supertokens-core
supertokens-core copied to clipboard
supertokens
Open source alternative to Auth0 / Firebase Auth / AWS Cognito
Functions for password reset: - [ ] generate password reset token function - [ ] redeem password reset token - [ ] get user from token (without redeeming) - [...
We can do this by creating sets of tables right when they are needed, and not upfront. So when a query comes for a certain recipe, all the tables of...
## 🚀 Feature As a security architect / person answerable for the security posture of a service, I want supertokens-core to support TLS for inbound connections, so that it can...
## 🚀 Feature As a developer or SRE supporting production workloads, I want service metrics from SuperTokens core, so that I can distinguish baseline / normal behavior from anomalous /...
## ❓ Questions and Help - Ask the user to have a SQL database only used for advisory locking - Use another service like redis for locks only. - This...
Right now we show a waiting timer that has a lot of text and is not understandable by anyone really..
(These will be done after release of thirdparty and thirdparty + emailpassword login) - [x] https://github.com/supertokens/supertokens-core/issues/154#issuecomment-767323453 - [x] https://github.com/supertokens/supertokens-core/issues/154#issuecomment-768166913 - [ ] Handle OAuth 1.0 since some providers like Twitter...
Right now, we run the tests using the full Java JDK, but during prod, we use only the JRE with a subset of all modules.. this has a risk that...
Disallow user to have the same base api and website path in case website and api domain are the same
- We can throw an appropriate error in this case - We need to throw an error in the driver and frontend SDK level
## Prevent login CSRF ## Prevent usage of stolen password reset token Do this by storing a second token in the browser which initiated the password reset flow. This token...
Metadata
Owner
Metadata
Open source alternative to Auth0 / Firebase Auth / AWS Cognito