TinaHeiligers
commented
6 years ago Basic auth is implemented but as an auth strategy PR#7. Handling client side login with username(email) and password is going to use JWT and cookies (with the JWT as the cookie token). Basic auth is not needed, consider removing it.
The boilerplate client (react) app has two options for logging in: email and password and google auth directly through Google. This issue is to handle the former with a response that sets a cookie according to https://www.npmjs.com/package/react-cookie requirements.