Does this skill support social login?

Yes, it provides comprehensive implementation patterns and code snippets for Google, GitHub, and other OAuth2/OIDC providers.

Can I use this for role-based access control?

Absolutely, the skill includes logic for defining granular permissions and enforcing RBAC within API dependencies and middleware.

Which web frameworks are compatible with this skill?

While the provided examples focus on FastAPI and Python, the underlying logic and patterns are applicable to any modern web framework like Express, Go, or Django.

Does it follow modern security best practices?

Yes, it incorporates industry-standard patterns for password hashing (Bcrypt/Argon2), token rotation, PKCE for SPAs, and secure session management.

Authentication & Identity Management

Name: Authentication & Identity Management
Author: Lobbi-Docs

byLobbi-Docs

0•

Security & Testing

Implements secure authentication and authorization systems including JWT, OAuth2, OIDC, and role-based access control.

The Authentication skill empowers Claude to architect and implement enterprise-grade security systems for modern applications. It provides expert-level guidance on token management, secure session handling, and identity provider (IdP) integration, ensuring that AI-generated code adheres to industry standards like PKCE and RBAC. Whether you are building a FastAPI backend, configuring third-party social logins, or performing a security audit, this skill provides the implementation patterns and logic required to protect user data and manage granular access rights effectively.

Key Features

01Security Best Practices: Hardened patterns for password hashing, token rotation, and threat modeling.

02Modern Auth Protocols: Support for PKCE in SPAs and Client Credentials for service-to-service communication.

03JWT & Session Management: Secure token generation, refresh logic, and Redis-backed session handling.

04Granular Access Control: Robust implementation of Role-Based Access Control (RBAC) and permission-level security.

05Multi-Provider OAuth2: Seamless integration with Google, GitHub, and custom OIDC providers.

060 GitHub stars

Use Cases

01Adding social login (Google/GitHub) to a web application using OAuth2/OIDC flows.

02Implementing a secure user login system with JWT and encrypted password storage.

03Creating an administrative dashboard with multi-tier role-based permissions and audit logs.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add lobbi-docs/claude authentication

For use in Claude.ai and ChatGPT

Download Skill