The path created by the verification email (/auth/verify-email?token=XXX) leads me to a 404. Waht am I doing wrong? This is my frontend config:

SuperTokens.init({
  appInfo: {
      // learn more about this on https://supertokens.com/docs/thirdpartyemailpassword/appinfo
      appName: "boilerplate",
      apiDomain: "http://localhost:8000",
      websiteDomain: "http://localhost:3000",
      apiBasePath: "/auth",
      websiteBasePath: "/auth"
  },
  recipeList: [
    EmailVerification.init({
      mode: "OPTIONAL",
    }),
      ThirdPartyEmailPassword.init({
          useShadowDom: false,
          signInAndUpFeature: {
              providers: [
                  Discord.init(),
                  Google.init(),
                  Apple.init(),
              ],
              signUpForm: {
                termsOfServiceLink: "https://example.com/terms-of-service",
                privacyPolicyLink: "https://example.com/privacy-policy",
                formFields: [{
                  id: "password",
                  label: "Password",
                  validate: async (value) => {
                      // Your own validation returning a string or undefined if no errors.
                      if(value.length < 8){
                        return "Password has to be at least 8 characters long!";
                      }
                  }
              }]
            },
          },
          onHandleEvent: async (context) => {
            if (context.action === "SESSION_ALREADY_EXISTS") {
              return
            }
            if (context.action === "SUCCESS") {
              if (context.isNewRecipeUser && context.user.loginMethods.length === 1) { // sign up
                  sendSupertokensEmail()
              }
          }
        }
      }),
      Session.init()
  ]
});