Can it handle OIDC ID tokens?

Absolutely. It includes logic for decoding and validating JWT signatures, as well as checking standard claims like issuer (iss), audience (aud), and expiration (exp).

Does this skill support PKCE?

Yes, it prioritizes Authorization Code Flow with PKCE (Proof Key for Code Exchange), which is the current security standard for both public and confidential clients.

Is it compatible with providers like Auth0, Okta, or Google?

Yes, the skill is designed to work with any OAuth 2.0 and OIDC compliant provider by using standardized endpoints and discovery documents.

Does it include CSRF protection?

Yes, the patterns provided include state parameter generation and verification to protect your application from Cross-Site Request Forgery during the redirect phase.

OAuth Flow Architect

Name: OAuth Flow Architect
Author: organvm-iv-taxis

byorganvm-iv-taxis

•

安全与测试

Implements secure OAuth 2.0 and OpenID Connect (OIDC) authentication flows with PKCE, token management, and identity validation.

OAuth Flow Architect is a specialized Claude Code skill designed to streamline the implementation of industry-standard authentication protocols. It provides comprehensive guidance and robust code patterns for Authorization Code flows with PKCE, Client Credentials for machine-to-machine communication, and OIDC for identity management. By automating the complexities of state management, token exchange, and JWT validation, this skill ensures developers follow security best practices to prevent common vulnerabilities like CSRF and token theft, making it an essential tool for building secure modern applications.

主要功能

012 GitHub stars

02Implements Authorization Code Flow with PKCE for web and mobile apps

03Handles secure token storage, refresh, and revocation logic

04Manages OpenID Connect (OIDC) identity layers and ID token validation

05Automates OIDC discovery to fetch provider configurations dynamically

06Provides built-in security patterns for CSRF protection and redirect URI validation

使用场景

01Adding 'Login with Google/GitHub' functionality to a web application

02Securing machine-to-machine API communication using Client Credentials

03Migrating legacy authentication systems to modern, secure OAuth 2.0 standards

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add organvm-iv-taxis/a-i--skills oauth-flow-architect

For use in Claude.ai and ChatGPT

主要功能

012 GitHub stars

02Implements Authorization Code Flow with PKCE for web and mobile apps

03Handles secure token storage, refresh, and revocation logic

04Manages OpenID Connect (OIDC) identity layers and ID token validation

05Automates OIDC discovery to fetch provider configurations dynamically

06Provides built-in security patterns for CSRF protection and redirect URI validation

使用场景

01Adding 'Login with Google/GitHub' functionality to a web application

02Securing machine-to-machine API communication using Client Credentials

03Migrating legacy authentication systems to modern, secure OAuth 2.0 standards

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add organvm-iv-taxis/a-i--skills oauth-flow-architect

For use in Claude.ai and ChatGPT