pro $24.99 per month
- access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
- choose one free eBook per month to keep
- exclusive 50% discount on all purchases
lite $19.99 per month
- access to all Manning books, including MEAPs!
team
5, 10 or 20 seats+ for your team - learn more
Look inside
Improve developer engagement in PrincipalStack, an online publication of software development content. As its sole software engineer, your task is to create an API to expose the posting functionality of the Node.js web application. You’ll build a simple CRUD (create, read, update, delete) API and protect it with JWT-formatted access tokens issued by the authorization server, while maintaining the association between the content managed by the API and the original user who created it. When you’re done, you’ll have provided an interface for all external contributors, enhancing their user experience.
This project is designed for learning purposes and is not a complete, production-ready application or solution.
book resources
When you start your liveProject, you get full access to the following books for 90 days.
prerequisites
This liveProject is for intermediate JavaScript developers with some experience building or maintaining a web application using Node.js. To begin these liveProjects you’ll need to be familiar with the following:
TOOLS- Basic JavaScript (declare variables, use loops and branches, object and array destructuring, debugging, error handling)
- Basic Node.js (including npm and Express.js)
- Basic command line/terminal proficiency
- Intermediate in-browser development tool use (such as network call tracing (including URL parameters and request headers) and cookie management)
- Basic HTML, specifically forms
- Basic npm to create a new JS project and manage packages
you will learn
In this liveProject, you’ll learn how to define, expose, protect, and test an API that accepts and validates access tokens.
- Install and configure packages using the Node Package Manager (npm)
- Register API resources and the scopes that are allowed
- Store and use environment variables in a Node environment
- Generate secure, random string values using OpenSSL
- Use a simple Node application framework called Express.js to create API routes and add middleware
- Fetch and cache public keys (JWKS) from an authorization server to validate access tokens
- Protect API routes using an authorization middleware that validates JWT-formatted access tokens
- Apply good API design principles to communicate success and failures
- Validate incoming post data
- Integrate an OpenID Connect digital identity with an existing store of users
- Use a method of making HTTP requests, like cURL, to access and test our API endpoints
features
- Self-paced
- You choose the schedule and decide how much time to invest as you build your project.
- Project roadmap
- Each project is divided into several achievable steps.
- Get Help
- While within the liveProject platform, get help from other participants and our expert mentors.
- Compare with others
- For each step, compare your deliverable to the solutions by the author and other participants.
- book resources
- Get full access to select books for 90 days. Permanent access to excerpts from Manning products are also included, as well as references to other resources.
choose your plan
pro
monthly
annual
$24.99
$249.99
only $20.83 per month
- access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
- choose another free product every time you renew
- choose twelve free products per year
- exclusive 50% discount on all purchases
-
![]()
Build an OAuth2-Protected API project for free
Build an OAuth2-Protected API project for free
team
monthly
annual
$49.99
$499.99
only $41.67 per month
- five seats for your team
- access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
- choose another free product every time you renew
- choose twelve free products per year
- exclusive 50% discount on all purchases
-
![]()
Build an OAuth2-Protected API project for free
