Create a new project folder with the following command
mkdir node_auth
cd node_authThe JWT Authentication Architecture is built with:
- Node.js – a JavaScript run-time scripting language
- Expressjs – serves as a Node.js framework
- Mongoose – an ODM (Object Document Mapping) for accessing and mutating the database
- Bcryptjs – for hashing the passwords
- JsonWebToken – generating JWTs
- Redis – as caching storage for storing the user’s session
- MongoDB – as NoSQL database
- Zod – for validating user inputs
- cors – To allow Cross-Origin Resource Sharing between the backend and frontend
- Node.js
- Docker
- Docker-compose
- Typescript
- MongoDB
- Mongo-express
- Nginx
- redis
| RESOURCE | HTTP METHOD | ROUTE | DESCRIPTION |
|---|---|---|---|
| users | GET | /api/users | returns all the users and their information |
| users | GET | /api/users/me | return the logged-in user’s information |
| users | GET | /api/users/getUser | return user information by userId |
| users | POST | /api/users/update/user | update user information |
| users | POST | /api/users/delete/user | delete user |
| auth | POST | /api/auth/register | Create a new user |
| auth | POST | /api/auth/login | Logs the user in |
The first thing we always do before coding a Node.js project that will require external libraries is to initialize a new project with the following command.
npm initYou will be prompted to provide some answers. If you don’t want to answer questions then use the -yflag.
Run the command below to install TypeScript as a global dependency. This will allow us compile the TypeScript code into pure JavaScript using the TypeScript compiler.
npm init -y
npm install -g typescriptRun the following command to initialize a TypeScript project. A tsconfig.json file will be created in your root directory.
tsc --initAdd the following configuration options to your tsconfig.json file to allow us use decorators and more in our code.
{
"compilerOptions": {
"target": "es2016",
"removeComments": true,
"module": "commonjs",
"esModuleInterop": true,
"forceConsistentCasingInFileNames": true,
"strict": true,
"skipLibCheck": true
}
}npm i bcryptjs config cookie-parser dotenv express jsonwebtoken lodash mongoose redis zod corsnpm i -D morgan typescript ts-node nodemon These type definition files are needed for TypeScript to function properly.
npm i -D @types/bcryptjs @types/config @types/cookie-parser @types/express @types/cors @types/jsonwebtoken @types/lodash @types/morgan @types/nodeNow add the dev script to the package.json file
"scripts": {
"dev": "nodemon ./src/index.ts"
} to see docker-compose file click here.
create gen.js
const crypto = require('crypto');
const fs = require('fs');
// Generate a new key pair
const { privateKey, publicKey } = crypto.generateKeyPairSync('rsa', {
modulusLength: 512,
publicKeyEncoding: {
type: 'pkcs1',
format: 'pem'
},
privateKeyEncoding: {
type: 'pkcs1',
format: 'pem'
}
});
// Save the private key to a file
fs.writeFileSync('private.key', privateKey);
// Save the public key to a file
fs.writeFileSync('public.key', publicKey);
console.log('Key pair generated successfully.'); in jwt.ts file(./src/utils/jwt.ts):
import jwt, { SignOptions } from 'jsonwebtoken';
import { config } from "dotenv";
config();
import fs from 'fs'
export const signJwt = (payload: Object, options: SignOptions = {}) => {
const privateKey = fs.readFileSync('./private.key', 'utf-8');
const token = jwt.sign(payload, privateKey, {
...(options && options),
algorithm: 'RS256'
});
return `Bearer ${token}`
};
export const verifyJwt = <T>(token: string): T | null => {
try {
const publicKey = fs.readFileSync('./public.key', 'utf-8');
return jwt.verify(token, publicKey) as T;
} catch (error) {
return null;
}
}; start the docker containers
#up docker containers and build
docker compose up -d --build
#see the docker containers
docker compose ps
#stop the docker containers
docker compose down
#following logs of docker containers
docker compose logs -fNote: By default backend service listens on TCP/8080 port and mongo-express is available on TCP/8082.