Building Node.js Authentication from Scratch
Вставка
- Опубліковано 27 січ 2023
- ► Master NodeJS Playlist: • Master NodeJS
► Source Code: github.com/piyushgargdev-01/s...
In this tutorial video, you will learn how to create a secure and robust authentication system for your Node.js application from scratch. We will cover the basics of user authentication and authorization and show you how to implement login and registration functionality using Node.js and MongoDB.
► Complete Full Stack Web Developer RoadMap 2023: • Complete Full Stack We...
Node.js is a JavaScript runtime built on Chrome's V8 JavaScript engine. It allows developers to run JavaScript on the server side, creating server-side applications with JavaScript.
► My Website: www.piyushgarg.dev
My Gears
► My Girlfriend: amzn.to/3WD6FRp
► Apple MacBook Laptop: amzn.to/3WBJgQn
► Anker USB Hub: amzn.to/3GhZSr0
► Blue Yeti Microphone: amzn.to/3YKZ9FT
► External 27” Monitor: amzn.to/3Vp3xaO
► Logitech MK295 Wireless Keyboard and Mouse: amzn.to/3DuL1bB
► Seagate Expansion 1TB External HDD: amzn.to/3QMm5Q8
► Tripod: amzn.to/3S4OwK4
► Ring Light: amzn.to/3YLf8DR
Disclaimer: All the links above are affiliate links.
Social Links
► Twitter - / piyushgarg_dev
► LinkedIn - / piyushgarg195
Video Titles
Securing Your Node.js App with User Authentication
Authentication 101: Implementing Login in Node.js
Adding User Login to Your Node.js Application
Authentication in NodeJS
Tags
#nodejs #authentication #javascript #expressjs #mongodb #mernstack #developer #api #https #server #javascriptinhindi #webdevelopment #webapp #realtimeapp #serverside #nonblockingio #tech
This is the best NodeJS series ever made.
agreed 💯
Thankyou so much for the wonderful playlist.
Thanks a lot for availing this series for free, we know it takes hell amount of your time.
Thanks mate.
Enjoyed the entire video! Lot of learning! Thank you :)
Thank you sir i don't know about how to find data in other collection by user ID but after watching this video i am clear now...
Sir please cover JWT Authentication and Local Storage in depth.
when i saw this playlist for first time i was frustrated but now i am able to grasp the concepts
Bohot acha sa samjatha ho.
Make more projects in Nodejs/Expressjs.
Bohot Shukriya
🎯 Key Takeaways for quick navigation:
00:00 🛠 *Node.js Authentication Basics*
- Introduction to authentication patterns in Node.js.
- Two basic patterns discussed: Stateful and Stateless authentication.
01:07 🚗 *Authentication Analogy: Parking Ticket*
- Illustration of stateful authentication using a parking attendant analogy.
- Comparison between providing a parking ticket and receiving a unique ID for server-side data maintenance.
02:02 🎟 *Stateless Authentication: Diary Entry*
- Explanation of stateless authentication using the example of a parking ticket without server-side data storage.
- Analogous process of generating and validating unique IDs for accessing resources.
03:38 🔄 *Transition to Server-Side Authentication*
- Transition from client-side to server-side authentication process.
- Example of a client sending a request with user credentials to the server for authentication.
04:09 📝 *Server-side session management*
- Understanding session IDs and their management on the server-side,
- Sending session IDs along with requests for server authentication,
- Utilizing cookies or headers for transferring unique IDs and managing authentication.
06:02 🛠 *Implementing authentication in the application*
- Setting up authentication middleware in the Express application,
- Validating tokens and unique IDs for authentication,
- Incorporating user data and authentication parameters into the application model.
08:52 🛠 *Creating Authentication Routes*
- Setting up authentication routes in Node.js.
- Creating a user model and defining routes for signup.
- Implementing controller functions for user signup.
10:13 📝 *User Signup Validation*
- Validating user input such as password length and email format.
- Handling user signup requests and responses.
- Importing user model and returning appropriate responses.
11:50 📲 *Handling User Registration*
- Implementing registration functionality for users.
- Defining routes and handling user registration requests.
- Creating user signup forms with input validation.
14:17 🛠 *Handling user sign-up form submission*
- Understanding form action and method,
- Troubleshooting form submission errors and refreshing the page.
16:04 🔑 *Ensuring successful user registration process*
- Configuring form redirection after successful registration,
- Implementing conditional logic for user access based on authentication status.
17:11 🚦 *Validating user credentials and redirecting*
- Validating user input for email and password,
- Implementing error handling and redirecting based on authentication status.
20:07 🛠 *Node.js Authentication Setup*
- Setting up authentication process in Node.js,
- Generating unique session IDs,
- Installing necessary packages and importing them.
21:32 🍪 *Cookie Generation and Handling*
- Creating and handling cookies for user sessions,
- Utilizing middleware to retrieve cookie values,
- Implementing functionality to refresh cookies upon server request.
22:59 📝 *Application Diary and Control Flow*
- Demonstrating control flow within the application,
- Logging user activities in the application diary,
- Managing user sessions and associated data.
24:56 🔒 *Middleware Function for User Authentication*
- Implementing middleware function for user authentication,
- Accessing user ID from cookies,
- Handling redirection based on user authentication status.
27:55 🍪 *Cookie Parsing and Validation*
- Parsing and validating cookies for user authentication,
- Ensuring proper access control based on URL paths,
- Handling cookie-related errors gracefully.
29:02 🛠 *Troubleshooting and Debugging*
- Debugging cookie reading and generation issues,
- Resolving errors related to undefined properties,
- Iterative debugging process for smoother development.
30:27 🛠 *Node.js Authentication Implementation*
- Implementing password generation and authentication in Node.js.
- Discussion on server restart issues affecting data integrity.
- Handling URL generation and user identification securely.
31:48 🔄 *URL Generation and Data Integrity*
- Addressing data integrity challenges upon server refresh.
- Ensuring correct URL generation and user identification after server restart.
- Implementing strategies to maintain data consistency and user authentication.
33:19 🖥 *Dynamic URL Handling and User Identification*
- Exploring middleware for dynamic URL handling and user identification.
- Adding user-specific references to generated URLs.
- Utilizing user IDs for personalized URL management and authentication.
34:44 🔒 *Implementing authentication logic*
- Creating middleware function to check authentication status.
- Simplifying authentication logic by restricting access.
- Handling authentication checks and redirects efficiently.
36:07 🧳 *Setting up user authentication*
- Creating a sign-up form with fields for full name, email, and password.
- Generating and validating short IDs for user authentication.
- Implementing basic authentication workflow and URL handling.
37:57 🚪 *Customizing user access and permissions*
- Limiting user access to their own analytics and URLs.
- Generating short IDs for user-specific data access.
- Ensuring secure and controlled authentication processes.
hey! do you faced the same problem at 29:00 i.e. not being able to generate short urls after login?
Bhai video se jyada heavy Tera comment hai ☠️
@@Solo_playz Ai se generated hai
@@whyDude123 🤣
First time I see Gravity Falls and Adventure Time crossover
Best Nodejs series out there and I am not even kidding how good he teaches
yes man @piyush Garg is a god sent man
But don't think that's a full series on Node.js; he covered it yesterday in his live stream.
@@mujibulhaquetanim Complete nhi hai kya ye??
This playlist is still suitable for beginners, even though there are still some gaps in the graphql series. He nearly covered every essential topic related to Node.js.@@Ayush37262
Great video bhaiya !! Please make more videos asap
You have been doing great job sir
Thank you sir ❤
Thanks Buddy
Best Series. 👩🏻💻👩🏻💻
Great Video Thanks Sir
Most welcome
Wow i cleared my all concepts 😎
Great 🚀
Thanks sir❤
Hey piyush, can u make videos on styling web pages using tailwind css Or just css, in UI
Sir setting user details in cookies would be done with express-session by default right?
Thanks bro
my doubt
apne sessionIdToUserMap object me user ki uid or user ki details store ki hai pr ek time ke baad ye server ki bhot memory kha jayega to es object me se hr user ki details ek time ke baad apne aap delete ho jana chahiye
SIr on deployment why user persistence not there ?
means after one time logged in in any device i can generate url in another device also without logged in ?
nicely explain
good job bro
sir thanks for the awesome content ,
but i have a request that please try to explain things ,
for ex : cookies , etc
please , it would help us understand more easily
Noted
@@piyushgargdevafter loggin with email and password we are redirected to page to generate shortUrl or shortId but when I enter original url after loggin I am being redirected back to loggin page ,,unable to resolve
@@shivanshsrivastava5561 hii same problem bro can you please help me
I clone your code ,but the urls that user visited is not working, both users data is showing, please some one help me
Well explained... Where I can get the code for reference
Understood everything except checkAuth at 35:22 tried using restrictToLoggedInOnly middleware instead of checkAuth the home page redirects to login page but it doesn't load. Can anyone plz help why is it so?
Same issue
What do you mean by "it doesn't load"?? Can you explain in detail...
Bhaiya can you plz describe why are we again getting user and checking if user exists (line 8 at 29:14) as, if the user isn't logged in then the UID won't be generated so the first check serves the purpose isn't it?
Edit: Found out that on refresh the map obj doesn't reset but on server restart it does. For which the second check is important.
Keeping the comment might help someone with same doubt.
Thank you for keeping the comment, it helped me
@@ombandurkar7950 happy to help 🙂
@@thebishalpaul after loggin with email and password we are redirected to page to generate shortUrl or shortId but when I enter original url after loggin I am being redirected back to loggin page ,,unable to resolve can you help me please
Damn Bro!
bhaiya email authentication ka bhi ek video plz bana dena with forget fassword 😊😊
Sir when react JS course is coming any idea sir?
Bhaiya if middle man proxy use karega he will get our api how we secure
What if we want to pass the data to frontend like react app instead of .ejs views files
How to do it ?
Osm series💥
But can you add the complete authentication like....
Sign up
Otp verify
Email verify
Login
......etc
Sure
just WOOWWWWW
Is this process production ready?
Bro he already explained in his previous videos
Can you make a proper video on 'How to create a chrome extension'
Please
Please create a video on google-reCaptcha v2 verification in a registration form to avoid scripting much need and it is not available on any channel where an API is made for that please please make it if possible
Key Takeaways for quick navigation:
00:00 Node.js Authentication Basics
- Introduction to authentication patterns in Node.js.
- Two basic patterns discussed: Stateful and Stateless authentication.
01:07 Authentication Analogy: Parking Ticket
- Illustration of stateful authentication using a parking attendant analogy.
- Comparison between providing a parking ticket and receiving a unique ID for server-side data maintenance.
02:02 Stateless Authentication: Diary Entry
- Explanation of stateless authentication using the example of a parking ticket without server-side data storage.
- Analogous process of generating and validating unique IDs for accessing resources.
03:38 Transition to Server-Side Authentication
- Transition from client-side to server-side authentication process.
- Example of a client sending a request with user credentials to the server for authentication.
04:09 Server-side session management
- Understanding session IDs and their management on the server-side,
- Sending session IDs along with requests for server authentication,
- Utilizing cookies or headers for transferring unique IDs and managing authentication.
06:02 Implementing authentication in the application
- Setting up authentication middleware in the Express application,
- Validating tokens and unique IDs for authentication,
- Incorporating user data and authentication parameters into the application model.
08:52 Creating Authentication Routes
- Setting up authentication routes in Node.js.
- Creating a user model and defining routes for signup.
- Implementing controller functions for user signup.
10:13 User Signup Validation
- Validating user input such as password length and email format.
- Handling user signup requests and responses.
- Importing user model and returning appropriate responses.
11:50 Handling User Registration
- Implementing registration functionality for users.
- Defining routes and handling user registration requests.
- Creating user signup forms with input validation.
14:17 Handling user sign-up form submission
- Understanding form action and method,
- Troubleshooting form submission errors and refreshing the page.
16:04 Ensuring successful user registration process
- Configuring form redirection after successful registration,
- Implementing conditional logic for user access based on authentication status.
17:11 Validating user credentials and redirecting
- Validating user input for email and password,
- Implementing error handling and redirecting based on authentication status.
20:07 Node.js Authentication Setup
- Setting up authentication process in Node.js,
- Generating unique session IDs,
- Installing necessary packages and importing them.
21:32 Cookie Generation and Handling
- Creating and handling cookies for user sessions,
- Utilizing middleware to retrieve cookie values,
- Implementing functionality to refresh cookies upon server request.
22:59 Application Diary and Control Flow
- Demonstrating control flow within the application,
- Logging user activities in the application diary,
- Managing user sessions and associated data.
24:56 Middleware Function for User Authentication
- Implementing middleware function for user authentication,
- Accessing user ID from cookies,
- Handling redirection based on user authentication status.
27:55 Cookie Parsing and Validation
- Parsing and validating cookies for user authentication,
- Ensuring proper access control based on URL paths,
- Handling cookie-related errors gracefully.
29:02 Troubleshooting and Debugging
- Debugging cookie reading and generation issues,
- Resolving errors related to undefined properties,
- Iterative debugging process for smoother development.
30:27 Node.js Authentication Implementation
- Implementing password generation and authentication in Node.js.
- Discussion on server restart issues affecting data integrity.
- Handling URL generation and user identification securely.
31:48 URL Generation and Data Integrity
- Addressing data integrity challenges upon server refresh.
- Ensuring correct URL generation and user identification after server restart.
- Implementing strategies to maintain data consistency and user authentication.
33:19 Dynamic URL Handling and User Identification
- Exploring middleware for dynamic URL handling and user identification.
- Adding user-specific references to generated URLs.
- Utilizing user IDs for personalized URL management and authentication.
34:44 Implementing authentication logic
- Creating middleware function to check authentication status.
- Simplifying authentication logic by restricting access.
- Handling authentication checks and redirects efficiently.
36:07 Setting up user authentication
- Creating a sign-up form with fields for full name, email, and password.
- Generating and validating short IDs for user authentication.
- Implementing basic authentication workflow and URL handling.
37:57 Customizing user access and permissions
- Limiting user access to their own analytics and URLs.
- Generating short IDs for user-specific data access.
- Ensuring secure and controlled authentication processes.
can someone please share me code ...i have write but getting error...
how setUser is able to get the value stored getUser even after reloding page
solution will be given in next video 38:45
It would have been better if u would use postman or any server client
Done, Done, Done, Done..... 😂😂😂
github code is not working
home.ejs file mai (urls) giving error
same man !!
did u find the solution ?
also the redirectURL in index is also giving error to me
Is this called JWT authentication??
After login same login page is rendering similar to that what was happening in your code(30:00), what can be done?
Check if you have written method and action in your login ejs file 🤔
is your error solved coz im aslo getting same
@@myselfashutosh @unknown-vx6ei @pranjalmaurya3832 maybe in your code you are doing req.cookie.uid do one task do console.log(req) now you will se a last item cookie:"uid=something" but when you use cookieparser it will store your cookie in cookies so when you print the req object you will see two different keys in request object one is cookie and one is cookies:{uid:something} now in cookies you can access req.cookies.uid as in cookies uid is a key name of the inner object but in cookie it is uid="something" which means even if you use req.cookie?.uid then it will always return undefined as it doesnt have uid as key
same issue, anyone plz explain
27:30 --> cookie start
Object Id create karte time apne ref: 'users' liya hai user ki jagah. Phr bhi ye work kar rha h. Why ?
automatically mongodb me collections vaise hi create hota hai ...
for example: const URL = mongoose.model("url", urlSchema);
=> show collections => urls
for example: const User = mongoose.model("user", userSchema);
==> show collections => users
model me tum koi aur name dalo aur mongosh me jake show collection karoge to tumhe dikhega
hmm, It seems like you merge two lecture in one video(authentication & cookie). for the first time, cookie implementation is much difficult then authentication.
7:10
16:20 login
20:33 cookie
31:00
zip file of knowledge
My girlfriend 🤣🤣🤣🤣🤣
What an Easter egg hidden here haahahahaha
What language do you speak?
Hindi
why you don't explain anything like why you are using controller and what is that and other stuffs
He already explained in his previous videos in the playlist.
Bro use postman so that u don't have to waste time on creating FE as this video is totally focused on Node JS
I mean, he's also giving us an idea about SSR 🤷🏿♂️
bhai yrr ejs mat use krna kro na pls real world me kya use h iska
Matlab?
Sir, please first try once before video, instead it's so confusing
If you make this video in English it's going to be great,
bkl
bhut he ghatiya padhaya hai
Bhai kisse padhna chahiye batao
if your video is not in english? so why are you writing the title in english??!! take my downvote
Learn Hindi
well...... there are lots of people like me over India who can understand hindi but can't read it properly so for me it's fine as it is
req.user._id undefined .... anybody with the isssue ?
yep bro same issue how did you solved
user User.findOne({}) instead of User.find(), as the first method returns an object the latter returns an array of objects
@@036kaushik5 req.user._id undefined .... anybody with the isssue ? how you resolved it