Does this skill support PKCE?

Yes, it prioritizes Authorization Code Flow with PKCE (Proof Key for Code Exchange) as the highest security standard for modern web and mobile applications.

Can I use this for machine-to-machine auth?

Absolutely. The skill includes implementation patterns for the Client Credentials flow, which is ideal for secure backend-to-backend communication without user intervention.

Which identity providers is this compatible with?

It is designed to be provider-agnostic, following RFC standards that work with Google, AWS Cognito, Auth0, Okta, Microsoft Entra ID, and self-hosted solutions like Keycloak.

How does it handle OIDC?

It provides patterns for ID token validation using JWKS (JSON Web Key Sets), discovery of provider configurations via well-known endpoints, and handling standard identity claims.

Does it include protection against common web attacks?

Yes, it implements state parameter validation for CSRF protection, nonce verification for replay attack prevention, and secure redirect URI handling.

OAuth Flow Architect

Name: OAuth Flow Architect
Author: organvm-iv-taxis

byorganvm-iv-taxis

•

セキュリティとテスト

Implements secure OAuth 2.0 and OpenID Connect authentication flows with standardized token management and provider integrations.

OAuth Flow Architect is a specialized Claude Code skill designed to streamline the implementation of complex authentication protocols. It provides comprehensive guidance and code patterns for modern security standards, including Authorization Code with PKCE, Client Credentials, and OIDC discovery. By automating the boilerplate for state validation, token exchange, and JWT verification, this skill helps developers avoid common security pitfalls like CSRF and token theft while ensuring seamless integration with major identity providers like Google, Auth0, and Okta.

主な機能

01Provider discovery and JWKS validation

02OpenID Connect (OIDC) identity layer integration

03Authorization Code Flow with PKCE implementation

04Secure token management and rotation logic

05CSRF and replay attack protection mechanisms

062 GitHub stars

ユースケース

01Building secure user login systems for web and mobile apps

02Implementing machine-to-machine authentication for microservices

03Integrating third-party identity providers like Google, GitHub, or Okta

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add organvm-iv-taxis/a-i--skills oauth-flow-architect

For use in Claude.ai and ChatGPT

主な機能

01Provider discovery and JWKS validation

02OpenID Connect (OIDC) identity layer integration

03Authorization Code Flow with PKCE implementation

04Secure token management and rotation logic

05CSRF and replay attack protection mechanisms

062 GitHub stars

ユースケース

01Building secure user login systems for web and mobile apps

02Implementing machine-to-machine authentication for microservices

03Integrating third-party identity providers like Google, GitHub, or Okta

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add organvm-iv-taxis/a-i--skills oauth-flow-architect

For use in Claude.ai and ChatGPT