A Blog full of Web Projects

Node Express REST API Membership system + Email notification - JWT and Refresh Token

02-December-2024

• Node.js

Node Express REST API Role based Membership system with Email Verification and Forgot Password using Sequelize ORM towards a MySQL DB - Authentication by JWT + Refresh Tokens

Volta was used for Node Version Management switching between Node versions

• The Web API at GitHub
• React Client at GitHub

Functionality of the Web App

• JWT authentication with Refresh Tokens
• Refresh token rotation
• Revoked token reuse detection
• Email sign up and verification
• Forgot password and reset password functionality
• Role based authorization with two roles "User" and "Admin"
• CRUD Account management routes with role based access control

Tech used for building the Web App

• Node.js
• Sequelize used to implement the ORM at the Web API
• The Node.js Web API is hosted at Azure App Service with the Free App Service Plan
• The React Client is hosted at a traditional Webhotel
• MySQL as the Database for both Dev + Prod
• CORS Policy implemented by Node.js and at Azure
• JWT Token for access secure routes
• Refresh Token by HTTP only Cookie to generate new JWT Tokens

• #node
• #express
• #react
• #sequelize
• #orm
• #mysql
• #azure
• #rest-api