https://supertokens.com/ logo
Title
k

Kaktus 🌵

12/26/2022, 12:39 PM
Do you guys think it could be possible to integrate custom login protocols such as SRP (Secure Remote Password) as a custom recipe ? Would it require changes to the SuperTokens server or it can be handled 100% consumer-side ?
r

rp

12/26/2022, 12:40 PM
hey @
hey @Kaktus 🌵
k

Kaktus 🌵

12/26/2022, 12:40 PM
The authentication server needs to keep track of the state of the protocol, that's why i'm asking
r

rp

12/26/2022, 12:41 PM
i think you can customise your way through our default impl via overrides to achieve this
let me read up on SRP a bit
So im not too famiilar with SRP. But @porcellus from our team is. He should be available tomorrow sometime. So let's waiit for him
k

Kaktus 🌵

12/26/2022, 12:58 PM
Don't worry, thanks for you time 🙏
r

rp

12/27/2022, 10:21 AM
hey @Kaktus 🌵 so I had a word with @porcellus and we concluded that it's best if you implement SRP on your own and then use our session recipe to create a new session after you have verified the user's credentials and have their user ID. You don't need to use our EmailPassword recipe in this case at all. That being said you can still use the user roles, user metadata, email verification recipes since they don't depend on EmailPassword recipe being used.
k

Kaktus 🌵

12/27/2022, 10:24 AM
Hey ! Thanks for you answer ! I'll try to implement it in that way :)
r

rp

12/27/2022, 10:25 AM
you can even use the usermetadata recipe to store stuff like the salt, verifier against the email ID.
and here are the docs for using session only recipe: https://supertokens.com/docs/session/introduction
k

Kaktus 🌵

12/27/2022, 10:25 AM
I'm on the recipe list, where can I find the usermetadata one ?
r

rp

12/27/2022, 10:26 AM
thats actually a part of other recipe docs. For example here: https://supertokens.com/docs/emailpassword/common-customizations/usermetadata/about
k

Kaktus 🌵

12/27/2022, 10:27 AM
Alright, thanks for you help ! :)