Hi team! I have just finished implementing SuperTokens into my NestJS BE. I have some APIs that I'm trying to protect with "@UseGuards(AuthGuard)". I'm trying to test these protected endpoints with Postman, but have no idea how. Can someone help me? Thanks in advance!

Which recipe are you using?

I'm using this: https://supertokens.com/docs/session/introduction

Ah right. So your only using session management?

Yep

I'm only using this as I won't be using a login form for my web app (I'll be authenticating users with google login)

Right. We have a recipe for social login + sessions as well

Can I skip the social login part? I want people to be redirected to Google signin the moment they enter my web app (it's an internal project)

Yea. Of course. You can implement that on your own and use supertoeks just for sessions

So, to sum up, I need to create a new user session to call the API endpoints from postman?

Well. You need to create some API on your backend that creates a new session. Usually this would be the login API. In your case the api that consumes the code sent by google

So, my understanding is, the flow would be something like: User auth-ing with google -> google returns a code -> I use that code to create a new user session -> users can call my backend APIs?

Yea. Exactly!

That's great! Thank you so much for the help!