Neat!
I too spent a few days going back and forth trying to marry Next Auth passwordless with Strapi.
I didn’t like the idea of letting next auth access my DB.
And eventually did what you did. I just added passwordless directly to Strapi.
But I didn’t realise I could leverage the password field itself. So I created the whole separate model “loginRequest” that stores the login code associated with the login attempt and the user.
How do you expire the random password though?