Name: Node.JS Express Security: Authentication and Authorization
Rating: 3.2 (6 reviews)

Udemy Business

Teach on Udemy

Turn what you know into an opportunity and reach millions around the world.

Learn More

Your cart is empty.

Keep shopping

Created byAgus Kurniawan

Last updated 4/2022

English

What you'll learn

Implementing authentication on web application with NodeJS Express
Implementing authorization on web application with NodeJS Express
Applying CAPTCHA On User Registration
Building Authentication-based JWT Token
Multi-Factor Authentication for NodeJS Express
Building Roles-Based Authorization for NodeJS Express
Signing with Social Media: Twitter, Facebook, Google, GitHub and LinkedIn

Course content

5 sections • 26 lectures • 2h 49m total length

Introduction1:35
Preparing Development Environment1:32
Prepare your development environment for Node.js Express security by setting up a multi-OS workstation (Windows, Linux, macOS), installing MySQL for database management, and ensuring reliable internet access for project work.

Overview1:16
Database Design for User Registration: MySQL3:41
Setting Up Project8:10
User Registration16:28
User Registration with Email Confirmation10:13
Learn to implement user registration with email confirmation in a Node.js Express app, configure SMTP for delivery, manage confirmation tokens, and apply SSL certificates for secure verification.
Resending Email Confirmation Token4:02
Implement a resend email confirmation token workflow: validate email, generate a token, compose and send a confirmation email, and handle success or failure in the backend.
Implementing CAPTCHA on User Registration5:47

Overview1:50
Database Design for User Authentication0:48
Authentication with Username and Password8:48
Authentication with Enabled Email Confirmation4:11
Authentication with Applying Remember Me5:54
Changing Password5:15
Forgot Username3:02
Forgot and Reset Password6:50
Learn to implement a secure forgot and reset password flow in node.js express, sending a tokenized reset link, validating tokens, and updating user passwords.
Multi-factor Authentication10:23
Enable multi-factor authentication by presenting a user-controlled setup form, activating a second factor via email, and validating tokens during login to secure access.
Enabling Locked User Account7:25
Implement a login lock after wrong password attempts, using a table to track failures, set a minute-based lock, and verify unlocking after the wait period.
Role-Based Access Control (RBAC)8:05

Login with Twitter21:17
Implement login with Twitter using passport-twitter, configure API key and secret, set callback, and enable social media login to authenticate users and retrieve profile data.
Login with Google10:36
Learn to implement login with google in a node.js express app using passport google strategy, including obtaining client id and secret from the google console and handling profile with redirects.
Login with Facebook8:26
Learn to implement login with Facebook by integrating the passport-facebook library, configuring app id and secret, and handling the callback to sign in users.
Login with Github6:41
Login with LinkedIn6:43

Requirements

Having knowledge of basic NodeJS programming

Description

This bootcamp has a goal to introduce web application development with Node.JS and Express. For database, we use MySQL to store the data. The bootcamp focuses on security and authorization. The following is a list of highlight topics:

Use Registration
Authentication
Authorization

We start to learn about user registration. We create a registration form with Node.js and Express. We use Handlebar for Express Template View. User email will be confirmed in our application. To prevent from bots, we implement CAPTCHA on registration. We use reCaptcha from Google.

Database Design for User Registration: MySQL
Setting up project
User Registration
User Registration with Email Confirmation
Resending Email Confirmation Token
Implementing CAPTCHA on User Registration
Signing with Social Media Providers: Twitter, Google, Facebook, GitHub and LinkedIn

Next topic is authentication. We will challenge users to verify user account. We use username and password for authentication. we can enable for user authentication with confirmed email. Each user email that doesn't be confirmed yet will not access web resources. We also implement multi-factor authentication. We send codes to user email to verify user authentication.

Last, we implement Role-based authorization. We define user roles and then assign roles to each user. We will implement authorization with Express middleware.

Pre-requisite

Having knowledge of web development such as HTML5, CSS and JavaScript
Having knowledge of Node.js development
Computer with installed Windows , Linux or macOS

All materials are delivered with step-by-step approach. See you on my course.

Update 1: 24 October 2021

Add new contents: Login with Social Media: Twitter, Facebook, Google, GitHub and LinkedIn

Who this course is for:

Web developers
Any web developer who wants to build NodeJS Express application

What you'll learn

Explore related topics

Course content

Introduction2 lectures • 3min

User Registration7 lectures • 50min

Authentication and Authorization11 lectures • 1hr 3min

Authentication and Authorization with Social Media Providers5 lectures • 54min

Source Codes1 lecture • 1min

Requirements

Description

Who this course is for: