How does it handle complex POST requests?

It provides specific patterns for sending JSON data via the test-auth-route.js script or manual curl commands, ensuring the payload and headers are correctly formatted.

Can I use this for local development without Keycloak?

Yes, the skill includes a Mock Authentication method that allows developers to bypass Keycloak by using specific headers when the environment is set to development or test.

Does this skill support Bearer tokens?

While primarily designed for cookie-based JWT authentication, the logic and patterns provided can be easily adapted for standard Authorization Bearer headers.

How do I verify if a route actually updated the database?

The skill includes database verification patterns using Docker and MySQL commands to inspect table state immediately following a successful API test.

Does it provide debugging steps for failed requests?

Yes, it includes a comprehensive troubleshooting guide for 401, 403, 404, and 500 errors, helping you identify if the issue lies in the token, permissions, or service configuration.

Authenticated Route Tester

Name: Authenticated Route Tester
Author: Microck

byMicrock

•

セキュリティとテスト

Automates the testing of authenticated API routes using cookie-based JWT authentication and mock providers.

概要

The Authenticated Route Tester skill provides a structured framework for validating protected API endpoints within backend architectures, specifically those utilizing Keycloak and cookie-based JWT tokens. It streamlines the testing process by offering standardized patterns for GET, POST, PUT, and DELETE operations, including a dedicated script for automated token generation and signing. Whether you are debugging authentication failures, testing multipart file uploads, or verifying database side effects after an API call, this skill ensures consistency across multiple microservices and local development environments.

主な機能

Integrated database verification steps to confirm API state changes
Support for cookie-based authentication workflows over standard Bearer headers
Mock authentication patterns for rapid local development and testing
Automated Keycloak authentication and JWT token signing
81 GitHub stars
Comprehensive testing templates for JSON payloads and multipart/form-data

ユースケース

Verifying end-to-end data integrity by checking MySQL state after API calls
Debugging 401 Unauthorized and 403 Forbidden errors in complex JWT setups
Validating new API endpoints and route prefixes during development

概要

主な機能

Integrated database verification steps to confirm API state changes
Support for cookie-based authentication workflows over standard Bearer headers
Mock authentication patterns for rapid local development and testing
Automated Keycloak authentication and JWT token signing
81 GitHub stars
Comprehensive testing templates for JSON payloads and multipart/form-data

ユースケース

Verifying end-to-end data integrity by checking MySQL state after API calls
Debugging 401 Unauthorized and 403 Forbidden errors in complex JWT setups
Validating new API endpoints and route prefixes during development