SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).

SuperTokens.com

I have a case where I have an API that I want to protect with SuperTokens, this API is used for a FrontEnd and some Bots. Are there any docs about how can I use SuperTokens in Machine-to-Machine authorization?

(almost) Every bot interaction has the `userId` (like a Discord bot would have access to the Discord `userId`), and it would be great if I could generate another type of JWT to be used by the Bot with specific limitations (like limiting some routes to be used only by the FrontEnd and other routes to be used only by the Bots, based on the JWT type or something). Does anyone have any clue about how can I do that? I know that I'll probably have to to a lot of customizations on my side, but having some tips about how to use SuperTokens for it would be great 😄

hey <@705572674713157684> see our m2m docs here: https://supertokens.com/docs/microservice_auth/introduction

For bot JWT, you can add some custom claim to the JWT using which you can recognise that it's for a bot