Create and verify jwt tocken in nodeJs

========================Create const bcrypt = require('bcryptjs'); const jwt = require('jsonwebtoken'); exports.login = async (req, res, next) => { const email = req.query.email; const password = req.query.password; let loadedUser; try { var user = await User.findOne({ email: email }); if (!user) { res.status(200).json({ Message: 'A user with this email(' + email + ') could not be found.', Result: false }); } loadedUser = user; var isEqual = await bcrypt.compare(password, user.password); if (!isEqual) { const error = new Error('Wrong password!'); error.statusCode = 200; res.status(200).json({ Message: "'Wrong password!'", Result: false }); throw error; }; const token = jwt.sign( { email: loadedUser.email, userId: loadedUser._id.toString() }, 'somesupersecretsecret', { expiresIn: '1h' } ); res.status(200).json({ token: token, userId: loadedUser._id.toString(), Result: true, cdata: { email: loadedUser.email, password: loadedUser.password, _id: loadedUser._id, name: loadedUser.name } }); } catch (error) { res.status(201).json({ Message: error.message, response: error, Result: false }); } }; ===================== Verify const jwt = require('jsonwebtoken'); module.exports = (req, res, next) => { try { const authHeader = req.get('Authorization'); if (!authHeader) { const error = new Error('Not authenticated.'); error.statusCode = 401; throw error; } const token = authHeader.split(' ')[1]; let decodedToken; try { decodedToken = jwt.verify(token, 'somesupersecretsecret'); } catch (err) { err.statusCode = 500; throw err; } if (!decodedToken) { const error = new Error('Not authenticated.'); error.statusCode = 401; throw error; } req.userId = decodedToken.userId; next(); } catch (error) { res.status(500).json({ Message: error.message, response: error, Result: false }); } };