Giter Site home page Giter Site logo

jwt-posts-api's Introduction

User-JWT-Post Backend | DEMO

Backend for assignment at Varlyq Tech, implements total JWT-secured users and posting system with comments and like support.

Features include:

  • User registration and login system
  • Full token-based authentication with strict user permissions
  • Post content
  • Comment and like user's comments
  • Keep track of refresh tokens and allow only one active token at a time
  • Invalidate access tokens after a user has logged out

Most of the features and code is geared towards security and token storage. Can act as a reference for future jwt-based projects.

Demo

The api is hosted on Render.

Render Link: Try it out

Postman Collections: Explore

Github: Link

NOTE: Since the web service is hosted on free tier, it can take upto a minute for the first request to be fulfilled.

API Reference

For full API documentation, refer to POSTMAN Collection.

Few of the available apis are listed below:

Get all users

  GET /api/v1/users/

Create a post

  POST /api/v1/posts/
Authorization Type Description
token Bearer Token Required. Access token for logged in user

Add a comment

  POST /api/v1/posts/:postId/comments/
Parameter Type Description
postId string Required. Post to add comment to

Like a comment

  GET /api/v1/posts/:postId/comments/:commentId
Parameter Type Description
commentId string Required. Id of the liked comment
accessToken Bearer Token Required. User who likes the comment

Deployment

This project uses yarn for package management.

Install yarn and run:

  yarn && yarn start

This will start the application and the server will listen for requests on default http PORT 3000.

Environment Variables

To run this project, you will need to add the following environment variables to your .env file, also stated in the .env.example file in the repository.

PORT for running in host machine.

MONGO_URI url for the connected mongodb.

JWT_ACCESS_SECRET secret for access token cryptographic signing

JWT_REFRESH_SECRET secret for refresh token cryptographic signing

JWT_ACCESS_TIME time after which access token is invalidated

JWT_REFRESH_TIME time after which refresh token is invalidated

jwt-posts-api's People

Contributors

ananyo141 avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.