Skip to content

Standard Authentication

StarterStack includes middleware that handles the following authentication logic:

  • validates the user supplied email + password against the User database table
  • if valid, a JWT is generated and returned as a browser session cookie
  • If invalid, an HTTP 401 code is returned along with a message

This logic is offered in the StartStack developed middleware (/backend/middleware/Authentication.js) and Passport.js local strategty (endabled by default).