Open Source User Auth

Quick to implement and easy to customize. Built for startups
Get started
Trusted by
.
Trusted by
.
Hubble
.
Trusted by
.

Protect and manage your data

SuperTokens stores user information in your database enabling you to control and manage your user data

No complicated OAuth flows

Unless you require SSO, don’t worry about OAuth! Make auth simple again! How?

Save weeks

Auth can take weeks to build. See our 15 minute video for implementing SuperTokens

Free Forever

Run SuperTokens on your own infrastructure for unlimited users for free

Backed by

In essence, SuperTokens provides:

Login
Session Management

Login

A fully customisable frontend UI with default themes available

Email & password login and forgot password flows

Email verification

Social login

Note: Login is currently available only for Nodejs. Other tech stacks will be supported soon

Secure sessions

JWTs, CSRF, sessions can all be confusing. Leave it to us. We offer the most robust and secure session flow (Auth0 even uses one of our libraries).

Create, verify, refresh & revoke sessions.

Detects session hijacking using rotating refresh tokens.

See how we manage sessions
Note: Session management is available for Nodejs, Flask, Golang, Laravel & Javalin. Above representation is for Nodejs

…See our Github Readme to learn more

Lightning quick!

 Frontend implementation in 4.5 minutes. Backend in 2.5 minutes. With default configs
That’s what all our competitors (try to) claim. Here is our proof:
 Frontend implementation in 4.5 minutes. Backend in 2.5 minutes. With default configs

That’s what all our competitors (try to) claim. Here is our proof:
Interact with the SuperTokens demo app.
Sign up, see forgot password flow and more.
Interact with the SuperTokens demo app.
Sign up, see forgot password flow and more.
See interactive demo

 What others say

Salih Oktay Akar
@salihoktayakar
An open source project has been made for those who are tired of doing the Auth job over and over again in each project. My first impression is positive, I plan to use it in my next project if it doesn’t take long to learn.
It is written in Java but can be used independently.
Brecht De Rooms
@databrecht
SuperTokens seems to have a very capable technical team. Their blogs are great resources to implement authentication, they have theirheart in the right place: ‘security first’.
Bryan Smith
@OrionSeven
Thinking of ditching AWS Cognito for https://supertokens.io. I plan to give it a whirl this weekend. Their approach seems cleaner and Cognito has caused me some headaches trying to customize it for my workflow.
Nirmal Dayaramani
@nirmalnd
Supertokens, because that’s built to leave a global impression. Reminds me of Postman when I used it first. Meant to be global.
Anmol मैनी
@anmolm_
What are y’alls favorite Indian co from this YC batch?
Mine is deff http://supertokens.io.
Mark Mankarious
@markmanx
Really looking forward to trying this out. Feels like Supertokens may have a 1up on Keycloak though in terms of initial learning
curve and integration effort.Wish you guys the best on this quest!
hakim
@hakimbho
I found  SuperTokens blog post helpful
when I had to build server side session
management in python with JWT access
tokens + rotating refresh tokens (using the
falcon framework)
Joel Sequeira
@joelseq03
Recently learned about https://supertokens.io and I’m so hyped about this!
Really looking forward to trying this out. Feels like Supertokens may have a 1up on Keycloak though in terms of initial learning
curve and integration effort.Wish you guys the best on this quest!
Mark Mankarious
@markmanx
Love everything about this EXCEPT the choice of Java. Anyways, great work! This
has been something I’ve dreamt of for years (open source Auth0 replacement). I have no doubt you’ll find success.
Hunter Carter
@school_4_ants
Recently learned about https://supertokens.io and I’m so hyped about this!
Joel Sequeira
@joelseq03

Coming soon

2-factor auth
Magic Links
Visit our product roadmap page to learn more

Get started with SuperTokens today

Brandon Bayer

Founder @Blitzjs

I' m SO excited to finally ship built-in authentication in @blitz_js !!! Including design, we've been working on this for over 4 months! Thank you to @rishpoddar for being the genius behind our auth!!! Check out his company @supertokensio for framework agnostic session management

Anuj Chabbria

Cofounder @Report Card

Supertokens is our guardian angel. We’re able to secure multiple assets with one library, providing the most seamless and secure experience for our users. Kudos to the Super team!

Fares Siddiqui

Founder @Circadia

We were using AWS Cognito and storing sensitive identity tokens on the frontend. SuperTokens secured our user accounts and patient data, and built an integration for our custom setup

Stephano Paraskeva

Consultant

SuperTokens brings with it, what money can’t buy - trust and transparency. I use SuperTokens in all of my projects because I’m able to control where and how SuperTokens works within my apps, allowing for more granular control over my authentication

Get started
Join the SuperTokens Team!
See open positions
Join the SuperTokens Team - we're hiring!
See open positions
Join the SuperTokens Team - we're hiring!
See open positions
Come grow with us! We're looking for awesome people to join the SuperTokens team!
See open positions
.
Trusted by
.
Hubble
.
Trusted by
.
Hubble