Open-core user authentication with login, session management, and on-premises control of user data
- Stars15.1k
- Forks668
- Open Issues141
Other
- Java
- JavaScript
- TypeScript
About SuperTokens
SuperTokens is an open-core authentication provider for adding login and session management to applications. It is positioned as an alternative to proprietary login providers like Auth0 and AWS Cognito, with on-premises deployment so user data stays in your own database.
The architecture uses three parts: a frontend SDK that manages session tokens and renders login UI widgets, a backend SDK that exposes sign-up, sign-in, signout, and session refresh APIs, and SuperTokens Core, an HTTP service for core auth logic and database operations. Features include passwordless, social, email password, phone password login, MFA, roles, microservice authentication, and multi-tenancy.
SDKs are available for languages and frameworks including Node.js, Go, Python, React.js, React Native, and Vanilla JS. SuperTokens Core is Java-based and distributed with the JDK in binary and Docker images. The project is open-core and can be used for free with no limits on the number of users.
Key features
- Passwordless, social, email password, and phone password login
- Session management with signout and session refresh APIs
- Multi-factor authentication, user roles, and microservice auth
- Multi-tenancy and organization support for Enterprise SSO
- User Management Dashboard for sessions, metadata, roles, and accounts
Details
- First released
- 2020
- Self-hosting
- On-premises with your own database
- Architecture
- Frontend SDK · Backend SDK · Core
- Core
- Java HTTP service
- Auth methods
- Passwordless · social · email · phone
- Pricing
- Free, no user limits