First time trying out ST, really just looking for inexpensive/simple auth. Currently I have an API i...

.gidgiddoni

08/19/2022, 11:33 PM

First time trying out ST, really just looking for inexpensive/simple auth. Currently I have an API in python (using Sanic framework) and I want to add some security so I can start having beta users try it out. There is no frontend at the moment so I really just need to get a username/password in headers and return a token that can be used after that to authenticate. Is this a supported use case? I have been browsing the recipes and they mostly seem geared around FE and BE working together.

rp_st

08/20/2022, 4:10 AM

Hey!

rp_st

08/20/2022, 4:11 AM

If there is no frontend, how will the users use the app?

.gidgiddoni

08/20/2022, 12:42 PM

programmatically. For example, user sends a post request to /auth with a username and password in the headers and is returned an access token that can then be passed to other api endpoints and validated using a middleware.

rp_st

08/20/2022, 12:43 PM

I see. So this is possible. Just follow the backend setup instructions

rp_st

08/20/2022, 12:43 PM

That will expose the APIs that the user can call

rp_st

08/20/2022, 12:44 PM

You may also want to override the session recipe to just issue a JWT instead of access / refresh token if you want to keep things simple for the user (otherwise they will have to read from and set cookies and take care of refreshing)

rp_st

08/20/2022, 12:45 PM

https://github.com/supertokens/supertokens-auth-react/tree/master/examples/with-jwt-localstorage/api-server

rp_st

08/20/2022, 12:45 PM

That’s an example of how you can customise the session recipe to issue a simple JWT instead of access / refresh tokens in cookies

.gidgiddoni

08/20/2022, 12:50 PM

Okay that makes sense so far. 👍 For signing up new users, would I need to do that in the web console? Or how do I add them?

.gidgiddoni

08/20/2022, 12:52 PM

Also, I am using the Sanic framework for python, not sure if you are familiar. The python examples are all for other frameworks, is there a vanilla python example I could adapt? I'm actually considering changing the framework bc I've found a few other pain points where other tools don't integrate as well as I want.

rp_st

08/20/2022, 1:39 PM

We fully support django, flask and fastapi. If you want to use another framework, you will have to make APIs yourself in that framework which call the functions from our SDK

rp_st

08/20/2022, 1:39 PM

For example, we have a sign_up and sign_in function which you can call in your APIs which the frontend calls

rp_st

08/20/2022, 1:40 PM

In this case, the example I sent above is not really applicable since that assumes you are integrating with one of the frameworks that we do fully support

4 Views

Previous Next

SuperTokens.com

SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).