What authentication methods does this skill support?

It supports JSON Web Tokens (JWT) with refresh tokens, API Keys with SHA-256 hashing, and OAuth2 integration via Passport.js.

Does it include security best practices for Node.js?

Absolutely. It covers password hashing with Bcrypt, security headers with Helmet, CORS configuration, and rate limiting to prevent brute-force attacks.

How is session management handled?

The skill includes patterns for secure session management using express-session backed by Redis for scalable and secure state storage.

Is this skill compatible with TypeScript?

Yes, all patterns and examples are provided in TypeScript to ensure type safety and modern development standards.

Authentication Patterns

Name: Authentication Patterns
Author: bradtaylorsf

bybradtaylorsf

•

Seguridad y Pruebas

Implements secure authentication and authorization systems using JWT, OAuth2, and advanced access control models.

This skill provides comprehensive, production-ready patterns for securing backend applications. It equips Claude with the ability to implement diverse authentication methods—including JSON Web Tokens (JWT) with refresh logic, API key management, and OAuth2 social logins—alongside sophisticated authorization frameworks like Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC). By incorporating security best practices such as password hashing, secure headers, and rate limiting, it ensures backend services are robust against common vulnerabilities and follow industry standards for identity management.

Características Principales

01JWT implementation with access and refresh token rotation logic

02Secure API key generation, hashing, and middleware validation

03OAuth2 integration using Passport.js for third-party social logins

04Advanced authorization models including RBAC and ABAC policies

05Security hardening with Bcrypt, Helmet, CORS, and rate limiting

066 GitHub stars

Casos de Uso

01Building a secure REST API that requires fine-grained user permissions and role management

02Implementing a multi-tenant SaaS application using JWTs and secure session storage

03Adding third-party social login providers to an existing Node.js backend service

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add bradtaylorsf/alphaagent-team authentication-patterns

For use in Claude.ai and ChatGPT

Download Skill