Security & Auth Auth Library stable

SuperTokens

Open-source authentication for web and mobile apps

14.0K stars Since 2020
Website → GitHub

Flexible authentication solution with email/social/passwordless login, session management, MFA, RBAC, and multi-tenant support.

License
Apache-2.0
Min RAM
512 MB
Min CPUs
1 core
Scaling
single_node
Complexity
intermediate
Performance
medium
Self-hostable
K8s native
Offline
Pricing
fully free
Docs quality
good
Vendor lock-in
none

Use cases

  • Drop-in authentication for web/mobile apps
  • Social login with email/phone verification
  • Multi-tenant SaaS authentication

Anti-patterns / when NOT to use

  • Core in Java — some prefer lightweight solutions
  • Self-hosted needs separate PostgreSQL/MySQL
  • Less feature-rich IAM than Keycloak

Compare with alternatives

Replaces / alternatives to

  • Auth0
  • Firebase Auth
  • Cognito

Technical specs

Language
JavaNode.js
API type
REST
Protocols
HTTP
Deployment
docker

Community

GitHub stars 14.0K
Contributors 0
Commit frequency weekly
Plugin ecosystem none
Backing SuperTokens
Funding open_core

Release

Latest version
Last release
Since 2020

Best fit

Team size
smallmedium
Industries
general

Tags

  • authentication
  • session-management
  • social-login
  • passwordless
  • mfa
  • rbac
  • multi-tenant