Implement Web2-Style Authentication Flow for User Signup and Login

[onlydustapp]

Overview

Enhance user experience and accessibility by introducing a traditional Web2-style authentication flow. This new approach will allow non-technical users to sign up and log in using a common email/username and password interface, while securely linking each account to its corresponding blockchain wallet address. 🔐

Details

Signup Flow

• Allow users to create an account using an email and password (we already have this on the frontend).
• Automatically link the new account with the user's wallet address that is connected to the application.
• Validate that each wallet address is unique to ensure no duplicate account associations.
• Securely handle and store user credentials using industry-standard practices.

Login Flow

• Implement a login mechanism that verifies user credentials and authenticates the user.
• Upon successful login, retrieve and return detailed user information including:
  • Wallet address
  • User role (e.g., LandOwner or Inspector)
  • Registered lands (if applicable)
  • Additional metadata
• Ensure proper error handling for invalid credentials or authentication failures. ⚠️

Technical Considerations

• Ensure secure storage and processing of passwords (e.g., hashing, salting).
• Maintain consistency with LandVer's current security and architecture standards.
• Integrate this flow seamlessly with the existing backend services in the land-registry-backend component.
• Test the new authentication flows thoroughly to ensure both functionality and security.

Deliverables

1. A signup form allowing traditional email/username and password registration with wallet linking.
2. A login form that authenticates users and retrieves their account data.
3. Backend updates to enforce unique wallet associations and secure credential storage.
4. Proper error handling and user feedback for both flows.

This improvement is key to making LandVer more approachable for users unfamiliar with blockchain wallet integrations while maintaining robust security for on-chain interactions. 🚀

[chiscookeke11]

Gm, I'm Okeke Chinedu, a Frontend Developer. I'd love to take on this issue, as I’ve previously worked on a similar feature where I associated usernames with wallet addresses. Looking forward to contributing!

[Dehorla-Tech]

I'd love to work on this, I have experience building secure auth flows and can ensure smooth wallet-account linking.

[moso0x]

GM ! GM! team,

I’d like to take on the implementation of the traditional Web2-style authentication flow outlined in the issue. This enhancement is crucial for improving accessibility and onboarding, especially for non-technical users unfamiliar with blockchain wallet operations.

Scope of Work
I will handle the following:

Signup Flow:

Enable account creation using email and password.

Login Flow:

Authenticate users with stored credentials.

Retrieve and return associated wallet address, user role, registered lands, and relevant metadata.

Backend Updates:

Securely store passwords using hashing and salting.

Implement error handling for invalid credentials and authentication failures.

Testing:

Thoroughly test signup and login flows to validate reliability, data integrity, and security.

Best regards,

[lucifer1017]

I am an experienced MERN Dev, let me pick this up!