Hi there! I'm trying to integrate SuperTokens with my Python API but it looks like there are some incompatibilities with other libs (Django 4.0.3). Is the cookie spec documented somewhere so I can verify it myself without using the SDK?
More generally, I'd really encourage documenting the cookie spec. I'm fine with adopting a 3rd-party tool for auth on the frontend but I need to be confident that I can authenticate with any of my services even if you don't have an SDK for them.
r
rp
07/09/2022, 7:00 AM
Fair enough!
When you say spec, you mean pseduo code for how to go about verifying the access token yourself manually. Right?
v
veritas
07/09/2022, 7:19 AM
Yeah, that would be ideal. The base case is comparing to JWTs which are very well-documented, despite their security flaws.