SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).

SuperTokens.com

Is it possible to have both Passwordless and EmailPassword recipies initialised at the same time on the backend? We want to serve 2 different apps (same top level domain). One frontend uses passwordless, the other uses email+password

Yea! this is totally possible! You can do it, and it should just work.

Ok I will give it a try.. I am looking to migrate users over to super tokens, but I dont want to have to force all users through a password reset flow. So step 1 is to silently create new users on supertokens every time a user succesfully logs in using the current auth system. Is it possible to just create a user, set a password, and have nothing emailed out to the user?

Then after a month of doing this I can switch over and users can just then login using the existing password

> just create a user, set a password, and have nothing emailed out to the user?
Yes. By default, this happens.

So the backend should call password.signup?

The recipe you are using should have a signup function. You can use that. It will send no emails and won’t have any side effects