The Secrets app is a secure platform that allows users to register, login, and anonymously share their secrets. This project emphasizes robust authentication, secure session management, and best practices in web security.
- User Registration: Validates name, email, and password with strong password policies.
- Secure Login: Passwords are hashed using bcrypt.
- Session Management: Uses secure, HttpOnly cookies and express-session.
- Secret Sharing: Authenticated users can submit secrets and view secrets shared by others.
- Logout: Proper session destruction and redirect to login.
- Responsive UI: Clean and user-friendly interface with Bootstrap.
- Node.js
- Express.js
- MongoDB with Mongoose
- EJS templating engine
- bcrypt for password hashing
- express-session for session management
- Bootstrap for UI styling
Check out the live version here: Secrets
- Clone the repo:
git clone https://github.com/yourusername/secrets-app.git cd secrets-app