Welcome back to the channel! In this series, we're going to build a secure authentication system in Node.js featuring email confirmation, password reset, remember me, and more. We'll use Express for routing, MongoDB for data persistence, and Redis for session storage. I'll also be using TypeScript for typechecking and autocomplete, although it's entirely optional, and you can safely follow this tutorial with vanilla JavaScript instead.

Most of us take authentication features for granted, as they're often baked into the framework and offloaded to library maintainers. For example, PHP has Laravel, Python has Django and Flask, Ruby has Rails, and so forth. Sadly, although Node comes in many flavors of microframeworks, only a few (Adonis, Feathers) offer login facilities out of the box.

If you're called on to roll out your own login system, there are many security considerations from password storage to token generation that are critical to get right in order to keep your customer data safe. With these videos, I will try to equip you with the tools and demonstrate best practices for building a custom authentication module with security and scalability in mind.

As a prerequisite, I suggest that you familiarize yourself with authentication on the web    • Authentication on the Web (Sessions, ...   and session management in Express    • Session Authentication in Express  

Why authentication is hard   / yournodejsauthenticationtutorialiswrong  

GitHub repo https://github.com/alex996/nodeauth