SuperTokens Community VS node-oidc-provider

I get what you are trying to do, but it feels a bit insecure. Why not use an OSS passwordless project like https://github.com/supertokens/supertokens-core/ or https://github.com/teamhanko/hanko

Checkout https://supertokens.com/ - open source alternative to Auth0. It has a lot of free features and if you self host it, it's free at any scale. For our managed service, it's still far cheaper compared to Auth0.

SuperTokens

Building auth for your SaaS product shouldn't be hard. Try these free solutions for your next project 👇 http://supabase.com/auth free up to 50k users/month http://firebase.google.com/products/auth free up to 50k users/month http://aws.amazon.com/cognito free up to 50k users/month http://clerk.com free up to 10k users/month http://kinde.com free up to 7.5k users/month https://www.descope.com free up to 7.5k users/month https://supertokens.com free up to 5k users/month Save for later! Besides users/month what other features do you look for in auth products?

The Developer-First Security Week event is on August 7-11. The theme is shifting left with a security mindset with top expert speakers from Snyk, BoxyHQ, Microsoft, Google, Gitlab, Bearer, SuperTokens, Cerbos, and more...Come learn with us as the speakers dive into complex topics on Authorization, Authentication, Data Privacy.

Supertokens dont reinvent, just reuse

GitHub: https://github.com/supertokens/supertokens-core Website: https://supertokens.com/

Signing up - You're not actually signing up to anything. Supertokens (open source auth provider) is running locally on your machine. It's just a means for you to be able to have an account (and soon invite others to your project to collaborate together). The data doesn't leave your computer.

I don't have a direct answer for your questions but do suggest the canonical OAuth 2.0 implementation may be helpful for your learning too. LMK your thoughts. ➔ https://github.com/panva/node-oidc-provider

I could recommend https://github.com/panva/node-oidc-provider supports most of the oidc/oauth 2 rabbit hole specs.

This library forms the basis of a number of OIDC providers we, err, provide to our users.

You can also easily setup an OIDC server in Node using a certified OIDC lib like oidc-provider.

If it's nodejs auth servers you're after, look no further than here. Use it as-is, or as a library to build your own richer app.

You can take a look on node-oidc-provider

I am a little confused on how to implement an Auth server in node.js. There are plenty of libs that seem to do just that (ex: https://github.com/panva/node-oidc-provider) and then there's passport, which seems to be a full-fledged authentication framework? Will it serve my purpose or would it be overkill and I should just stick with simple libs like the one I mentionned. I can't seem to understand the difference between the two. Can someone explain?

SEEKING FREELANCER | Remote | NodeJS Dev with OpenID Connect experience

Looking for a NodeJS developer with OpenID / OAuth 2.0 experience to help with upgrading an OpenID Connect implementation. Specifically, the OpenID service depends on v6 of this library: https://github.com/panva/node-oidc-provider

We would like a review of our current implementation, and help with finishing a mostly-completed upgrade to v7 before we onboard 3rd-parties to our authentication and authorization infrastructure. We estimate the contract length to be between 1 - 2 months, part-time. To apply, send your CV and hourly rate to [email protected]. Please be sure to highlight your experience with the relevant technologies and protocols.

Have you looked for other OIDC/OAuth2 packages. Here's one in Node. That seems very interesting. https://github.com/panva/node-oidc-provider

I'm passing familiar with this area, but not as familiar as I should be...

How does this compare to something like this - https://github.com/panva/node-oidc-provider

Are they addressing the same need? Is Ory looking to get certified in these area? (Is it already?)