Production-Ready Authentication

A rock-solid, highly secure NestJS authentication system built using modern backend standards. Engineered with extreme focus on type-safety, flawless data encapsulation, and Bulletproof security protocols.

View GitHub Repository Explore API Overview

⚡ Architecture Core Features

🔒

Argon2 Hashing

Industry-standard, ultra-secure cryptographic password hashing utilizing Argon2id, providing high resistance against GPU brute-force attacks.

🍪

HTTP-Only Cookies

JWT tokens are securely encapsulated inside client-side HTTP-Only, SameSite cookies. Completely immune to malicious XSS script token theft.

🛡️

Custom Type-Safe Guard

A tailored NestJS CanActivate Auth Guard that intercepts incoming cookies, verifies tokens asynchronously, and protects sensitive endpoints.

✉️

Nodemailer Engine

Fully dynamic custom HTML layout integrated seamlessly into Gmail's SMTP relay engine, handling secure password reset verification requests.

⏳

Time-Bound Verification

Strict server-side validation models verifying exact OTP expiry boundaries utilizing high precision millisecond time differentials.

🧹

Secure State Destruction

An automated state clearance logout cycle ensuring matching cross-origin security flags are matched precisely during cookie destruction.

📡 API System Route Overview

POST /auth/signup

Registers a new user account with hashed credentials.

POST /auth/login

Validates identity and issues secure HTTP-Only JWT Cookie.

GET /auth/get-all-users AuthGuard

Protected access route. Retrieves all registered system profiles.

POST /auth/forgot-password

Generates secure OTP tokens and triggers automated custom Gmail alerts.

POST /auth/reset-password

Validates expiration boundaries and updates authenticated user credentials.

GET /auth/logout AuthGuard

Instantly clears active context access cookies from client storage layers.

GitHub • LinkedIn • Twitter • Instagram

"Code is poetry written for machines and remembered by people."

Support Portfolio: itmughal2023@gmail.com