# Secure Login System

I'll create a complete HTML5 login system with signup, login, and homepage interfaces. This will be a self-contained frontend that can connect to your Node.js/Express/MongoDB backend.


<!DOCTYPE html>
<html lang="en" id="unico-0">
<head id="unico-1">
    <meta charset="UTF-8" id="unico-2">
    <meta name="viewport" content="width=device-width, initial-scale=1.0" id="unico-3">
    <title id="unico-4">Secure Login System</title>
    <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css" rel="stylesheet" id="unico-5">
    <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css" id="unico-6">
    <style id="unico-7">
        body {
            font-family: 'Segoe UI', Tahoma, Geneva, Verdana, sans-serif;
            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
            min-height: 100vh;
            display: flex;
            align-items: center;
            justify-content: center;
            padding: 20px;
        }
        
        .auth-container {
            background: rgba(255, 255, 255, 0.9);
            border-radius: 15px;
            box-shadow: 0 15px 30px rgba(0, 0, 0, 0.2);
            width: 100%;
            max-width: 450px;
            padding: 30px;
            transition: all 0.3s ease;
        }
        
        .auth-header {
            text-align: center;
            margin-bottom: 30px;
        }
        
        .auth-header h2 {
            color: #333;
            font-weight: 600;
            margin-bottom: 10px;
        }
        
        .auth-header p {
            color: #666;
        }
        
        .form-control {
            border-radius: 8px;
            padding: 12px 15px;
            border: 1px solid #ddd;
            margin-bottom: 20px;
            transition: all 0.3s;
        }
        
        .form-control:focus {
            border-color: #667eea;
            box-shadow: 0 0 0 0.2rem rgba(102, 126, 234, 0.25);
        }
        
        .input-group-text {
            background: transparent;
            border-radius: 8px 0 0 8px;
        }
        
        .btn-auth {
            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
            border: none;
            color: white;
            padding: 12px;
            border-radius: 8px;
            width: 100%;
            font-weight: 600;
            margin-top: 10px;
            transition: all 0.3s;
        }
        
        .btn-auth:hover {
            transform: translateY(-2px);
            box-shadow: 0 5px 15px rgba(0, 0, 0, 0.2);
        }
        
        .alert {
            border-radius: 8px;
            margin-top: 20px;
        }
        
        .auth-switch {
            text-align: center;
            margin-top: 20px;
            color: #666;
        }
        
        .auth-switch a {
            color: #667eea;
            text-decoration: none;
            font-weight: 600;
            cursor: pointer;
        }
        
        .password-toggle {
            cursor: pointer;
            background: #f8f9fa;
            border: 1px solid #ddd;
            border-left: none;
            border-radius: 0 8px 8px 0;
        }
        
        .homepage {
            display: none;
            background: white;
            border-radius: 15px;
            box-shadow: 0 15px 30px rgba(0, 0, 0, 0.2);
            width: 100%;
            max-width: 800px;
            padding: 40px;
            text-align: center;
        }
        
        .welcome-header {
            margin-bottom: 30px;
        }
        
        .welcome-header h1 {
            color: #333;
            margin-bottom: 10px;
        }
        
        .features {
            display: flex;
            flex-wrap: wrap;
            justify-content: center;
            gap: 20px;
            margin: 30px 0;
        }
        
        .feature-card {
            background: #f8f9fa;
            border-radius: 10px;
            padding: 20px;
            width: 220px;
            transition: all 0.3s;
        }
        
        .feature-card:hover {
            transform: translateY(-5px);
            box-shadow: 0 10px 20px rgba(0, 0, 0, 0.1);
        }
        
        .feature-icon {
            font-size: 2.5rem;
            color: #667eea;
            margin-bottom: 15px;
        }
        
        .btn-logout {
            background: #dc3545;
            color: white;
            border: none;
            padding: 10px 20px;
            border-radius: 8px;
            font-weight: 600;
            margin-top: 20px;
            transition: all 0.3s;
        }
        
        .btn-logout:hover {
            background: #c82333;
            transform: translateY(-2px);
        }
    </style>
</head>
<body id="unico-8">
    <!-- Login Container -->
    <div class="auth-container" id="loginContainer">
        <div class="auth-header" id="unico-9">
            <h2 id="unico-10">Welcome Back</h2>
            <p id="unico-11">Sign in to access your account</p>
        </div>
        
        <form id="loginForm">
            <div class="mb-3" id="unico-12">
                <label for="loginUsername" class="form-label" id="unico-13">Username</label>
                <div class="input-group" id="unico-14">
                    <span class="input-group-text" id="unico-15"><i class="fas fa-user" id="unico-16"></i></span>
                    <input type="text" class="form-control" id="loginUsername" placeholder="Enter your username" required>
                </div>
            </div>
            
            <div class="mb-3" id="unico-17">
                <label for="loginPassword" class="form-label" id="unico-18">Password</label>
                <div class="input-group" id="unico-19">
                    <span class="input-group-text" id="unico-20"><i class="fas fa-lock" id="unico-21"></i></span>
                    <input type="password" class="form-control" id="loginPassword" placeholder="Enter your password" required>
                    <span class="input-group-text password-toggle" onclick="togglePassword(&apos;loginPassword&apos;)" id="unico-22">
                        <i class="fas fa-eye" id="unico-23"></i>
                    </span>
                </div>
            </div>
            
            <button type="submit" class="btn-auth" id="unico-24">Login</button>
            
            <div class="alert alert-danger mt-3" role="alert" id="loginError" style="display: none;">
                Invalid username or password. Please try again.
            </div>
        </form>
        
        <div class="auth-switch" id="unico-25">
            Don't have an account? <a id="showSignup">Sign up</a>
        </div>
    </div>
    
    <!-- Signup Container -->
    <div class="auth-container" id="signupContainer" style="display: none;">
        <div class="auth-header" id="unico-26">
            <h2 id="unico-27">Create Account</h2>
            <p id="unico-28">Join us today and access exclusive features</p>
        </div>
        
        <form id="signupForm">
            <div class="mb-3" id="unico-29">
                <label for="signupUsername" class="form-label" id="unico-30">Username</label>
                <div class="input-group" id="unico-31">
                    <span class="input-group-text" id="unico-32"><i class="fas fa-user" id="unico-33"></i></span>
                    <input type="text" class="form-control" id="signupUsername" placeholder="Choose a username" required>
                </div>
            </div>
            
            <div class="mb-3" id="unico-34">
                <label for="signupPassword" class="form-label" id="unico-35">Password</label>
                <div class="input-group" id="unico-36">
                    <span class="input-group-text" id="unico-37"><i class="fas fa-lock" id="unico-38"></i></span>
                    <input type="password" class="form-control" id="signupPassword" placeholder="Create a strong password" required>
                    <span class="input-group-text password-toggle" onclick="togglePassword(&apos;signupPassword&apos;)" id="unico-39">
                        <i class="fas fa-eye" id="unico-40"></i>
                    </span>
                </div>
                <div class="form-text" id="unico-41">Use at least 8 characters with a mix of letters, numbers and symbols</div>
            </div>
            
            <div class="mb-3" id="unico-42">
                <label for="confirmPassword" class="form-label" id="unico-43">Confirm Password</label>
                <div class="input-group" id="unico-44">
                    <span class="input-group-text" id="unico-45"><i class="fas fa-lock" id="unico-46"></i></span>
                    <input type="password" class="form-control" id="confirmPassword" placeholder="Confirm your password" required>
                </div>
            </div>
            
            <button type="submit" class="btn-auth" id="unico-47">Create Account</button>
            
            <div class="alert alert-success mt-3" role="alert" id="signupSuccess" style="display: none;">
                Account created successfully! You can now login.
            </div>
            
            <div class="alert alert-danger mt-3" role="alert" id="signupError" style="display: none;">
                Username already exists. Please choose a different one.
            </div>
        </form>
        
        <div class="auth-switch" id="unico-48">
            Already have an account? <a id="showLogin">Sign in</a>
        </div>
    </div>
    
    <!-- Homepage -->
    <div class="homepage" id="homepage">
        <div class="welcome-header" id="unico-49">
            <h1 id="unico-50">Welcome, <span id="usernameDisplay">User</span>!</h1>
            <p class="lead" id="unico-51">You have successfully logged into your account.</p>
        </div>
        
        <div class="features" id="unico-52">
            <div class="feature-card" id="unico-53">
                <div class="feature-icon" id="unico-54">
                    <i class="fas fa-shield-alt" id="unico-55"></i>
                </div>
                <h4 id="unico-56">Secure Storage</h4>
                <p id="unico-57">Your data is encrypted and securely stored</p>
            </div>
            
            <div class="feature-card" id="unico-58">
                <div class="feature-icon" id="unico-59">
                    <i class="fas fa-bolt" id="unico-60"></i>
                </div>
                <h4 id="unico-61">Fast Performance</h4>
                <p id="unico-62">Experience lightning fast response times</p>
            </div>
            
            <div class="feature-card" id="unico-63">
                <div class="feature-icon" id="unico-64">
                    <i class="fas fa-sync-alt" id="unico-65"></i>
                </div>
                <h4 id="unico-66">Always Available</h4>
                <p id="unico-67">Access your account from anywhere, anytime</p>
            </div>
        </div>
        
        <div class="user-actions" id="unico-68">
            <button class="btn btn-logout" id="logoutBtn">
                <i class="fas fa-sign-out-alt" id="unico-69"></i> Logout
            </button>
        </div>
    </div>

    <script id="unico-70">
        // DOM elements
        const loginContainer = document.getElementById('loginContainer');
        const signupContainer = document.getElementById('signupContainer');
        const homepage = document.getElementById('homepage');
        const showSignup = document.getElementById('showSignup');
        const showLogin = document.getElementById('showLogin');
        const loginForm = document.getElementById('loginForm');
        const signupForm = document.getElementById('signupForm');
        const loginError = document.getElementById('loginError');
        const signupSuccess = document.getElementById('signupSuccess');
        const signupError = document.getElementById('signupError');
        const usernameDisplay = document.getElementById('usernameDisplay');
        const logoutBtn = document.getElementById('logoutBtn');
        
        // Toggle between login and signup forms
        showSignup.addEventListener('click', () => {
            loginContainer.style.display = 'none';
            signupContainer.style.display = 'block';
            clearMessages();
        });
        
        showLogin.addEventListener('click', () => {
            signupContainer.style.display = 'none';
            loginContainer.style.display = 'block';
            clearMessages();
        });
        
        // Toggle password visibility
        function togglePassword(inputId) {
            const passwordInput = document.getElementById(inputId);
            const eyeIcon = passwordInput.nextElementSibling.querySelector('i');
            
            if (passwordInput.type === 'password') {
                passwordInput.type = 'text';
                eyeIcon.classList.remove('fa-eye');
                eyeIcon.classList.add('fa-eye-slash');
            } else {
                passwordInput.type = 'password';
                eyeIcon.classList.remove('fa-eye-slash');
                eyeIcon.classList.add('fa-eye');
            }
        }
        
        // Clear error/success messages
        function clearMessages() {
            loginError.style.display = 'none';
            signupSuccess.style.display = 'none';
            signupError.style.display = 'none';
        }
        
        // Handle login form submission
        loginForm.addEventListener('submit', async (e) => {
            e.preventDefault();
            
            const username = document.getElementById('loginUsername').value;
            const password = document.getElementById('loginPassword').value;
            
            try {
                // In a real application, this would be a fetch call to your backend
                // const response = await fetch('http://localhost:3000/login', {
                //     method: 'POST',
                //     headers: {
                //         'Content-Type': 'application/json'
                //     },
                //     body: JSON.stringify({ username, password })
                // });
                
                // const data = await response.json();
                
                // Simulate API response for demo purposes
                // In a real app, you would use the actual response from your backend
                const simulatedResponse = {
                    success: true,
                    username: username
                };
                
                // For demo, let's assume login is successful if password is not "wrongpassword"
                if (password !== "wrongpassword") {
                    // If login is successful
                    loginContainer.style.display = 'none';
                    signupContainer.style.display = 'none';
                    homepage.style.display = 'block';
                    usernameDisplay.textContent = username;
                } else {
                    // If login fails
                    loginError.style.display = 'block';
                }
            } catch (error) {
                console.error('Login error:', error);
                loginError.style.display = 'block';
            }
        });
        
        // Handle signup form submission
        signupForm.addEventListener('submit', async (e) => {
            e.preventDefault();
            
            const username = document.getElementById('signupUsername').value;
            const password = document.getElementById('signupPassword').value;
            const confirmPassword = document.getElementById('confirmPassword').value;
            
            // Simple frontend validation
            if (password !== confirmPassword) {
                alert("Passwords don't match!");
                return;
            }
            
            if (password.length < 8) {
                alert("Password must be at least 8 characters long!");
                return;
            }
            
            try {
                // In a real application, this would be a fetch call to your backend
                // const response = await fetch('http://localhost:3000/signup', {
                //     method: 'POST',
                //     headers: {
                //         'Content-Type': 'application/json'
                //     },
                //     body: JSON.stringify({ username, password })
                // });
                
                // const data = await response.json();
                
                // Simulate API response for demo purposes
                // For demo, let's assume signup is successful if username is not "existinguser"
                if (username !== "existinguser") {
                    // If signup is successful
                    signupSuccess.style.display = 'block';
                    signupError.style.display = 'none';
                    
                    // Clear form
                    signupForm.reset();
                    
                    // Switch to login after a delay
                    setTimeout(() => {
                        signupContainer.style.display = 'none';
                        loginContainer.style.display = 'block';
                        signupSuccess.style.display = 'none';
                    }, 2000);
                } else {
                    // If username already exists
                    signupError.style.display = 'block';
                    signupSuccess.style.display = 'none';
                }
            } catch (error) {
                console.error('Signup error:', error);
                signupError.style.display = 'block';
                signupSuccess.style.display = 'none';
            }
        });
        
        // Handle logout
        logoutBtn.addEventListener('click', () => {
            homepage.style.display = 'none';
            loginContainer.style.display = 'block';
            loginForm.reset();
            clearMessages();
        });
    </script>
</body>
</html>


## Backend Implementation Notes

For your Node.js/Express/MongoDB backend, you'll need to implement the following:

1. Install required packages:
bash
npm install express mongoose bcryptjs cors


2. Set up a basic server structure with:
   - User model with username and hashed password
   - `/signup` endpoint that hashes passwords and stores users
   - `/login` endpoint that verifies credentials
   - Password hashing using bcrypt

3. Example user model:
javascript
const mongoose = require('mongoose');
const bcrypt = require('bcryptjs');

const userSchema = new mongoose.Schema({
  username: { type: String, required: true, unique: true },
  password: { type: String, required: true }
});

userSchema.pre('save', async function(next) {
  if (!this.isModified('password')) return next();
  this.password = await bcrypt.hash(this.password, 12);
  next();
});

module.exports = mongoose.model('User', userSchema);


The frontend code provided is complete and ready to use. It includes simulated API responses for demonstration purposes. To connect it to your actual backend, uncomment and modify the fetch requests in the form submission handlers.