https://github.com/akashkobal/mern-authentication

Last synced: 9 months ago
JSON representation

Host: GitHub
URL: https://github.com/akashkobal/mern-authentication
Owner: AkashKobal
License: mit
Created: 2024-12-17T19:31:44.000Z (about 1 year ago)
Default Branch: main
Last Pushed: 2024-12-29T13:16:43.000Z (about 1 year ago)
Last Synced: 2025-02-15T14:52:48.325Z (11 months ago)
Language: JavaScript
Size: 430 KB
Stars: 2
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE
- Code of conduct: CODE_OF_CONDUCT.md
- Security: SECURITY.md

Awesome Lists containing this project

README

# MERN Authentication System

A secure and scalable authentication system built using the MERN stack (MongoDB, Express.js, React.js, Node.js). This project supports user registration, login, logout, OTP-based email verification, and JWT-based authentication.

## Features

- **User Registration**: Securely register new users with hashed passwords.
- **User Login**: Authenticate users with email and password.
- **JWT Authentication**: Issue JSON Web Tokens for session management.
- **Email Verification**: Send OTP to users for account verification.
- **Protected Routes**: Middleware to secure endpoints.
- **Role-based Access**: User roles (e.g., admin, user).
- **Password Reset**: OTP-based password reset functionality.

---

## Tech Stack

### Backend
- **Node.js**: JavaScript runtime for server-side logic.
- **Express.js**: Web framework for routing and middleware.
- **MongoDB**: NoSQL database for data storage.
- **Mongoose**: ODM for MongoDB.

### Security & Utilities
- **bcrypt**: Hashing library for password security.
- **jsonwebtoken**: For issuing and verifying tokens.
- **Joi**: Schema validation for inputs.
- **Nodemailer**: For sending emails.
- **dotenv**: Environment variable management.

---

## Installation

### Prerequisites
- Node.js and npm installed.
- MongoDB installed and running locally or a cloud MongoDB URI.

### Steps

1. **Clone the Repository**
```bash
git clone https://github.com/AkashKobal/mern-authentication.git
cd mern-authentication
```

2. **Install Dependencies**
```bash
npm install
```

3. **Environment Variables**
Create a `.env` file in the root directory and configure the following variables:
```
MONGO_URI=your-mongo-db-uri
JWT_SECRET=your-jwt-secret
SENDER_EMAIL=your-email
SENDER_PASSWORD=your-email-password
NODE_ENV=development
```

4. **Run the Server**
```bash
npm run server
```

---

## API Endpoints

### Authentication Routes

- **POST** `http://localhost:5000/api/auth/register`
- Registers a new user.
- Required Fields: `name`, `email`, `password`.

- **POST** `http://localhost:5000/api/auth/login`
- Authenticates an existing user.
- Required Fields: `email`, `password`.

- **POST** `http://localhost:5000/api/auth/logout`
- Logs out the user by clearing the token.

- **POST** `http://localhost:5000/api/auth/send-otp`
- Sends OTP for email verification.
- Required Fields: `userId`.

- **POST** `http://localhost:5000/api/auth/verify-otp`
- Verifies email using OTP.
- Required Fields: `otp`, `userId`.

- **GET** `http://localhost:5000/api/auth/is-authenticated`
- Checks if the user is authenticated.
- Requires a valid JWT token.

---

## Project Structure

---

## Middleware

- **Validation Middleware**:
- `registerValidation`: Validates user registration inputs.
- `loginValidation`: Validates login inputs.

- **Authentication Middleware**:
- `userAuth`: Validates JWT tokens and protects routes.

---

## Future Enhancements

- Password reset functionality.
- Enhanced role-based access control (RBAC).
- Integration with frontend (React.js).
- Rate limiting and advanced security features.

---

## Contributing

Contributions are welcome! Please fork the repository and submit a pull request for any changes.

---

## License

This project is licensed under the [MIT License](LICENSE).

---

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/akashkobal/mern-authentication

Awesome Lists containing this project

README