Just for anyone coming to this later there are a bunch of errors especially in the code samples provided. The “Token Verification Method” code, for example, doesn’t close the verify function.

Additionally, the later functionality to return the token from the jwt.sign function doesn’t actually return the token, just ok and message. You can just add , token and it will work fine.