMS and allows me to set either email or phone with verification status true. thirdPartyManuallyCreateOrUpdateUser is only for social login I guess. and passwordlessSignInUp will send verification mail because it doesn't have a isVerified property.

and to add a phone number to an existing user, you use updatePasswordlessUser