So here i have made my own middlewar's to authenticate the users. Users can SignUp and login.
Just to hash the passwords i have used bcrypt.
But i have not done any session management or something to prevent user to go to the pages (by url) without authentication.