NestJs REST API with MongoDB #4 - Authentication, Login/Sign Up, assign JWT and more

Coding With Abbas

27 Jan 202322:52

Summary

TLDRThis tutorial video guides viewers through implementing authentication in a REST API using Nest.js. It covers setting up the Passport library, creating authentication modules, and generating JWT tokens for user login and registration. The video also demonstrates how to validate user credentials and handle errors. Viewers are encouraged to watch the next video for securing routes and additional authentication features.

Takeaways

📚 In previous videos, we created a simple REST API, added search, pagination, and handled errors.
🔐 This video focuses on implementing authentication in our API with two parts: creating login and register routes and providing JWT tokens.
📖 The next video will cover authorizing users and protecting routes from unauthenticated access.
🛠️ We use Nest.js for our API and configure authentication with the Passport library.
📦 Several packages need to be installed, including nest.js/passport and JWT modules.
🔧 We create an auth module, controller, and service, and configure Passport and JWT in the auth module.
💾 The user schema is defined with fields for email and password, ensuring email uniqueness and adding timestamps.
🔑 JWT configuration includes setting secret and expiration time using environment variables.
🚀 Auth service handles user registration with hashed passwords and returns a JWT token.
🧪 Validation checks are performed during login, and JWT tokens are generated and returned upon successful login.
🔍 Detailed steps include installing necessary packages, setting up schemas, configuring modules, and creating routes for login and signup.
🎬 The next video will continue with protecting routes using JWT strategy and saving the user in the book.

Q & A

What is the main focus of the video?
-The video focuses on implementing authentication in a REST API using Nest.js, including creating login and register routes and issuing JWT tokens to users.
Why is the Passport library used in Nest.js for authentication?
-Nest.js uses the Passport library because it is a popular library for Node.js used for authentication, and it integrates well with Nest.js through the 'nestjs/passport' package.
What are the packages needed to be installed for implementing authentication in the video?
-The packages needed include 'passport', 'nestjs/passport', '@nestjs/jwt', and 'bcryptjs' for hashing passwords.
How does the video guide the creation of the authentication module?
-The video instructs the viewer to use the 'nest g module auth' command to generate the authentication module and then proceed to create a controller and service for it.
What is the purpose of creating a 'schemas' folder and a 'user.schema.ts' file?
-The 'schemas' folder and 'user.schema.ts' file are created to define the user's data structure, including fields like email and password, and to ensure that the email is unique.
Why is the 'bcryptjs' package used in the video?
-The 'bcryptjs' package is used for hashing passwords before saving them to the database, which is a security measure to protect user data.
How does the video handle the creation of DTOs (Data Transfer Objects) for signup and login?
-The video demonstrates creating 'signup.dto.ts' and 'login.dto.ts' files to define the data structure for the signup and login requests, including validation rules for the email and password fields.
What is the role of the JWT token in the authentication process shown in the video?
-The JWT token is issued to the user upon successful signup or login, serving as a secure way to authenticate the user's identity for subsequent requests.
How does the video ensure the security of the JWT token?
-The video sets an expiry time for the JWT token and uses a strong secret key defined in the environment variables to sign the token, enhancing its security.
What is the next step after the authentication implementation covered in the video?
-The next step, as mentioned in the video, is to authorize users and protect routes from unauthenticated users in the subsequent video.
How can viewers access the source code and further learning materials mentioned in the video?
-Viewers can find the source code and additional learning materials, such as a Udemy course link, in the description of the video.

Outlines

00:00

📚 Introduction to API Authentication Implementation

The video begins with an introduction to the task at hand, which is to implement authentication in a previously developed REST API. The speaker outlines a two-part video series, with the current part focusing on setting up the authentication process, including login and registration routes, and issuing JWT tokens to users. The second part will cover user authorization and route protection. Nest.js is highlighted as the framework of choice, utilizing the Passport library for authentication, with specific packages to be installed for the task.

05:01

🛠 Setting Up Passport and JWT for Authentication

The speaker proceeds to demonstrate the setup of the Passport and JWT modules for authentication within the Nest.js framework. This includes installing necessary packages, configuring the auth module to use Passport with JWT strategy, and setting up environment variables for the JWT secret and expiry time. The config service is used to access these variables, and the user schema is registered to integrate with the authentication process.

10:03

🔑 User Registration and Password Hashing

The video script details the creation of a user registration process. This involves setting up a user schema with email and password fields, ensuring the email is unique. The speaker uses bcryptjs for password hashing before saving the user to the database. After successful registration, the system assigns a JWT token to the user. The process includes creating DTOs (Data Transfer Objects) for sign up and login, and demonstrating the validation of user input.

15:03

🔒 User Login Route Creation and Testing

The speaker moves on to creating a login route, which involves validating user credentials and issuing a JWT token upon successful authentication. The login DTO is created with email and password fields. The script describes how to check if the user exists and validate the password using bcrypt's compare function. If the credentials are correct, a token is issued; otherwise, an unauthorized exception is thrown. The speaker tests the login route using Postman, demonstrating the process and expected outcomes.

20:04

🚀 Conclusion and Future Steps in Authentication

In conclusion, the speaker summarizes the successful creation of sign up and login routes, including the assignment of JWT tokens to users. The script mentions plans for the next video, which will focus on protecting routes from unauthenticated users and saving user data in a book (likely a typo for 'database'). The speaker invites viewers to ask questions in the comments and provides a link to a related Udemy course and source code in the video description.

Mindmap

Keywords

💡REST API

REST API stands for Representational State Transfer Application Programming Interface, which is a set of rules for structuring URLs, request-response formats, and actions for creating web services. In the video, the speaker discusses enhancing a simple REST API by adding authentication, which is a crucial aspect of web service security, ensuring that only authorized users can access the API's resources.

💡Authentication

Authentication is the process of verifying the identity of a user or device. It is a critical component in securing applications and services. In the context of the video, the speaker is implementing authentication in a REST API using JWT tokens, which allows users to be identified and authorized to access certain routes or resources.

💡JWT

JWT stands for JSON Web Token, which is a compact, URL-safe means of representing claims to be transferred between two parties. It is often used for authentication purposes, as it allows information to be encoded and verified in a way that is secure between parties. In the video, the speaker explains how to issue JWT tokens to users upon successful login or registration.

💡Nest.js

Nest.js is a JavaScript framework for building efficient, reliable, and scalable server-side applications. It uses modern JavaScript (or TypeScript) and is built with the Express engine under the hood. The video script revolves around using Nest.js for creating a secure API, leveraging its modules and libraries for authentication.

💡Passport

Passport is an authentication middleware for Node.js. It is designed to be unobtrusive, flexible, and minimalistic, making it easy to integrate with any Express-based web application. In the video, Passport is mentioned as the underlying library that Nest.js uses for handling authentication.

💡Schema

In the context of databases and data modeling, a schema is a collection of rules that define the structure of the data and the relationships between different data elements. In the script, the speaker creates a user schema using Mongoose, which is a MongoDB object modeling tool designed to work in an asynchronous environment.

💡Mongoose

Mongoose is a MongoDB object modeling tool that provides a straightforward way to create models and interact with the MongoDB database. It is used in the video to define a user schema and to interact with the database for storing user data and performing operations like hashing passwords.

💡Bcrypt

Bcrypt is a password-hashing function designed to be slow, making it resistant to brute-force search attacks. In the video, the speaker uses bcrypt to hash passwords before storing them in the database, ensuring that even if the data is compromised, the passwords are not easily deciphered.

💡Environment Variables

Environment variables are a set of dynamic values that can affect the way running processes will behave on a computer. In the video, the speaker sets environment variables for 'JWT_SECRET' and 'JWT_EXPIRE' to store sensitive information like the secret key for JWT tokens and the expiration time for those tokens.

💡DTO (Data Transfer Object)

A Data Transfer Object (DTO) is an object that carries data between processes, such as between a server and a client. In the video, DTOs are used for sign-up and login operations, allowing the API to receive and transfer data like user names, emails, and passwords.

💡Unauthorized Exception

An unauthorized exception is thrown when an operation is attempted without proper authentication. In the script, the speaker uses unauthorized exceptions to handle cases where login credentials do not match or are missing, ensuring that only authenticated users can access protected routes.

Highlights

Introduction to implementing authentication in a REST API using Nest.js

Overview of two-part video series on authentication, starting with login and registration routes

Explanation of using passport library for authentication in Nest.js applications

Instructions on installing necessary packages for authentication with Nest.js

Creation of an authentication module using Nest.js CLI commands

Generation of controller and service without spec files for the auth module

Configuration of passport in the auth module and setup for login and sign up routes

Creation of a user schema with Mongoose for handling user data and timestamps

Use of unique property to ensure email uniqueness in the user schema

Registration of user schema and setup of passport with JWT strategy

Installation and setup of JWT module for token generation

Configuration of JWT secret and expiry time using environment variables

Implementation of user registration service with password hashing

Use of bcrypt for secure password hashing before saving to the database

Creation of DTOs (Data Transfer Objects) for sign up and login processes

Validation of user input using decorators in DTOs for email and password

Development of the sign up endpoint in the auth controller

Testing the sign up route using Postman and observing validation responses

Demonstration of successful user creation and JWT token generation

Explanation of JWT token contents using jwt.io to inspect the token

Setup of the login route with validation of user credentials

Testing the login route and verifying the correct assignment of JWT tokens

Upcoming continuation of the series focusing on protecting routes and saving users in a book

Invitation for questions and reference to a Udemy course for further learning

Transcripts

00:00

welcome back to this channel so in our

00:01

previous videos we have created a simple

00:03

rest API we have added the search

00:06

pagination and we have handled our

00:07

errors and now in this video we will

00:09

implement the authentication uh in our

00:12

API now there are two parts of this

00:14

video in the first part we will add the

00:16

authentication we will create our login

00:17

route register route and we will give

00:20

the JWT token to the user and in our

00:23

next video we will authorize our users

00:25

we will protect our routes from

00:27

unauthenticated users so make sure to

00:29

watch all uh the videos so in this video

00:32

we will implement the authentication so

00:34

I am on the documentation of nest.js you

00:36

can see that here under security we have

00:38

authentication so nest.js uses passport

00:41

Library if you don't know password is a

00:42

very popular library for node.js that is

00:45

used for authentication so nest.js uses

00:48

the passport package so you have to also

00:50

use that and you can see here we have a

00:52

package that is nest.js slash passport

00:55

that is configured for the nest.js API

00:57

so we have to use these packages

00:59

so if you scroll down we have to install

01:01

all these packages in order to work I

01:03

simply copy it from here copy that and I

01:06

go back and let's install all these

01:09

packages so I simply paste it here and

01:12

let's install them let's go back and

01:14

copy this as well and install it

01:20

okay so our packages are installed

01:22

successfully now I have to create our

01:24

module for authentication so I type here

01:26

Nest G module and the name of the module

01:29

is going to be auth so I will generate

01:31

the module

01:32

now let's create our controller and

01:34

service for the module so I type here

01:36

Nest G

01:37

controller auth dash dash no spec so

01:41

that it will not create any testing file

01:44

we will handle the testing in our

01:47

upcoming videos so I will create my

01:49

controller

01:51

then I will create my service file here

01:57

and that is it now let's work on our

02:00

application

02:01

so first of all let's configure our

02:04

passport in our auth module and then we

02:06

will create our two routes for the login

02:08

and sign up okay

02:10

so I go to source and the auth we have

02:13

this auth module.ts and here we have to

02:16

configure our

02:18

um and let's actually before that create

02:20

our schema so in the auth create a new

02:23

folder that is called schemas create a

02:26

new file

02:27

uh I call it user dot schema dot TS

02:32

let's create our schema first I close

02:34

this one so here first of all I use here

02:38

schema and I will

02:40

pass the option that time stamps to true

02:44

oops so that it will add the time

02:47

automatically when we will create our

02:49

user so you export here

02:54

a class I have discussed all about these

02:57

in my previous video If you haven't

02:58

watched that you can watch that also as

03:00

well then it will make more sense now

03:02

let's add our Fields here so I add here

03:05

at prop decorator

03:07

in which we can pass further options for

03:09

these fields but I will leave it empty

03:12

string and then we have here

03:15

two fields one is the email and one is

03:20

the

03:22

password

03:24

so in the props I will simply type here

03:26

some options like unique

03:28

to make sure that the email is unique

03:30

and if the email is not unique we will

03:33

simply

03:34

send back

03:36

duplicate

03:39

email entered like this simply say this

03:43

one and then we have to export here so

03:46

export

03:47

const user schema

03:51

so I use a schema Factory

03:56

dot create for class and pass in here my

03:59

user okay so now our schema is ready

04:02

here long let's

04:04

um actually close this one go to our

04:06

auth module now let's register our

04:08

schema as well and also set up our

04:10

passport here so I create here Imports

04:13

array

04:15

in that I will first of all set up here

04:18

the Mongoose module

04:21

dot for feature and in that we have to

04:24

pass the array of our models so the

04:27

first is going to be user

04:30

and schema is going to be the user

04:33

schema like this and now we have to

04:36

configure our password module as I have

04:39

explained before nest.js uses the

04:40

password for the authentication so I use

04:43

here passport uh password module and I

04:46

have to import that from nest.js slash

04:48

passport that we have installed before

04:50

okay then register okay now in the

04:54

register we have to pass here one option

04:56

that is default strategy that with

04:58

strategy we want to use and we want to

05:01

use the JWT strategy okay so now we have

05:03

registered our password module now let's

05:06

uh register our JWT module so JWT

05:11

uh module and I think so

05:14

I have to install that as well so I type

05:17

here npmi at nest.js slash JWT let's

05:23

install this package also okay so

05:25

package is installed successfully now I

05:27

type here password module I have to

05:30

import that from uh nest.js diesel

05:33

Beauty dot register async so we will use

05:36

here register async we can use here uh

05:39

the simple register function but we have

05:41

to also use the config variable inside

05:46

it so that's why we have to use here

05:48

register async so let me show you how it

05:52

will work

05:53

now here we have first of all inject our

05:55

config service because we have to use

05:57

here two config variables one is a DWT

06:00

secret and one is the JWT expired if I

06:03

go to my EnV file let's register here

06:06

first of all

06:07

JWT

06:10

expire

06:11

and also JWT

06:15

Secret

06:18

so make sure that you put here a strong

06:20

secret I will use here my name

06:22

accordingly the bus and then the JWT

06:25

expire so this is the expiry time of the

06:28

token so I type here like three days now

06:31

the expiry time of our jw3 token is

06:34

going to be three days so I will Define

06:36

all my two variables here close it now

06:39

we have to use that here and before that

06:41

we have to inject our config service so

06:44

I use here inject

06:46

on the inject I will use here config

06:49

service and if you don't use here like

06:52

this you will not be able to access here

06:56

process.env.jwt secret it will throw

06:58

undefined so we have to use that in this

07:00

way we have to inject our config service

07:02

then we have to use data function that

07:05

is called use Factory

07:07

and now

07:09

in that we will get access to the config

07:11

so the config and type is going to be

07:14

config service

07:16

like this

07:18

now let's

07:20

return from here an object in that we

07:23

have to pass two things first of all the

07:25

secret

07:26

okay now we have defined security number

07:29

EMV file so I will use here config

07:32

which is this one

07:34

that will give us access to the EnV

07:37

variables so dot get

07:39

and I use here JWT

07:43

underscore

07:45

secret and one more

07:48

that is the uh

07:51

sign in options and that is going to be

07:54

JWT

07:56

JWT

07:58

expires I think so

08:01

expires

08:03

save it so this is the variable that we

08:05

have to use and let's also give here

08:08

type that is going to be

08:11

oops

08:13

string and this is going to be also

08:17

string

08:18

but it can be a number also because if

08:21

user only pass here like 5 or 6 or 10

08:24

like for the minutes or

08:27

um other numbers so we have to allow

08:28

that also

08:29

so it is going to be either a string or

08:33

number

08:34

and if you have to actually cut it from

08:36

here create here an object in that we

08:39

will have to pass here expires in and

08:41

then we will use like this Simply Save

08:43

it and now it will set up our password

08:46

module JWT module and also we have

08:49

registered our user schema here simply

08:52

we have to register our password module

08:54

like this pass and here our default

08:55

stats data is going to be JWT then we

08:57

will use here our JWT module we have to

09:00

register it so I will inject my config

09:03

service because I want to access my

09:05

config variable inside it so I have to

09:08

pass here two things first of all the

09:09

secret which is going to be this and

09:11

then in the sign options I have to pass

09:12

the expiry date of that token which is

09:15

this one that we have defined in our

09:17

config file now let's remove this one

09:20

and go to our

09:23

here in the service and create our

09:25

routes for the login and sign up so here

09:28

first of all in the auth service I will

09:30

create my Constructor we have to inject

09:32

our model so

09:35

we'll simply type here add

09:38

inject

09:40

model and I have to pause here the user

09:43

dot name okay and then I will call it

09:50

private user model that is going to be

09:54

model and type is going to be user okay

09:59

and I have to import the model from

10:02

Mongoose like this

10:04

and then here after the Constructor I

10:06

have to register my user so I type here

10:08

async

10:09

I call it sign up

10:11

and in that I have to pass Here sign up

10:13

dto that I will create in a minute

10:16

and

10:18

I have to first of all get

10:22

name

10:24

email and then the password

10:28

from the sign up dto okay and then I

10:32

have to Hash my password before saving

10:34

any database so I have to also install

10:36

one more package that is B grip JS npm I

10:40

B grip

10:42

Js

10:43

I will install it first of all

10:47

and then I type here const hashed

10:52

password is going to be a weight

10:55

B Crypt

10:59

dot hash and we have to also import that

11:03

so import all As

11:06

B grip from

11:10

B group Js so B grip dot hash

11:15

um now in that I have to pass in here

11:17

the password

11:19

then this old value type here 10 which

11:21

is also a default value so now we have

11:24

here our hash password we have to save

11:25

the user in the database so simply type

11:27

here const user is going to be await

11:30

this dot user model dot create

11:35

and in that I will simply pass in here

11:37

name

11:39

email and then the password that is

11:42

going to be hashed password like this

11:45

okay and now you can also return the

11:48

user from here but I have to assign JWT

11:51

token to the user so that's why I will

11:53

use here A Sign function that will

11:56

assign uh JW token to that user how we

12:00

can do that first of all we have to use

12:01

here

12:03

create here a variable so private that

12:06

is going to be JWT service

12:09

and the type is going to be jwp service

12:11

that I have to import from nas JS JWT

12:14

okay I have to put in here comma

12:18

and now I will simply type your const I

12:21

have to create a token so token is going

12:23

to be this dot JWT service DOT sign so

12:27

the sign function help us to generate

12:30

our jwd token so on this sign we have to

12:33

pass the payload so what is the payload

12:35

payload is the data that we want to save

12:37

in the token so we want to save the ID

12:39

of the user so type here ID and the

12:42

value is going to be user dot underscore

12:45

ID okay now we have to return the token

12:48

from here isomer type here return

12:51

token okay and the return type of this

12:54

is going to be

12:57

I type here promise oops

13:01

and

13:03

that is going to be an object

13:05

that contains token and type is going to

13:08

be string

13:09

okay

13:10

and let's actually first of all create

13:12

our signup dto I go to the auth

13:15

create here dto

13:17

and if you don't know about video and

13:19

all this stuff I have discussed all that

13:22

in my previous videos make sure to watch

13:24

those videos if you don't know so I

13:27

created a new file that is sign

13:30

up dot dto.ts so I actually just go to

13:34

the book dto to save some time and copy

13:37

uh this from here

13:40

copy

13:41

put that here I don't need here

13:45

this part

13:48

not in here this

13:50

so the first thing is going to be the

13:52

name of the user so that is going to be

13:54

string and it is not empty then we have

13:56

here the email that is going to be is

14:00

email decorator and then I pass in here

14:06

um the option

14:08

I type here message

14:15

please enter

14:17

correct email and this is going to be

14:20

password

14:23

and I can also Define one more decorator

14:25

here that is minimum length so main

14:27

length I type here 6 that minimum length

14:30

of the password is going to be 6. I

14:33

remove here is number from here and also

14:35

this enum

14:37

and that is

14:40

sign up dto Simply Save this one

14:42

and also I will simply copy that from

14:44

here create a new dto for the login so

14:47

login dot dto.ts put that here and here

14:52

we need here only email and the password

14:54

just simply remove this one and that is

14:56

it and this is

14:58

uh login video Simply Save this one we

15:01

have created our dtos I close this one

15:03

this one and here I give the type that

15:05

is going to be

15:07

sign up dto okay so now let's create our

15:11

controller for this signup I go to my

15:13

auth.controller.ts and then here I will

15:16

create my Constructor

15:19

and in that I will simply create add

15:21

here my

15:22

private variable that is going to be

15:25

auth service if you don't know private

15:27

variable can only be accessed inside a

15:30

class if you don't know about the o so

15:32

that's why we create here private

15:33

variable so that it can only be accessed

15:35

inside the class okay so auth service

15:40

and type is going to be auth service

15:42

like this and then that is going to be a

15:46

post

15:47

request

15:48

I type here slash sign up so it is going

15:51

to be slash auth slash sign up and then

15:54

here

15:56

I name the function

15:58

and

16:00

from the body I have to get my sign up

16:04

dto

16:06

okay so sign up

16:11

dto

16:12

and then

16:14

it will return a promise

16:17

and it

16:19

object we have token type is going to be

16:22

string

16:23

and in that I will simply return this

16:28

dot auth service DOT sign up and pass in

16:32

here the sign up dto

16:35

sign up dto

16:41

like this and oops that is only sign

16:44

update you

16:46

okay so now we will pass the sign up dto

16:49

which is the body in the sign up and it

16:51

will HD password to save this on the

16:54

database and assign the token to the

16:55

user now let's test our route so I

16:58

restart my server here and

17:00

[Music]

17:02

okay so there is not any error let's go

17:05

to the postman

17:07

I simply copy this from here this is

17:10

going to be a post request that is going

17:12

to be slash auth slash

17:15

sign up in the body row and let me type

17:19

here the data

17:23

and here you can see that I have passed

17:25

here incorrect email and the password is

17:27

also just five characters and if I click

17:30

on send from here you will see that

17:32

please enter correct email address and

17:34

password must be longer or equal to 6

17:36

characters if I type here at

17:39

now I will get only password error so I

17:41

type here 6.

17:43

so validation is working properly now if

17:45

I click on send from here you can see

17:48

that we get back here our token that

17:50

this means that user is created

17:52

successfully and this is 201 created if

17:55

I go to a website that is JWT dot IO

17:59

here we can actually see what is inside

18:01

the token so I simply go back uh and

18:04

copy this token from here

18:07

and here if I paste it you can see that

18:11

here we have the ID of the user here

18:14

okay so our token is created

18:16

successfully and we have successfully

18:17

saved our user also now let's create our

18:20

second route for the login

18:22

so I go back in the controller

18:25

sorting the service and then here

18:28

type here async login now in the login I

18:32

have to pass here login detail that will

18:34

contain email and the password of the

18:35

user so dto that is going to be

18:38

login dto and it will also return this

18:42

token

18:44

okay

18:47

and now first of all I need to get here

18:55

the

18:56

email and then the password from the

18:59

login dto

19:01

and now we have to first of all check

19:02

that if the user exists or not so I

19:06

simply type here const user is equal to

19:09

await this dot user model dot find one

19:15

and in that we will pass

19:16

the email so we'll check that if the

19:19

user exists with this email or not and I

19:22

check that if

19:24

not user we will simply throw new

19:29

unauthorized exception

19:32

and it is going to be invalid

19:37

invalid email or

19:40

password

19:41

okay and if the user exists with that

19:45

email now we have to validate the

19:46

password so I type here const is

19:49

password

19:52

matched I will use here bcrypt

19:56

bcrypt has a function that is called

19:58

compare in the compare we have to pass

20:00

first of all the password that user has

20:03

passed in the body so I type here the

20:06

password

20:08

then the second password which is saved

20:11

in the database which is the hashed

20:13

password so that is going to be user Dot

20:17

password okay again I checked that if

20:23

not password match then we will throw

20:25

this unauthorized exception

20:28

otherwise we have to assign the token so

20:30

I simply copy this from here and if the

20:33

email is ranked password is correct then

20:35

we will give back the token to the user

20:37

like this

20:38

Simply Save It Now go to alt controller

20:40

and I copy this from here

20:44

and let's make it get pass in here login

20:49

I also have to import it

20:52

that is going to be login

20:54

and that is

20:59

login

21:05

um

21:07

Dot Login okay and now if I simply save

21:11

it now let's test it out if I go to my

21:13

Postman

21:15

and I copy this from here

21:19

that is going to be login and the body

21:22

row

21:26

um I pass this

21:28

so if I type here wrong password like

21:30

this click on oops I have to remove this

21:33

name from here click on send you can see

21:36

that invalid email or password if I type

21:39

here correct password but wrong email

21:42

send then invalid email or password and

21:45

if I remove this from here click on send

21:48

you can see that we get back here our

21:49

token

21:51

and if I copy it from here go back and

21:54

put that here you can see that we have

21:57

our ID of the user did open so now we

22:00

have successfully created a two routes

22:02

one is for sign up and one is for the

22:04

login and we are also assigning the JWT

22:08

token to the user and in my next video I

22:11

will I will basically protect my routes

22:13

from the unauthenticated users and also

22:16

I will save the user uh in the book okay

22:20

so I will handle that in my next video I

22:22

hope that you understand if you have any

22:24

question you can definitely post your

22:26

question in the comment section and if

22:28

you want to check out my udemy course

22:29

about nestls I will also add the link in

22:32

the description of this video

22:34

so you can also find the source code in

22:36

the description of this video now in my

22:38

next video I will continue with the

22:40

authentication and protect my routes

22:42

from the unauthenticated users we will

22:44

create our JWT strategy

22:46

okay and then we also save our user in

22:49

the book all right so I will see you in

22:51

the next video

Browse More Related Video

Learn JWT in 10 Minutes with Express, Node, and Cookie Parser

All about Firebase Authentication 🔥 | Login & Signup | Jetpack Compose

Adding JWT Authentication & Authorization in ASP.NET Core

Oauth2 JWT Interview Questions and Answers | Grant types, Scope, Access Token, Claims | Code Decode

Self Host 101 - Set up and Secure Your Own Server

Build an API SaaS using Next.js, Prisma, Stripe in under an hour (Get paid for your API)

Rate This

★

★

★

★

★

5.0 / 5 (0 votes)

Related Tags

Nest.jsAuthenticationAPIJWTPassportNode.jsSecurityUser RegistrationLogin RouteToken Management