Description

Create a secure authentication system that handles user registration, login, and session management.

Requirements

• Implement user authentication endpoints:
  • Registration endpoint
  • Login endpoint
  • Logout endpoint
  • Password reset functionality
• Create secure session management
• Implement JWT token handling
• Add rate limiting for security

Acceptance Criteria

• User can successfully register with email/password
• User can login and receive a valid JWT token
• Invalid login attempts are properly handled
• Password reset flow works end-to-end
• Rate limiting prevents brute force attempts
• Tokens properly expire and can be refreshed
• All endpoints are properly tested
• Security headers are configured
• Documentation includes API endpoints and usage