Node.JS Express Security: Authentication and Authorization

Mastering authentication and authorization with Node.JS Express

This bootcamp has a goal to introduce web application development with Node.JS and Express. For database, we use MySQL to store the data. The bootcamp focuses on security and authorization. The following is a list of highlight topics:

What you’ll learn

  • Implementing authentication on web application with NodeJS Express.
  • Implementing authorization on web application with NodeJS Express.
  • Applying CAPTCHA On User Registration.
  • Building Authentication-based JWT Token.
  • Multi-Factor Authentication for NodeJS Express.
  • Building Roles-Based Authorization for NodeJS Express.

Course Content

  • Introduction –> 2 lectures • 3min.
  • User Registration –> 7 lectures • 50min.
  • Authentication and Authorization –> 11 lectures • 1hr 3min.
  • Source Codes –> 1 lecture • 1min.

Node.JS Express Security: Authentication and Authorization

Requirements

  • Having knowledge of basic NodeJS programming.

This bootcamp has a goal to introduce web application development with Node.JS and Express. For database, we use MySQL to store the data. The bootcamp focuses on security and authorization. The following is a list of highlight topics:

  • Use Registration
  • Authentication
  • Authorization

We start to learn about user registration. We create a registration form with Node.js and Express. We use Handlebar for Express Template View. User email will be confirmed in our application. To prevent from bots, we implement CAPTCHA on registration. We use reCaptcha from Google.

  • Database Design for User Registration: MySQL
  • Setting up project
  • User Registration
  • User Registration with Email Confirmation
  • Resending Email Confirmation Token
  • Implementing CAPTCHA on User Registration

Next topic is authentication. We will challenge users to verify user account. We use username and password for authentication. we can enable for user authentication with confirmed email. Each user email that doesn’t be confirmed yet will not access web resources. We also implement multi-factor authentication. We send codes to user email to verify user authentication.

Last, we implement Role-based authorization. We define user roles and then assign roles to each user. We will implement authorization with Express middleware.

Pre-requisite

  • Having knowledge of web development such as HTML5, CSS and JavaScript
  • Having knowledge of Node.js development
  • Computer with installed Windows , Linux or macOS

All materials are delivered with step-by-step approach. See you on my course.

Get Tutorial