Authentication system

[magicr146-lab]

Currently, the express-locallibrary application has no user authentication or session management. This means:

• Anyone can view the library catalog (intended), but anyone can also create, modify, or delete books, and book instances without identification (unintended).
• Users cannot sign up or sign in; there is no concept of a "current user" in the application.

[hamishwillee]

Correct. This would be a nice enhancement. We would accept a PR that added such a system here AND documented it in MDN.

The model to follow would be like the Django tutorial - https://developer.mozilla.org/en-US/docs/Learn_web_development/Extensions/Server-side/Django/Sessions and https://developer.mozilla.org/en-US/docs/Learn_web_development/Extensions/Server-side/Django/Authentication

The libraries used for this would need to be popular and well maintained.

The effort is significant, so it won't happen without volunteer work.