This App use Firebase and JWT for authenticating users.During logging in / registration user receive a token that is stored in the localStorage, and then on each authenticated request user send the token in the header via axios along with the request.
Authorization use both RBAC (Role based access control) and PBAC (Permission based access control) auth. Backend contains middleware for verifying different user. Frontend use custom hooks for that.