[Backend] Implement JWT Authentication Module

[yusuftomilola]

The platform needs a complete authentication system built with NestJS. This module will be the security foundation for all protected API routes.

Requirements

• POST /api/auth/register — Create a new user account (firstName, lastName, email, password). Hash password with bcrypt before storing.
• POST /api/auth/login — Validate credentials, return short-lived JWT access token (15 min) and long-lived refresh token (7 days). Store a bcrypt hash of the refresh token on the user row.
• POST /api/auth/refresh — Accept a valid refresh token in the request body, return a new access token.
• POST /api/auth/logout — Invalidate the stored refresh token hash for the authenticated user.
• GET /api/auth/me — Return the currently authenticated user's profile.
• JWT strategy using @nestjs/passport + passport-jwt. Guard exported as JwtAuthGuard.
• @CurrentUser() parameter decorator to inject the authenticated user into controller methods.
• DTOs with class-validator for all request bodies.

Tech Stack

• NestJS 10, @nestjs/jwt, @nestjs/passport, passport-jwt, bcrypt, class-validator

Acceptance Criteria

• All 5 endpoints functional and protected/unprotected correctly
• Passwords never stored in plain text
• Refresh token hashed before storage
• JwtAuthGuard and @CurrentUser() decorator available for other modules to use

[chaymaAmor]

Hi, I’d like to take this issue and implement the NestJS authentication module.

[drips-wave]

This issue has been added to the Stellar Wave Program and is worth 200 Points.

🧑‍💻 Interested in contributing? Apply to work on this issue on Drips Wave, earn points, and receive rewards.

Warning

Only applications submitted via the apply link above will be considered. Please do not apply by commenting on the issue or opening a PR directly.

🤠 Repo maintainers: You can manage this issue's Points and Complexity on your Maintainer Dashboard here. Please keep an eye on applications and respond quickly 💙

ℹ️ Learn more about Drips Wave

[wumibals]

@wumibals has applied to work on this issue as part of the Stellar Wave Program's 2nd wave.

I am a fullstack software developer with multiple years experience in the industry. I can deliver on this issue in a few hours.

ℹ️ Repo Maintainers: To accept this application, review their application or assign @wumibals to this issue.

[drips-wave]

Congratulations, @wumibals! 🎉 Your application was accepted by the repo's maintainers, and the issue is due on February 26, 2026.

🧑‍💻 @wumibals: Please resolve the issue such that the repo's maintainers have enough time to review your contribution before the due date. You'll earn Points for completing the issue on-time, which will make you eligible for a share of the Stellar Wave Program's reward pool.

Warning

When opening a PR, please link it to this issue to ensure it gets tracked accurately. Points are issued when this issue is marked as completed by the maintainer.

🤠 Repo maintainers: Please keep an eye on the contributor's progress and review their work before the due date. You can manage this issue, including adjusting its complexity and points, here.

🌊 Happy Wave 🌊

[drips-wave]

This issue has been completed by @wumibals as part of the Stellar Wave Program's 2nd Wave 🥳

😎 @wumibals: You earned 200 Points for completing this issue! After the current Wave ends, you'll be eligible for a percentage of the Wave's reward pool based on the percentage of total points you've earned. Learn more here. You can also Leave a review to share your experience working on this issue.

🧑‍💻 Repo maintainers: How'd the contributor do? Leave a review to share your experience working with them.