
SuperTokens
Open source user authentication solution with prebuilt UI, custom password policies, session management, and hosted on your domain. Setup in 5 minutes.

SuperTokens offers a comprehensive open source authentication solution that lets you build fast while maintaining full control over your user authentication system. Unlike traditional authentication services, SuperTokens hosts everything on your domain, eliminating redirects and providing a seamless user experience.
Key benefits include:
- Quick setup - Get started in just 5 minutes with prebuilt UI components
- Full customization - Use frontend SDKs and helper functions to build custom login pages
- Domain hosting - Authentication flows hosted on yourdomain.com, no external redirects
- Advanced features - Custom password policies, session limits, and multi-session management
- Cost-effective - Open source with reasonable pricing for hosted services
- Enterprise ready - Trusted by both startups and large enterprises
The platform provides both frontend and backend SDKs with simple configuration options. You can choose between prebuilt UI components for rapid deployment or build completely custom authentication interfaces using their comprehensive SDK. Features like session limiting, password policy enforcement, and multi-device session management come built-in, making it suitable for applications requiring robust security controls.
Supports passwordless passkey authentication compliant with WebAuthn using device‑based credentials or biometrics
UI translations can be customized by overriding translation strings or integrating with internationalization libraries
SAML integration requires a third‑party solution (BoxyHQ’s SAML Jackson)
Developers can replace the pre‑built login UI with their own custom UI using the SDK
Official integrations are available for Next.js, GraphQL, Hasura, NestJS, Netlify, AWS Lambda, Vercel, RedwoodJS and Supabase
Bulk import API allows migrating users with hashed passwords, roles, metadata and login methods into SuperTokens
Enterprise login offers multi‑tenancy with unique login methods, separate user pools and data isolation for each tenant
Roles and permissions can be created and assigned to users through the API and user management dashboard
Automatically or manually links different login methods to the same account when email or phone numbers match and are verified
Admins can implement impersonation by creating an endpoint that generates a session for another user for troubleshooting or support
The user management dashboard lets admins view users, reset passwords, revoke sessions and manage roles and permissions
Export users using the list users API endpoint
Supports multiple apps and multiple development environments (dev, staging, prod) within a single core deployment
Professional support plans include SLA guarantees with response times from 2 hours to 2 days
Professional support with SLA guarantees and multichannel access (email, Slack, MS Teams, video calls) caters to enterprise needs