Is this skill limited to TypeScript?

While many patterns are demonstrated in TypeScript/Node.js, the architectural concepts and security best practices are applicable to most modern backend frameworks.

Does this skill support social logins?

Yes, it includes implementation patterns for OAuth2 and social login providers like Google and GitHub, often using Passport.js integrations.

Can it help with both stateful and stateless authentication?

Absolutely. It provides specific patterns for modern stateless JWT token flows as well as traditional stateful session management using Redis.

How does it handle complex user permissions?

It offers logic for hierarchical Role-Based Access Control (RBAC) and granular Permission-Based Access Control (PBAC) to manage what different users can do.

Auth Implementation Patterns

Name: Auth Implementation Patterns
Author: Activer007

byActiver007

•

API開発

Implements and debugs secure authentication and authorization systems including JWT, OAuth2, session management, and RBAC.

概要

This skill provides Claude with specialized knowledge for architecting, implementing, and troubleshooting robust access control systems within your codebase. It covers a wide spectrum of industry-standard patterns, ranging from stateless JWT-based authentication with refresh token flows to traditional Redis-backed session management and third-party OAuth2 integrations. Beyond identity verification, the skill offers sophisticated patterns for granular authorization via Role-Based Access Control (RBAC) and Permission-Based Access Control, helping developers ensure their APIs and applications are secure, scalable, and resilient against common security vulnerabilities.

主な機能

JWT implementation with secure access and refresh token rotation
OAuth2 and social login integration workflows for Google and GitHub
Granular authorization models including hierarchical RBAC and permission logic
1 GitHub stars
Session-based authentication patterns using Express and Redis storage
Advanced security debugging for token expiration and identity verification issues

ユースケース

Securing REST or GraphQL APIs with stateless token-based authentication
Implementing complex user permission levels and administrative dashboards
Migrating legacy stateful session systems to modern, scalable JWT architectures

概要

主な機能

JWT implementation with secure access and refresh token rotation
OAuth2 and social login integration workflows for Google and GitHub
Granular authorization models including hierarchical RBAC and permission logic
1 GitHub stars
Session-based authentication patterns using Express and Redis storage
Advanced security debugging for token expiration and identity verification issues

ユースケース

Securing REST or GraphQL APIs with stateless token-based authentication
Implementing complex user permission levels and administrative dashboards
Migrating legacy stateful session systems to modern, scalable JWT architectures