User Sessions and Auth

How do people normally handle user sessions and auth? Use a third party auth provider and store sessions in JWT's? Would it be awful to implement my own password auth and store sessions in a cookie encrypted GUID and D1? FYI I'm using Node.