Does this skill support stateless authentication?

Yes, it includes detailed patterns for JWT (JSON Web Tokens) and secure refresh token rotation for building stateless, horizontally scalable systems.

Is session-based authentication included?

Yes, the skill features patterns for traditional stateful session management using Express-session with Redis storage for high-performance session tracking.

Can I use this for social login integration?

Absolutely, it provides implementation templates for OAuth2 integration with popular providers like Google and GitHub using Passport.js.

What is the difference between RBAC and permission-based control in this skill?

The skill provides patterns for both: RBAC for managing access via user roles, and permission-based control for mapping specific actions to roles for finer granularity.

Auth Implementation Patterns

Name: Auth Implementation Patterns
Author: Activer007

byActiver007

Security & Testing

Implements secure, production-grade authentication and authorization systems using industry-standard patterns like JWT, OAuth2, and RBAC.

About

This skill provides comprehensive architectural patterns and code templates for building robust access control systems within your applications. It covers the full spectrum of security needs, from stateless JWT implementations and refresh token rotations to stateful session management with Redis and multi-provider OAuth2 integration. Whether you are designing a new API from scratch or migrating legacy systems to modern role-based access control (RBAC), this skill ensures your security layer follows best practices for scalability and protection against common vulnerabilities.

Key Features

OAuth2 and social login patterns using Passport.js
Hierarchical Role-Based Access Control (RBAC)
Granular Permission-Based Access Control middleware
Stateful session management with Redis integration
Stateless JWT and secure refresh token rotation logic
0 GitHub stars

Use Cases

Building secure REST or GraphQL API backends
Implementing Single Sign-On (SSO) and social login capabilities
Designing complex multi-tenant permission systems

About

Key Features

OAuth2 and social login patterns using Passport.js
Hierarchical Role-Based Access Control (RBAC)
Granular Permission-Based Access Control middleware
Stateful session management with Redis integration
Stateless JWT and secure refresh token rotation logic
0 GitHub stars

Use Cases

Building secure REST or GraphQL API backends
Implementing Single Sign-On (SSO) and social login capabilities
Designing complex multi-tenant permission systems