Which auth method do you implement first in your app?

To improve SuperTokens, an open-source auth solution, I am seeking your feedback on implementing auth

Passwordless or social login (which in my opinion is a part of the passwordless universe considering that most people stay logged in to their social media a/c for a pretty long time) is the way to go

Email/Password is a must, but I prefer Social Login because it doesn't require users to remember passwords for our product

I will choose Passwordless.

The first is always Email and Password, I prefer a Passwordless magic link or OTP for the second auth method.

Passwordless so I can use my fingerscan or an external hardware token