Can this skill help with JWT validation?

Absolutely. It includes patterns for validating OIDC ID tokens, including signature verification using JWKS, audience checks, issuer validation, and expiration handling.

Does this skill support machine-to-machine authentication?

Yes, it includes full implementation patterns for the Client Credentials flow, which is specifically designed for service-to-service communication where no user is involved.

How does the skill handle OpenID Connect discovery?

The skill provides logic to fetch and parse .well-known/openid-configuration endpoints, allowing your application to automatically discover authorization, token, and JWKS endpoints from an issuer URL.

What is PKCE and why is it recommended by this skill?

Proof Key for Code Exchange (PKCE) is a security extension for OAuth 2.0 that prevents authorization code interception attacks. It is the current industry standard for both public clients (mobile/SPAs) and confidential clients (web apps).

OAuth Flow Architect

Name: OAuth Flow Architect
Author: organvm-iv-taxis

byorganvm-iv-taxis

•

セキュリティとテスト

Implements secure OAuth 2.0 and OpenID Connect (OIDC) authentication flows with robust token management and security best practices.

OAuth Flow Architect is a specialized skill designed to simplify the complex implementation of modern identity protocols. It provides standardized patterns and implementation logic for OAuth 2.0 and OpenID Connect, focusing on high-security standards like Proof Key for Code Exchange (PKCE). The skill guides developers through the entire authentication lifecycle, from generating authorization URLs and handling callbacks to validating ID tokens and managing machine-to-machine credentials. It is an essential tool for developers building secure web, mobile, or server-side applications that require integration with identity providers like Google, Auth0, or GitHub.

主な機能

01Secure machine-to-machine authentication via Client Credentials flow

02Automated OIDC discovery for simplified provider configuration

03Authorization Code Flow with PKCE for enhanced client-side security

04Comprehensive token lifecycle management including refresh and revocation

052 GitHub stars

06OpenID Connect (OIDC) integration and ID token validation

ユースケース

01Integrating social login providers like Google or GitHub into a web application

02Refactoring legacy authentication systems to use modern PKCE security standards

03Securing internal microservices using machine-to-machine authentication

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add organvm-iv-taxis/a-i--skills oauth-flow-architect

For use in Claude.ai and ChatGPT

主な機能

01Secure machine-to-machine authentication via Client Credentials flow

02Automated OIDC discovery for simplified provider configuration

03Authorization Code Flow with PKCE for enhanced client-side security

04Comprehensive token lifecycle management including refresh and revocation

052 GitHub stars

06OpenID Connect (OIDC) integration and ID token validation

ユースケース

01Integrating social login providers like Google or GitHub into a web application

02Refactoring legacy authentication systems to use modern PKCE security standards

03Securing internal microservices using machine-to-machine authentication