SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).

SuperTokens.com

Hello <@292333473786494976> & <@435107855880683521> , I have 1 question about the signup endpoint. How to protect it if we don't want to be spam by hacker which will try to create a user ?

Hi,

You could override the API when initialising SuperTokens and fail the request using some mechanism (IP based rate limiting for example)

Note that the SDK does not do this so you would have to build the limiting logic yourself