SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).

SuperTokens.com

Hello, The `st-access-token` header returned by `/apiBasePath/signinup/code/consume` is missing the `aud` field. This causes an auth error in MongoDB Data API when using **custom-token** authentication via `/auth/jwt/jwks.json`. The Data API expects its app id in jwt's `aud`, but it can also be set to other constant values. Including the `aud` field in the header is crucial for proper authentication. Is there a configuration somewhere so I can set the `aud` field which is coming from passwordless auth flow?