15. Authentication - gsambrotta/open-matches GitHub Wiki

Authentication is made with json web token. When a user is created, the password will be transform in has with bcrypt package and then saved to db.

On login, a token is created based on user id and email and is then saved in localStorage. Once the user data are needed, this token is sent back in the request and user can authenticate.