Skip to content

CodeDemos/demo-basic-authentication

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
.gitignore
.gitignore
 
 
README.md
README.md
 
 
bcrypt.js
bcrypt.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
server-1.js
server-1.js
 
 
server-2.js
server-2.js
 
 
server-3.js
server-3.js
 
 

Repository files navigation

Basic Auth w/ Passport and Bcrypt

Step 1: Compare hardcoded plain-text passwords.

  • Instantiate a strategy and implement a basic password comparison
  • Protect endpoint with Passport basic strategy using a hardcoded UN/PW
  • In browser, go to: http://localhost:8080/api/protected/
    • Should be promopted for UN/PW by browser
    • Type in bobuser/baseball and submit
    • Should get back "Hello, bobuser"

Step 2: Add Mongo/Mongoose so we can work with multiple users.

  • Create a POST /api/users endpoint that stores the plain-text UN/PW
  • Add a user, and verify the user is saved in the DB
  • Update Basic Strategy to find the user and compare password
  • In browser, go to: http://localhost:8080/api/protected/
    • Should be promopted for UN/PW by browser
    • Type in bobuser/baseball and submit
    • Should get back "Hello, bobuser" plus details

Step 3: Finally, add Bcrypt to hash the passwords

  • Add bcrypt.hash to hash password before persisting to DB
  • Add bcrypt.compare to validate passwords when comparing

Bonus file

  • bcrypt.js is a standalone demo of .hash() and .compare()

About

No description or website provided.

Topics

website bcrypt basic-authentication glitch express-passport

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages