airclientauth

A simple, lightweight authentication system built with Node.js, Express, SQLite, and JSON Web Tokens (JWT).

Features

CLI User Management: Easily create users from the command line.
First-Login Password Setup: Users created via CLI do not have initial passwords. They set their password securely on their first login attempt.
JWT Authentication: Generates tokens for secure API communication.
SQLite Storage: Hashes and stores passwords safely using bcrypt and SQLite.

npm install

To start the API server on port 3000:

npm start

(The SQLite database users.db will be created automatically on the first run).

You can create a new user account without a password using the built-in CLI tool:

npm run airclientauth -- create myusername

POST /login

First Login (Setting the Password) When a user logs in for the first time, they must provide a password to set it.

Request:
```
{
  "username": "myusername",
  "password": "mynewsecurepassword"
}
```
Response:
```
{
  "status": "success",
  "message": "Password set successfully. Logged in.",
  "token": "eyJhbGciOiJIUzI..."
}
```
(Note: If you attempt to log in for the first time without a password, the server will return a 403 Forbidden status with { "status": "require_password" } to let the client know it needs to prompt the user).

Subsequent Logins Once the password is set, use the same endpoint to log in.

Request:

{
  "username": "myusername",
  "password": "mynewsecurepassword"
}

Response:

{
  "status": "success",
  "message": "Logged in successfully",
  "token": "eyJhbGciOiJIUzI..."
}

GET /verify

Check if a provided JWT is still valid.

Request Headers:

Authorization: Bearer <your_jwt_token>

Response (Valid):

{
  "valid": true,
  "user": "myusername"
}

Response (Invalid):

{
  "valid": false,
  "error": "Invalid or expired token"
}