SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).

SuperTokens.com

Quick feedback about next.js tutorial for setting up the auth using app-router, in the configuration page you ask for installation of nextjs-cors: https://supertokens.com/docs/thirdpartyemailpassword/nextjs/app-directory/init, unless I missed it you never really use it, like it the pages router tutorial, and if someone is running auth API in a separate application (also next) like I do atm, CORS is still required. 

For the time being it looks like the missing piece is to add a section about  `headers()` within `next.config.js` or in the `middleware`