Does this skill support JWT signature verification?

Yes, it specifically implements RS256 token validation using public key pairs to ensure enterprise-grade security and integrity.

Can I use this with legacy session systems?

Absolutely, it includes patterns for Laravel session decryption and Redis-backed session management for compatibility with older web applications.

What is 'backwards verification' in this context?

It is a security step where the adapter contacts the issuing SSO system via an API (like /api/me) to confirm the token is still active and has not been revoked.

How are user permissions handled?

The skill includes a dedicated permission mapper service designed to translate roles and claims from external SSO systems into your internal application's specific permission format.

What is the main benefit of the Unified Auth Adapter?

It allows your application to handle multiple identity providers through a single entry point by routing tokens based on their issuer claim, making the system highly scalable.

Multi-System SSO Authentication

Name: Multi-System SSO Authentication
Author: rafaelkamimura

byrafaelkamimura

•

API 开发

Implements secure, enterprise-grade Single Sign-On (SSO) authentication with support for multiple identity providers and JWT RS256 token validation.

This skill provides a robust architectural framework for managing complex authentication scenarios in enterprise environments. It features a unified adapter pattern that intelligently routes authentication requests based on JWT issuer claims, enabling seamless integration with various identity providers such as Corporativo, SGF, and GED. By supporting RS256 token validation, backwards verification with authoritative systems, and Redis-backed session management, it ensures high security and performance. It is particularly valuable for developers building microservices that require centralized permission mapping and compatibility with legacy session-based systems.

主要功能

01Backwards verification mechanisms to ensure token validity with source systems

02Comprehensive permission mapping across disparate enterprise systems

03Redis-based session management and support for legacy session decryption

04Unified authentication adapter for routing multiple identity providers

054 GitHub stars

06JWT RS256 token validation with manual issuer and audience verification

使用场景

01Modernizing legacy authentication systems with secure JWT and session-based hybrids

02Building a centralized auth gateway that maps external roles to internal app permissions

03Integrating microservices with multiple corporate identity providers simultaneously

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add rafaelkamimura/claude-tools multi-system-sso-authentication

For use in Claude.ai and ChatGPT

Download Skill