| title | author |
|---|---|
API Authentication With JWT |
4ugury |
Authentication API with nodejs, mongodb, and JWT.
npm install
npm start
( please add mongo con string to .env file )
POST http://localhost:3000/api/user/register
example json data
{
"name" : "theadmin",
"email" : "root@dasith.works",
"password" : "Kekc8swFgD6zU"
}
Success
{
"user": "theadmin"
}
Email Exist
Email already Exist
Name Exist
Name already Exist
length of charactors should be more than 6 digits and email should be valid email or else , it will gives you an error
example
"name" length must be at least 6 characters long
"email" must be a valid email
"password" length must be at least 6 characters long
POST http://localhost:3000/api/user/login
example json data
{
"email" : "root@dasith.works",
"password" : "yourpasswordhere"
}
if success you will get a JWT token
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJfaWQiOiI2MTE0NjU0ZDc3ZjlhNTRlMDBmMDU3NzciLCJuYW1lIjoidGhlYWRtaW4iLCJlbWFpbCI6InJvb3RAZGFzaXRoLndvcmtzIiwiaWF0IjoxNjI4NzI3NjY5fQ.PFJldSFVDrSoJ-Pg0HOxkGjxQ69gxVO2Kjn7ozw9Crg
if Email or password is wrong
"email" must be a valid email
"password" length must be at least 6 characters long
Password is wrong
Email is wrong
in this private route admin users can see if there admins , and normal users can see if there normal and if you are not authenticated you will get a error
GET http://localhost:3000/api/priv
auth-token ( JWT token got from login ) should be in header
auth-token : eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJfaWQiOiI2MTE0NjU0ZDc3ZjlhNTRlMDBmMDU3NzciLCJuYW1lIjoidGhlYWRtaW4iLCJlbWFpbCI6InJvb3RAZGFzaXRoLndvcmtzIiwiaWF0IjoxNjI4NzI3NjY5fQ.PFJldSFVDrSoJ-Pg0HOxkGjxQ69gxVO2Kjn7ozw9Crg
if you are the admin you will get
{
"role": {
"role": "you are admin",
"desc": "this is only for admin"
}
}
If you are normal user
{
"role": {
"role": "you are normal user",
"desc": "<user name>
}
}
If you are not Verified
Access Denied
