Contact person: Business Client

Phone:Show

Email:Show

Location: Indore, India

Budget: Recommended by industry experts

Time to start: As soon as possible

Project description:
"I need a clean, well-structured Node.js backend that exposes a REST API protected by JSON Web Tokens. The project should ship with everything required for full-cycle user management: sign-up, secure login, password reset flows, and an optional two-factor authentication step for extra security.

Role-based access control is essential; the system has to recognise three distinct roles—Admin, User and Guest—and gate endpoints accordingly. Please wire this into the middleware so that adding new protected routes later is straightforward.

Preferred stack is Express (or Nest if you feel it adds value) with modern JavaScript or TypeScript, bcrypt for hashing, nodemailer (or a comparable service) for reset emails, and a simple in-memory or SQLite store is fine for initial testing; I’ll hook it to my own database later. Make sure environment variables handle secrets and token expiry settings cleanly.

Deliverables:
• Source code organised by feature/modules, ready to run with “npm install && npm start”
• Postman or Swagger collection documenting each endpoint, expected headers and sample payloads
• Brief README that explains setup, env variables, and how to extend role rules or the 2FA flow

If you’ve built similar JWT-based systems before and can turn this around quickly with clean, commented code, I’d love to see your approach." (client-provided description)