DEV Community: NHero The latest articles on DEV Community by NHero (@nhero). https://dev.to/nhero https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F2071314%2F43bbd5b4-c0e3-4695-9c9a-c80cf051211d.png DEV Community: NHero https://dev.to/nhero en Struggled with Google OAuth in Express + TypeScript? I made a step-by-step guide using JWT auth, Passport.js, and MongoDB with a clean scalable setup πŸš€ NHero Sat, 23 May 2026 10:29:12 +0000 https://dev.to/nhero/struggled-with-google-oauth-in-express-typescript-i-made-a-step-by-step-guide-using-jwt-auth-b5m https://dev.to/nhero/struggled-with-google-oauth-in-express-typescript-i-made-a-step-by-step-guide-using-jwt-auth-b5m <div class="ltag__link--embedded"> <div class="crayons-story "> <a href="https://dev.to/nhero/google-login-in-express-with-passportjs-jwt-1483" class="crayons-story__hidden-navigation-link">Google Login in Express with PassportJS &amp; JWT</a> <div class="crayons-story__body crayons-story__body-full_post"> <div class="crayons-story__top"> <div class="crayons-story__meta"> <div class="crayons-story__author-pic"> <a href="/nhero" class="crayons-avatar crayons-avatar--l "> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F2071314%2F43bbd5b4-c0e3-4695-9c9a-c80cf051211d.png" alt="nhero profile" class="crayons-avatar__image" width="400" height="300"> </a> </div> <div> <div> <a href="/nhero" class="crayons-story__secondary fw-medium m:hidden"> NHero </a> <div class="profile-preview-card relative mb-4 s:mb-0 fw-medium hidden m:inline-block"> NHero <div id="story-author-preview-content-3731913" class="profile-preview-card__content crayons-dropdown branded-7 p-4 pt-0"> <div class="gap-4 grid"> <div class="-mt-4"> <a href="/nhero" class="flex"> <span class="crayons-avatar crayons-avatar--xl mr-2 shrink-0"> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F2071314%2F43bbd5b4-c0e3-4695-9c9a-c80cf051211d.png" class="crayons-avatar__image" alt="" width="400" height="300"> </span> <span class="crayons-link crayons-subtitle-2 mt-5">NHero</span> </a> </div> <div class="print-hidden"> Follow </div> <div class="author-preview-metadata-container"></div> </div> </div> </div> </div> <a href="https://dev.to/nhero/google-login-in-express-with-passportjs-jwt-1483" class="crayons-story__tertiary fs-xs"><time>May 23</time><span class="time-ago-indicator-initial-placeholder"></span></a> </div> </div> </div> <div class="crayons-story__indention"> <h2 class="crayons-story__title crayons-story__title-full_post"> <a href="https://dev.to/nhero/google-login-in-express-with-passportjs-jwt-1483" id="article-link-3731913"> Google Login in Express with PassportJS &amp; JWT </a> </h2> <div class="crayons-story__tags"> <a class="crayons-tag crayons-tag--monochrome " href="/t/webdev"><span class="crayons-tag__prefix">#</span>webdev</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/backend"><span class="crayons-tag__prefix">#</span>backend</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/express"><span class="crayons-tag__prefix">#</span>express</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/passportjs"><span class="crayons-tag__prefix">#</span>passportjs</a> </div> <div class="crayons-story__bottom"> <div class="crayons-story__details"> <a href="https://dev.to/nhero/google-login-in-express-with-passportjs-jwt-1483" class="crayons-btn crayons-btn--s crayons-btn--ghost crayons-btn--icon-left"> <div class="multiple_reactions_aggregate"> <span class="multiple_reactions_icons_container"> <span class="crayons_icon_container"> <img src="https://assets.dev.to/assets/exploding-head-daceb38d627e6ae9b730f36a1e390fca556a4289d5a41abb2c35068ad3e2c4b5.svg" width="24" height="24"> </span> <span class="crayons_icon_container"> <img src="https://assets.dev.to/assets/multi-unicorn-b44d6f8c23cdd00964192bedc38af3e82463978aa611b4365bd33a0f1f4f3e97.svg" width="24" height="24"> </span> <span class="crayons_icon_container"> <img src="https://assets.dev.to/assets/sparkle-heart-5f9bee3767e18deb1bb725290cb151c25234768a0e9a2bd39370c382d02920cf.svg" width="24" height="24"> </span> </span> <span class="aggregate_reactions_counter">5<span class="hidden s:inline">Β reactions</span></span> </div> </a> <a href="https://dev.to/nhero/google-login-in-express-with-passportjs-jwt-1483#comments" class="crayons-btn crayons-btn--s crayons-btn--ghost crayons-btn--icon-left flex items-center"> Comments <span class="hidden s:inline">AddΒ Comment</span> </a> </div> <div class="crayons-story__save"> <small class="crayons-story__tertiary fs-xs mr-2"> 3 min read </small> <span class="bm-initial"> </span> <span class="bm-success"> </span> </div> </div> </div> </div> </div> </div> Google Login in Express with PassportJS & JWT NHero Sat, 23 May 2026 10:12:28 +0000 https://dev.to/nhero/google-login-in-express-with-passportjs-jwt-1483 https://dev.to/nhero/google-login-in-express-with-passportjs-jwt-1483 <p>In this blog, we will implement Google Authentication in an Express.js app using:</p> <ul> <li>TypeScript</li> <li>Express.js</li> <li>Mongoose</li> <li>Passport.js</li> <li>JWT Authentication</li> </ul> <h2> Project Structure </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>└── src/ β”œβ”€β”€ config/ β”œβ”€β”€ controllers/ β”œβ”€β”€ middlewares/ β”œβ”€β”€ models/ β”œβ”€β”€ routes/ β”œβ”€β”€ utils/ β”œβ”€β”€ app.ts └── index.ts β”œβ”€β”€ .env β”œβ”€β”€ package.json └── tsconfig.json </code></pre> </div> <h2> Install Required Packages </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>passport passport-google-oauth20 npm <span class="nb">install </span>jsonwebtoken cookie-parser bcrypt mongoose npm <span class="nb">install</span> <span class="nt">-D</span> @types/passport-google-oauth20 </code></pre> </div> <h2> Create Google OAuth Credentials </h2> <p>Go to <a href="https://console.cloud.google.com/" rel="noopener noreferrer">Google Cloud Console</a><br> {/*<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>https://console.cloud.google.com/ </code></pre> </div> <p><br> */}</p> <h2> Steps </h2> <h3> 1. Create a new project </h3> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F1db9fbw85hpodenwwqij.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F1db9fbw85hpodenwwqij.png" alt="create a new project" width="708" height="569"></a></p> <h3> 2. Configure OAuth Consent Screen </h3> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F8gaicr56cw4q3544hr86.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F8gaicr56cw4q3544hr86.png" alt="Configure OAuth Consent Screen" width="800" height="341"></a></p> <h3> 3. Create OAuth 2.0 Client ID </h3> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fkpcbyuoxkt1jsurtbz7e.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fkpcbyuoxkt1jsurtbz7e.png" alt="go to clients" width="431" height="588"></a></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fdqe2wk67t3obj6avclkh.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fdqe2wk67t3obj6avclkh.png" alt="create oauth2.0 client" width="652" height="440"></a></p> <h3> 4. Configure OAuth Client </h3> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F6vlpn8yym5c5xm4l07dv.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F6vlpn8yym5c5xm4l07dv.png" alt="create oauth2.0 client" width="679" height="949"></a></p> <h3> 5. Copy Client ID and Client Secret </h3> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fgddvpqsxlml4ag84wnfg.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fgddvpqsxlml4ag84wnfg.png" alt="copy credentials" width="620" height="785"></a></p> <h2> Environment Variables </h2> <p>Create a <code>.env</code> file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>GOOGLE_CLIENT_ID= GOOGLE_CLIENT_SECRET= GOOGLE_CALLBACK_URL=http://localhost:3000/api/v1/auth/google/callback </code></pre> </div> <h2> Important User Model Changes </h2> <p>Your user model MUST contain these fields:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">refreshToken</span><span class="p">:</span> <span class="p">{</span> <span class="nl">type</span><span class="p">:</span> <span class="nb">String</span><span class="p">,</span> <span class="p">},</span> <span class="nx">googleId</span><span class="p">:</span> <span class="p">{</span> <span class="nl">type</span><span class="p">:</span> <span class="nb">String</span><span class="p">,</span> <span class="p">},</span> </code></pre> </div> <p>If you already support password login, make password optional:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">password</span><span class="p">:</span> <span class="p">{</span> <span class="nl">type</span><span class="p">:</span> <span class="nb">String</span><span class="p">,</span> <span class="nx">required</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="p">},</span> </code></pre> </div> <p>Also add checks wherever password login is used:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">user</span><span class="p">.</span><span class="nx">password</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Password login not available for this account</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h2> Configure PassportJS </h2> <p>Create: <code>src/config/passport.ts</code><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">passport</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">passport</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Strategy</span> <span class="k">as</span> <span class="nx">GoogleStrategy</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">passport-google-oauth20</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">User</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../models/User.model.js</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">generateUsername</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../utils/usernameGen.js</span><span class="dl">"</span><span class="p">;</span> <span class="nx">passport</span><span class="p">.</span><span class="nf">use</span><span class="p">(</span> <span class="k">new</span> <span class="nc">GoogleStrategy</span><span class="p">(</span> <span class="p">{</span> <span class="na">clientID</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">GOOGLE_CLIENT_ID</span><span class="o">!!</span><span class="p">,</span> <span class="na">clientSecret</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">GOOGLE_CLIENT_SECRET</span><span class="o">!!</span><span class="p">,</span> <span class="na">callbackURL</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">GOOGLE_CALLBACK_URL</span><span class="p">,</span> <span class="p">},</span> <span class="k">async </span><span class="p">(</span><span class="nx">_accessToken</span><span class="p">,</span> <span class="nx">_refreshToken</span><span class="p">,</span> <span class="nx">profile</span><span class="p">,</span> <span class="nx">done</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">email</span> <span class="o">=</span> <span class="nx">profile</span><span class="p">.</span><span class="nx">emails</span><span class="p">?.[</span><span class="mi">0</span><span class="p">]?.</span><span class="nx">value</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">email</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nf">done</span><span class="p">(</span><span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">No email found</span><span class="dl">"</span><span class="p">));</span> <span class="p">}</span> <span class="kd">let</span> <span class="nx">user</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">User</span><span class="p">.</span><span class="nf">findOne</span><span class="p">({</span> <span class="na">$or</span><span class="p">:</span> <span class="p">[{</span> <span class="na">googleId</span><span class="p">:</span> <span class="nx">profile</span><span class="p">.</span><span class="nx">id</span> <span class="p">},</span> <span class="p">{</span> <span class="nx">email</span> <span class="p">}],</span> <span class="p">});</span> <span class="k">if </span><span class="p">(</span><span class="nx">user</span> <span class="o">&amp;&amp;</span> <span class="o">!</span><span class="nx">user</span><span class="p">.</span><span class="nx">googleId</span><span class="p">)</span> <span class="p">{</span> <span class="nx">user</span><span class="p">.</span><span class="nx">googleId</span> <span class="o">=</span> <span class="nx">profile</span><span class="p">.</span><span class="nx">id</span><span class="p">;</span> <span class="k">await</span> <span class="nx">user</span><span class="p">.</span><span class="nf">save</span><span class="p">();</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">username</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">generateUsername</span><span class="p">(</span><span class="nx">profile</span><span class="p">.</span><span class="nx">displayName</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">user</span><span class="p">)</span> <span class="p">{</span> <span class="nx">user</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">User</span><span class="p">.</span><span class="nf">create</span><span class="p">({</span> <span class="nx">username</span><span class="p">,</span> <span class="na">fullName</span><span class="p">:</span> <span class="nx">profile</span><span class="p">.</span><span class="nx">displayName</span><span class="p">,</span> <span class="nx">email</span><span class="p">,</span> <span class="na">googleId</span><span class="p">:</span> <span class="nx">profile</span><span class="p">.</span><span class="nx">id</span><span class="p">,</span> <span class="na">avatarUrl</span><span class="p">:</span> <span class="nx">profile</span><span class="p">.</span><span class="nx">photos</span><span class="p">?.[</span><span class="mi">0</span><span class="p">]?.</span><span class="nx">value</span> <span class="o">||</span> <span class="dl">""</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> <span class="nx">user</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">User</span><span class="p">.</span><span class="nf">findById</span><span class="p">(</span><span class="nx">user</span><span class="p">.</span><span class="nx">_id</span><span class="p">).</span><span class="nf">select</span><span class="p">(</span> <span class="dl">"</span><span class="s2">-password -refreshToken -googleId</span><span class="dl">"</span> <span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">user</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nf">done</span><span class="p">(</span><span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">User not found after creation</span><span class="dl">"</span><span class="p">));</span> <span class="p">}</span> <span class="k">return</span> <span class="nf">done</span><span class="p">(</span><span class="kc">null</span><span class="p">,</span> <span class="nx">user</span><span class="p">);</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nf">done</span><span class="p">(</span><span class="nx">error</span> <span class="k">as</span> <span class="nb">Error</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="p">)</span> <span class="p">);</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">passport</span><span class="p">;</span> </code></pre> </div> <h2> Username Generator </h2> <p>Create: <code>src/utils/usernameGen.ts</code></p> <p>Your logic should:</p> <ul> <li>Convert full name into username</li> <li>Add numbers if username already exists</li> <li>Ensure uniqueness</li> </ul> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>john john12 john123 </code></pre> </div> <h2> Google Auth Controller </h2> <p><code>src/controllers/auth.controller.ts</code><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="kd">const</span> <span class="nx">googleAuth</span> <span class="o">=</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">:</span> <span class="nx">Request</span><span class="p">,</span> <span class="nx">res</span><span class="p">:</span> <span class="nx">Response</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">user</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">user</span><span class="o">!</span><span class="p">;</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">accessToken</span><span class="p">,</span> <span class="nx">refreshToken</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">generateTokens</span><span class="p">(</span><span class="nx">user</span><span class="p">.</span><span class="nx">_id</span><span class="p">);</span> <span class="k">return</span> <span class="nx">res</span> <span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">200</span><span class="p">)</span> <span class="p">.</span><span class="nf">cookie</span><span class="p">(</span><span class="dl">"</span><span class="s2">accessToken</span><span class="dl">"</span><span class="p">,</span> <span class="nx">accessToken</span><span class="p">,</span> <span class="nx">cookieOptions</span><span class="p">)</span> <span class="p">.</span><span class="nf">cookie</span><span class="p">(</span><span class="dl">"</span><span class="s2">refreshToken</span><span class="dl">"</span><span class="p">,</span> <span class="nx">refreshToken</span><span class="p">,</span> <span class="nx">cookieOptions</span><span class="p">)</span> <span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">success</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="nx">user</span><span class="p">,</span> <span class="p">});</span> <span class="p">};</span> </code></pre> </div> <h2> Google Auth Routes </h2> <p><code>src/routes/auth.route.ts</code><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">router</span><span class="p">.</span><span class="nf">route</span><span class="p">(</span><span class="dl">"</span><span class="s2">/google</span><span class="dl">"</span><span class="p">).</span><span class="nf">get</span><span class="p">(</span> <span class="nx">passport</span><span class="p">.</span><span class="nf">authenticate</span><span class="p">(</span><span class="dl">"</span><span class="s2">google</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">scope</span><span class="p">:</span> <span class="p">[</span><span class="dl">"</span><span class="s2">profile</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">email</span><span class="dl">"</span><span class="p">],</span> <span class="na">session</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="p">})</span> <span class="p">);</span> <span class="nx">router</span><span class="p">.</span><span class="nf">route</span><span class="p">(</span><span class="dl">"</span><span class="s2">/google/callback</span><span class="dl">"</span><span class="p">).</span><span class="nf">get</span><span class="p">(</span> <span class="nx">passport</span><span class="p">.</span><span class="nf">authenticate</span><span class="p">(</span><span class="dl">"</span><span class="s2">google</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">failureRedirect</span><span class="p">:</span> <span class="dl">"</span><span class="s2">/login</span><span class="dl">"</span><span class="p">,</span> <span class="na">session</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">failureMessage</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Failed to login with Google</span><span class="dl">"</span><span class="p">,</span> <span class="p">}),</span> <span class="nx">googleAuth</span> <span class="p">);</span> </code></pre> </div> <h2> Initialize Passport </h2> <p>Inside <code>app.ts</code><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">passport</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">./config/passport.js</span><span class="dl">"</span><span class="p">;</span> <span class="nx">app</span><span class="p">.</span><span class="nf">use</span><span class="p">(</span><span class="nx">passport</span><span class="p">.</span><span class="nf">initialize</span><span class="p">());</span> </code></pre> </div> <h2> Authentication Flow </h2> <ol> <li>User visits: <code>/api/v1/auth/google</code> </li> <li>Google login page opens</li> <li>User authenticates</li> <li>Google redirects back to callback URL</li> <li>User gets JWT tokens</li> <li>Cookies are set</li> </ol> <h2> Testing </h2> <p>Open: <a href="http://localhost:3000/api/v1/auth/google" rel="noopener noreferrer"></a><a href="http://localhost:3000/api/v1/auth/google" rel="noopener noreferrer">http://localhost:3000/api/v1/auth/google</a></p> <p>If configured correctly:</p> <ul> <li>Google login opens</li> <li>User account gets created</li> <li>JWT cookies are generated</li> </ul> <h2> Common Issues </h2> <h3> Invalid Redirect URI </h3> <p>Ensure callback URL matches exactly in:</p> <ul> <li>Google Console</li> <li><code>.env</code></li> <li>Passport Strategy</li> </ul> <h3> Missing Email </h3> <p>Make sure scope contains:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">scope</span><span class="p">:</span> <span class="p">[</span><span class="dl">"</span><span class="s2">profile</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">email</span><span class="dl">"</span><span class="p">]</span> </code></pre> </div> <h2> Production Tips </h2> <p>Use secure cookies in production:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">secure</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="nx">httpOnly</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="nx">sameSite</span><span class="p">:</span> <span class="dl">"</span><span class="s2">strict</span><span class="dl">"</span><span class="p">,</span> </code></pre> </div> <h2> Final Thoughts </h2> <p>You now have Google Authentication working with:</p> <ul> <li>Express.js</li> <li>TypeScript</li> <li>Mongoose</li> <li>Passport.js</li> <li>JWT</li> </ul> <p>You can further extend this with:</p> <ul> <li>GitHub OAuth</li> <li>Discord OAuth</li> <li>Role-based auth</li> <li>Email verification</li> </ul> <p>Happy coding πŸš€</p> webdev backend express passportjs