How does it handle token security?

It provides patterns for secure token storage, hashing refresh tokens before database entry, short-lived access tokens, and middleware for robust token verification.

Is this skill compatible with modern frameworks?

While the implementation patterns focus on TypeScript and Node.js/Express, the underlying security principles and logic are applicable to any modern web backend.

Can I use this for complex user permissions?

Yes, the skill includes specialized patterns for Role-Based Access Control (RBAC) and more granular Permission-Based Access Control to manage hierarchical user rights.

What authentication strategies does this skill support?

This skill supports several strategies including stateless JWTs with refresh token logic, stateful session-based authentication with Redis, and third-party OAuth2/OpenID Connect providers.

Auth Implementation Patterns

Name: Auth Implementation Patterns
Author: as4584

byas4584

0•

Security & Testing

Implements secure authentication and authorization systems including JWT, OAuth2, session management, and role-based access control.

The Auth Implementation Patterns skill provides Claude with comprehensive expertise in architecting and implementing modern access control systems. It moves beyond simple login forms to offer production-ready patterns for stateless JWT authentication with refresh token rotation, stateful session management using Redis, and delegated identity via OAuth2. By providing standardized templates for Role-Based Access Control (RBAC) and permission-based logic, this skill ensures that developers can secure their REST or GraphQL APIs with industry-standard best practices and robust security middleware.

Key Features

01OAuth2 and Social Login integration patterns using Passport.js

02Stateless JWT implementation with access and refresh token flows

03Secure middleware for token verification and credential handling

04Stateful session-based authentication using Express and Redis storage

05Hierarchical Role-Based (RBAC) and Permission-Based Access Control

060 GitHub stars

Use Cases

01Securing REST or GraphQL APIs for production environments

02Migrating from legacy session-based auth to modern JWT systems

03Implementing complex multi-tenant permission and role systems

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add as4584/antigravity-skills auth-implementation-patterns

For use in Claude.ai and ChatGPT

Download Skill