I'm learning Node.js and looking forward to create a simple web application which will be based on Express and I was thinking of something like creating user groups and each group has its own users and each group has its own permissions (Just like ACL in Cakephp)
So can anyone recommend a good module or whatever to do so ?
Also I'm a little curious about security and how these passwords are going to be saved and what type of encryption the passwords will be encrypted in.
Well, This can be done manually but it will take sometime. The best approach I found is to create a role for each user and there will be the group ID so later we can assign the appropriate permissions
Thanks :)
Passport is my favorite piece of middleware, allowing you to use OpenID and OAuth providers and then some. There are more than 80 auth strategies in all.
I would definitely recommend a look at their guide.
I rolled my own using bcrypt: http://devsmash.com/blog/password-authentication-with-mongoose-and-bcrypt