Passport JWT auth
Mongo db
Access and refresh tokens
Success confirmation email after signup
Error logger and access log(Winston and morgan)
Clean code - ESLinter & prettier for code formatting consistency
Husky to enforce formatting on git staged files
API errors handling for dev and production env
Validation (joi)
Route protection
Rate limiter for brute force attack
XSS,NoSQL injection, clickjacking & MIME sniffing attack protections
CORS policy
Efficient file upload, compression
Redis caching
Node,
Redis (Redis-server must be running) and
Enabling the email sender by going to your Google Account > Security then enable 2-step verification and add a new app