Do you guys think it could be possible to integrate custom l

Question

Do you guys think it could be possible to integrate custom login protocols such as SRP Secure Remote Password as a custom recipe Would it require changes to the SuperTokens server or it can be handled 100 consumer side

rp · Answer

hey

rp · Answer

hey < Kaktus >

Kaktus 🌵 · Answer

The authentication server needs to keep track of the state of the protocol that s why i m asking

rp · Answer

i think you can customise your way through our default impl via overrides to achieve this

rp · Answer

let me read up on SRP a bit

rp · Answer

So im not too famiilar with SRP But < porcellus> from our team is He should be available tomorrow sometime So let s waiit for him

Kaktus 🌵 · Answer

Don t worry thanks for you time

rp · Answer

hey < Kaktus > so I had a word with < porcellus> and we concluded that it s best if you implement SRP on your own and then use our session recipe to create a new session after you have verified the user s credentials and have their user ID You don t need to use our EmailPassword recipe in this case at all That being said you can still use the user roles user metadata email verification recipes since they don t depend on EmailPassword recipe being used

Kaktus 🌵 · Answer

Hey Thanks for you answer I ll try to implement it in that way

rp · Answer

you can even use the usermetadata recipe to store stuff like the salt verifier against the email ID

rp · Answer

and here are the docs for using session only recipe https supertokens com docs session introduction

Kaktus 🌵 · Answer

I m on the recipe list where can I find the usermetadata one

rp · Answer

thats actually a part of other recipe docs For example here https supertokens com docs emailpassword common customizations usermetadata about

Kaktus 🌵 · Answer

Alright thanks for you help