Implements secure authentication and authorization systems using JWT, OAuth2, and RBAC best practices.
This skill provides Claude with advanced architectural patterns for building secure, scalable access control systems, ranging from stateful session management to stateless JWT implementations and social logins via OAuth2. It streamlines the development of protected APIs and web applications by providing production-ready code templates for middleware, token rotation, role-based access control (RBAC), and permission-based logic, ensuring developers follow industry-standard security protocols to prevent common vulnerabilities.
Key Features
01Stateful session management using Express and Redis storage
02Granular Role-Based Access Control (RBAC) and permission hierarchies
03JWT authentication with secure access and refresh token rotation
040 GitHub stars
05Secure middleware for protecting REST and GraphQL API endpoints
06OAuth2 and Social Login integration patterns using Passport.js
Use Cases
01Designing granular administrative dashboards with specific resource permissions
02Implementing 'Login with Google' or 'Login with GitHub' third-party authentication
03Building a secure user registration and login system for a new web application
