This is the backend I built for my own Todo-App. I’ve been working on this project since way before I heard of or joined Flowertown. It’s the first time I’ve actually coded a real, complete backend system from scratch. (I Love it)
This is Devlog 1, but just so you know: I’ve been working on this project since way before I even heard of Flowertown.
Here’s what I’ve coded so far – Key Features & Technical Setup:
Built with Express.js
Authentication: * Used bcrypt for secure password hashing.
Implemented JWT (JSON Web Tokens) for stateless auth.
Built the entire Login and Registration flow from the ground up.
Authorization & Security:
Custom Middleware: To validate tokens and protect specific routes.
Data Isolation: Added logic so users can only see and edit their own todos no peeking at others' data!
Secure Storage: Tokens are stored in HTTP-only cookies to keep them safe from XSS attacks.
Input Validation:
Using express-validator to clean up and check incoming data.
Set up custom error handling with messages that actually make sense.
Rate Limiting:
Added protection against Brute-Force attacks by blocking IPs that spam requests.
Granular Limits: I set different limits for sensitive stuff (like /auth) compared to general routes.
Log in to leave a comment
I’m working on my first project! This is so exciting. I can’t wait to share more updates as I build.
Log in to leave a comment