This project is an implementation of JWT authentication to build a Login system between an API and front-end app that works as a whole.
This can serve as a boilerplate to bootstrap authentication logic for your web app.
See this blog.
This project is built using MERN stack.
- ReactJs
- Redux-toolkit, for centralized state management.
- React-router-dom, for routing without making http roundtrip.
- React-bootstrap, for ready made components to use.
- Bootstrap V5, for styling the application.
- Axios, for making API calls.
- Formik for form validations.
- ExpressJs
- Mongoose
- Nodemailer
- Express-validator for bullet-proof data validation and sanitization
- Cors for Cross-Origin request configuration
- Bcryptjs for password hashing
- Nodejs Crypto module
- MongoDB(Atlas version)
- This project uses JWT based authentication.
- Silent and automatic reauthentication; without user intervention.
- HTTP specs observed.
- Bullet proof cors configuration for cross-origin requests.
- Data Sanitization at Client level and Server level.
- Forgot password/password reset.
- Logout from all Devices.
- Redux State Management with redux-toolkit.
- One notifications component, and it works everywhere(and automatically).
To run this project, start by forking it and git clone the repository into your machine.
This project has two folders that hold logic for separate layers, i.e the presentation layer(Frontend) located in client folder, Application and Database layer(Backend) found in server folder.
- Open the source code in your favourite editor.
- Open your terminal to this project location.
- Split your terminal into two or open another tab of your terminal.
- For the Client
cd client/standardto change into directory with the presentation layer.- Then
npm install.
- For the Server
- Go to the other terminal and
cd server. - Then
npm install. - Copy
.env.examplefile to.env.
- Go to the other terminal and
Next you need to get configurations for .env files.
It should be looking like this:
MONGODB_URI=
AUTH_REFRESH_TOKEN_SECRET=
AUTH_REFRESH_TOKEN_EXPIRY=
AUTH_ACCESS_TOKEN_SECRET=
AUTH_ACCESS_TOKEN_EXPIRY=
AUTH_EMAIL_USERNAME=
AUTH_EMAIL_PASSWORD=
EMAIL_FROM=
RESET_PASSWORD_TOKEN_EXPIRY_MINS=
| Name | Description |
|---|---|
| MONGODB_URI | Connection string to MongoDB database. It could be Atlas or local installation of MongoDB |
| AUTH_REFRESH_TOKEN_SECRET | Secret that will be used to sign Refresh token |
| AUTH_REFRESH_TOKEN_EXPIRY | Expiry length of the Refresh Token |
| AUTH_ACCESS_TOKEN_SECRET | Secret that will be used to sign Access token |
| AUTH_ACCESS_TOKEN_EXPIRY | Expiry length of the Access Token |
| RESET_PASSWORD_TOKEN_EXPIRY_MINS | Time in Minutes to expiry of password reset link. Default is 5 |
| AUTH_EMAIL_USERNAME | SMTP email username to be used with NodeMailer |
| AUTH_EMAIL_PASSWORD | SMTP email password to be used with NodeMailer |
| EMAIL_FROM | The sender that will be set when sending email |
You can run the project using configured scripts.
To run the backend, cd into the server folder then start then type the command in your terminal:
npm run dev
Start testing API endpoints quickly by importing postman_collection_API.json into your Postman app.
To run the frontend, cd into client/standard folder and run the comand in you terminal:
npm start
- Twitter: @smitterhane
- Email: @smitterhane
- This project is MIT licensed.