Favicon of SuperTokens

SuperTokens

Open source user authentication solution with prebuilt UI, custom password policies, session management, and hosted on your domain. Setup in 5 minutes.

Screenshot of SuperTokens websiteVisit SuperTokens

SuperTokens offers a comprehensive open source authentication solution that lets you build fast while maintaining full control over your user authentication system. Unlike traditional authentication services, SuperTokens hosts everything on your domain, eliminating redirects and providing a seamless user experience.

Key benefits include:

  • Quick setup - Get started in just 5 minutes with prebuilt UI components
  • Full customization - Use frontend SDKs and helper functions to build custom login pages
  • Domain hosting - Authentication flows hosted on yourdomain.com, no external redirects
  • Advanced features - Custom password policies, session limits, and multi-session management
  • Cost-effective - Open source with reasonable pricing for hosted services
  • Enterprise ready - Trusted by both startups and large enterprises

The platform provides both frontend and backend SDKs with simple configuration options. You can choose between prebuilt UI components for rapid deployment or build completely custom authentication interfaces using their comprehensive SDK. Features like session limiting, password policy enforcement, and multi-device session management come built-in, making it suitable for applications requiring robust security controls.

Features:

Supports passwordless passkey authentication compliant with WebAuthn using device‑based credentials or biometrics

UI translations can be customized by overriding translation strings or integrating with internationalization libraries

SAML integration requires a third‑party solution (BoxyHQ’s SAML Jackson)

Developers can replace the pre‑built login UI with their own custom UI using the SDK

Official integrations are available for Next.js, GraphQL, Hasura, NestJS, Netlify, AWS Lambda, Vercel, RedwoodJS and Supabase

Bulk import API allows migrating users with hashed passwords, roles, metadata and login methods into SuperTokens

Enterprise login offers multi‑tenancy with unique login methods, separate user pools and data isolation for each tenant

Roles and permissions can be created and assigned to users through the API and user management dashboard

Automatically or manually links different login methods to the same account when email or phone numbers match and are verified

Admins can implement impersonation by creating an endpoint that generates a session for another user for troubleshooting or support

The user management dashboard lets admins view users, reset passwords, revoke sessions and manage roles and permissions

Export users using the list users API endpoint

Supports multiple apps and multiple development environments (dev, staging, prod) within a single core deployment

Professional support plans include SLA guarantees with response times from 2 hours to 2 days

Professional support with SLA guarantees and multichannel access (email, Slack, MS Teams, video calls) caters to enterprise needs

Compliance:
Share:
Details:
View Repository
Featured projects

Become a sponsor of Auth0Alternatives:

Similar to SuperTokens:

B2B authentication that gets out of your way
Complete authentication solution built specifically for B2B products. Features organization management, RBAC, enterprise security, and thoughtfully designed client libraries for any tech stack.
Modern API-first identity stack for secure apps
Open Source
Battle-tested identity management platform with modular IAM stack, flexible deployment options, and GDPR compliance. Trusted by Fortune 500 companies.
Simplify blockchain development with wallet abstraction
Build onchain applications with embedded wallets, API wallets, and Newton AI agents. Trusted by 190,000+ developers and 40M+ users worldwide.
,

Command Menu