A basic demonstration of JWT (JSON Web Token) authentication using Express.js. This project shows how to implement token-based authentication with protected routes.
- Basic JWT authentication
- Protected route example
- Express.js REST API
- Simple token verification middleware
# Clone the repository
git clone <your-repo-url>
# Install dependencies
npm install express jsonwebtoken body-parserCreate a .env file in the root directory:
JWT_SECRET=your_secret_key
PORT=3000# Start the server
node server.jsPOST /login
- Generates JWT token
- Body: { "username": "your_username" }
GET /protected
- Requires JWT token in Authorization header
- Returns protected data
fetch('http://localhost:3000/login', {
method: 'POST',
headers: {
'Content-Type': 'application/json'
},
body: JSON.stringify({
username: 'testuser'
})
})
.then(res => res.json())
.then(data => console.log(data.token));fetch('http://localhost:3000/protected', {
headers: {
'Authorization': 'Bearer YOUR_JWT_TOKEN'
}
})
.then(res => res.json())
.then(data => console.log(data));In production:
- Use a strong secret key
- Store sensitive data in environment variables
- Implement proper error handling
- Add input validation