The goal of this project is to practice using the following tools and packages:

jest, supertest, react testing, continuous integration
mongoose validation, oauth, nodemailer, passport, multer
bootstrap, formik

while deepening my understanding of refresh tokens and csrf attacks.

Demo deployed on Render.

References

Demystifying CORS, CSRF tokens, SameSite & Clickjacking - Web Security

Refresh Token Rotation and Reuse Detection in Node.js JWT Authentication

React CSRF Protection Guide: Examples and How to Enable It

Double Submit Cookie

React Testing Tutorial

React Formik Tutorial

NodeJS - The Complete Guide (MVC, REST APIs, GraphQL, Deno)