Authentication API

Question

Authentication API

Opened this issue a month ago · 12 comments

Mustafiz04 commented a month ago

Add authentication APIs

Signup - Right now signup api is taking whole lot of information but we have to split api into 2 at least.
-- First for signup which take email, password and confirm password and store into db - return (Access token, Refresh token)
-- Second for create profile which take whole other information, accessToken and store corresponding to this email/id
Login - Right now we login only with email but we should login with either email or mobile number. Make sure to store country code too while signup.
Logout - Logout is working as expected but still check if anything is missing there.
Refresh token - Api to increase validity of the token. - Check here

For accessToken we should keep token validity for an hour, for refresh token keep 1 day.

Let me know if you have any doubt.

Answer 1 · 2024-10-01T14:17:58.000Z

@Mustafiz04 i am interested to work assign to me

Answer 2 · 2024-10-02T13:15:18.000Z

@Sureshwebdeveloper assigned to you.

Answer 3 · 2024-10-02T13:27:42.000Z

Thanks for assigned to me please add level I am already started of my work

Answer 4 · 2024-10-02T14:58:25.000Z

Sure, please let me know if you have any doubts. I haven't added much context to the issue.
You're welcome to add that too.

Answer 5 · 2024-10-03T07:16:29.000Z

Please tell what changes I need to make exactly Because I have worked before mern auth backend but I dont have worked like your code its look like all of query methods. that's not a problem if you tell I will learn and apply on code

Answer 6 · 2024-10-04T15:00:39.000Z

Yes sure, update the ticket description.

Answer 7 · 2024-10-04T15:10:17.000Z

Are you saying token generation and token validation right ?

Answer 8 · 2024-10-04T15:17:51.000Z

Yes, I have updated the description

Increase to level 3 for this issue.

Answer 9 · 2024-10-04T15:31:10.000Z

Thanks for description I complete on as soon as possible ok further if I have any issue I will ask you 🙂

Answer 10 · 2024-10-05T05:37:28.000Z

Add authentication APIs

Signup - Right now signup api is taking whole lot of information but we have to split api into 2 at least.
-- First for signup which take email, password and confirm password and store into db - return (Access token, Refresh token)
-- Second for create profile which take whole other information, accessToken and store corresponding to this email/id

Can we split schema ?

Authschema

email, password and confirm password, email verification token and store into db - return (Access token, Refresh token)
2. profileSchema

profileSchema

have a name , gender , age, country, countryCode and other informations

because prevoius scheama have added required attributes so error comes

Answer 11 · 2024-10-06T19:17:34.000Z

Right now we can go with the same schema because if we split we have to use nested schema which will be costly mongo operation.
You can remove required attributes and add validations on top of each API to validate required fields.

Answer 12 · 2024-10-07T16:26:43.000Z

Steps I Follwed

create signup function

Email
Password
Access token (1h valid) , Refresh token (1day valid)

Create a UserProfile Section

Verify user have Access token and Refresh Token
Get email from user and if its exists then update a data ( name, gender, age, country , phoneNumber , Country Code , description, SocialMediaLink, ProfilePicture ) and update to db
This function need to return any token ?

Now I am at step 3 👇 User login

Now I have another and last doubut,
if user login with email then user need to enter password right , but mobile number field if user need to enter password or not

If any changes need to make please tell I will do that 🙂