Passport VS Hapi

Next, use something like https://www.npmjs.com/package/passport, this is authentication middleware, and it works similarly for different authentication providers. Carefully read the documentation. OAuth is complicated, but that's because it solves a complicated problem

Passport is outdated and the project has been more or less on a stand-still for years now. As of currently, there are more than 320 open issues and very few have been resolved within the last months. I'd highly advice you not to use Passport for your applications in 2023. You've received some great alternatives by others in the comments here.

lib: The lib folder, short for "library", is mostly used to store the actual source code of the package, but it can also be used to store third-party code, utilities and helpers. Example from passport.

Research - there's github and stackoverflow documentation saying this is part of passport.js 0.6.0 that can be resolved by turning logout into a callback function (I was not the first person to encounter this error).

passport for authentication

I went down the rabbithole of using next-auth (now authjs) for a recent project. Having used Passport.js [1] for Oauth2 the last time I was doing node.js ~3 years ago, I found this library to have many footguns as comments/answers on SO and Github.

Seems like many people are trying to shoehorn their codebase [2] (!!) to make it work with the way the library manages sign-in flow, redirects, cookies, logout, etc. [3]

These were solved problems in the MEAN stack era with middlewares, but now that Next.js/react is the trend, people are doing everything they can to make it work - from relaxing security configs, to stashing things in the JWT just so some callback can get an additional piece of data.

[1] https://github.com/jaredhanson/passport

Passport to act as auth middleware to authenticate requests Passport

Checkout using NestJS that uses Passport or just checkout Passport

I tend to use hapi (https://hapi.dev) instead of Express if I need to write a quick backend for something these days.

Fastify looks nice too but I haven't used it.

Been burnt by full-stack frameworks in the past (e.g. Meteor) but they can be a good option for some.

Hapi.js commonly referred to as "hapi," is an open-source web application framework for building web and application server systems in Node.js. It was created by Walmart Labs and is designed to provide a flexible and robust foundation for building web applications, APIs, and other networked software.

Restify & Fastify Hapi

Hapi.js: https://hapi.dev/

Hapi – The Simple, Secure Framework Developers Trust

Hapi.js is one of the best Node.js web framework, which is used for developing application program interfaces. Thanks to a strong plugin system Hapi.js, you can fully manage the development process. Hapi.js motivates the devel­oper to focus on the reuse logic instead of spending time building the infrastructure.

does not seem so https://github.com/hapijs/hapi/releases/tag/v21.0.0 (ok, I'm nitpicking on that one)

Joi validator used to be part of hapi but then became a standalone library that you can use everywhere where validation is needed. So for example, here's how username validation can be done: