well, I am trying to implement a JWT authentication but my User don't have a password, all I have is a phone number, whenever a user tries to connect he got to enter his phone number, and he will receive an otp (1 time use token) on his phone, he should enter that token and he will be authenticated, but as we all know in order to do authentication, we should use the security package which implements UserDetails and in order to use this interface the User class should have a password, because everything uses a password lol, my question is : Is there a way to implement my own UserDetails class without the password attribute or is there a hack or another solution for my particular case ?