Authentication plugins

Implement secure coding practices and conduct vulnerability reviews for frontend (XSS, CSP), backend (injections, headers), authentication (JWT, OAuth), APIs (rate limiting, GraphQL/REST/WebSocket), and PCI DSS payment compliance directly in Claude Code workflows.

Bridge Claude Code to Telegram channels with secure messaging and access control. Set up bot tokens securely, manage allowlists and policies via commands, approve/deny user pairings with codes, and run a local Bun-based multiplexing server for channel handling.

Bridge Claude Code to a Discord channel for secure team messaging. Configure bot token and lockdown securely, approve/deny pairings via access codes, manage allowlists and DM/group policies, and monitor status from JSON state.

Chat with Claude Code directly via iMessage on macOS by reading chat.db and sending through AppleScript. Securely manage access with pairing approvals, sender allowlists, DM/group policies, and status checks using /imessage:access commands. Includes setup verification for Full Disk Access and local Bun multiplexing server.

Develop and run Vercel apps locally using stable https://app-name.localhost URLs instead of localhost:port, resolving port conflicts for monorepos, npm scripts, and sharing. Set up OAuth for Google, Apple, Microsoft, Facebook, and GitHub without redirect URI errors.

Build and optimize Next.js App Router apps: scaffold pages/layouts/components/API routes/server actions, implement authentication with Auth.js/Prisma/middleware, guide server/client components usage, and analyze/generate performance reports with recommendations.

Audit web app session management for vulnerabilities like fixation, ID generation flaws, expiration issues, cookie misconfigurations, insecure storage, and poor invalidation in Express, Django, Rails, Python, and Java apps. Check current Claude Code session status, including active state and user details.

Implement, customize, secure, deploy, troubleshoot, and scale Clerk authentication in Next.js apps using 24 skills for SDK installation, sign-up/sign-in UIs, middleware protection, error debugging, webhook handling, performance tuning, cost optimization, RBAC/SSO, GDPR compliance, production checklists, CI/CD pipelines, local dev loops, and migrations from Auth0, Firebase, or Supabase.

Audit authentication in JavaScript, Python, and Java web apps/APIs against OWASP/NIST standards—covering password hashing, JWT handling, sessions, OAuth flows, MFA, and account controls. Validate project setups by checking credentials, tokens, and config files for errors and compliance status.

Audit access controls including IAM policies, RBAC, ACLs, file permissions, and API authorizations in AWS, GCP, Azure, and local projects to detect vulnerabilities, privilege escalation paths, and least privilege violations, generating detailed compliance reports.

Build complete API authentication and authorization systems supporting JWT, OAuth2, API keys, sessions, MFA, RBAC, token refresh, validation, and brute-force protection. Generates models, middleware, and services for JavaScript/Node.js, Python, and Java backends.

Automate Google Workspace operations like checking Gmail, searching Drive files, scheduling Calendar events, editing Docs and Sheets via a local OAuth-secured MCP server and CLI tools with 114 routed commands for seamless workflow integration.

Integrate Workhuman Social Recognition API into apps for employee rewards, nominations, recognitions, and HRIS sync with Workday/SuccessFactors. Handle OAuth 2.0 auth, REST endpoints, webhooks, errors, rate limits, performance tuning, security, debugging, local dev, and production deployment via 18 specialized skills.

Integrate Podium SaaS API into Node.js/TypeScript apps for two-way messaging, review requests, payments processing, and business workflows. Set up OAuth2 auth, handle REST calls, webhooks, rate limits, errors, retries, security, performance tuning, local dev, deployments, and migrations using proven patterns.

Build, debug, deploy, and optimize Persona KYC identity verification integrations: set up API auth, create embedded UI workflows in React apps, handle webhooks/results in Node/Python backends, fix errors/rate limits, tune costs/performance, implement CI/CD pipelines, and deploy to GCP with Docker.

Integrate Ramp's corporate card and expense management API into Python apps: issue and manage virtual cards with limits, fetch and filter transactions, sync expenses to accounting, handle OAuth2 authentication, rate limits, errors, webhooks, and multi-env setups via 24 ready skills.

Develop full OneNote Graph API integrations in Python or TypeScript: perform CRUD on notebooks, sections, and pages; set up MSAL auth; debug errors and generate diagnostics; optimize for rate limits and performance; configure CI/CD pipelines, local mocks, Docker/K8s deployments, and production checklists.

Integrate RemoFirst API in Python for global HR, EOR, and payroll workflows: onboard employees with compliance checks and document uploads, process multi-currency payslips and invoices, set up authentication, handle errors/rate limits/security, debug locally, follow production checklists, and manage upgrades/migrations.

Integrate Procore REST API into Python apps for construction project management: authenticate with OAuth2, create/track RFIs and submittals, handle errors/rate limits/backoffs, manage multi-env setups, migrations, RBAC, webhooks, and production checklists.

Authenticate Shopify stores via CLI setup, then create and manage products with bulk CSV imports/updates/variants/inventory/images/collections, plus pages, blog posts, navigation, redirects, SEO metadata, and metaobjects using GraphQL/REST APIs, CLI commands, or browser automation.

Administer Keycloak IAM systems by managing realms, users, clients, OIDC/SAML authentication flows, RBAC policies, and security hardening. Integrate Keycloak.AuthServices into .NET applications for JWT Bearer/OIDC authentication, resource authorization, Admin API access, and multi-tenancy support.

Build persistent data layers in SwiftUI iOS/macOS apps using Boutique: initialize Stores for CRUD on structured data, persist preferences and secrets via @StoredValue/@SecurelyStoredValue, bind reactively to views with onChange and previews, apply Swift 6 concurrency best practices, and test store setups.

Run slash commands to perform security audits: scan dependencies for vulnerabilities and risks, review auth configs and inputs, generate severity-prioritized reports with remediations and code fixes, add secure authentication systems with MFA and RBAC, and automatically harden app configurations across encryption, headers, and infra.

Build and manage Microsoft Teams bots via CLI: scaffold code in TypeScript, C#, or Python; register bots and set up infrastructure/credentials; configure SSO; troubleshoot deployments—all in one workflow.

Set up Azure MCP server with Azure CLI authentication and manage 40+ Azure services like Storage, Key Vault, Cosmos DB, AKS clusters, and Log Analytics directly in Claude conversations. Handles prerequisites (Azure CLI, Node.js 20+, RBAC), login verification, and resource operations including listing, creating, and querying.

Bridge Claude Code to WeChat for secure messaging via iLink Bot API. Configure bot channel by generating QR codes for login, polling confirmations, and storing tokens. Manage access through CLI: approve/deny pairings, edit allowlists, set DM policies, and check status. Run local MCP server for channel multiplexing.

Operate freee accounting, HR/payroll, invoicing, time tracking, sales, and e-signature APIs via MCP server. Authenticate with OAuth, manage companies, issue REST requests for transactions, reports, expenses, and financial data locally or remotely using provided API references and guides.

Configure OAuth-authenticated MCP connection to your Supabase project for read-only access to database tables, schemas, SQL queries, auth flows, RLS policies, storage, and services. Get interactive setup, error fixes for permissions/project issues, and guidance on relationships, filters, pagination best practices.

Implement secure session management in Node.js/Express apps using JWT tokens stored in Redis, with refresh token flows and secure cookie configuration for handling user authentication, sessions, and logout.

Implement secure OAuth 2.0 and OpenID Connect authentication flows for web apps, SPAs, and services. Handle Authorization Code with PKCE, Client Credentials grants, and token refresh. Use ready Express.js examples with Flask and Spring Boot references to integrate third-party auth and SSO quickly.

Implement secure API authentication in Node.js backends using JWT middleware, OAuth 2.0 flows, and API keys. Add security headers, manage tokens, avoid common pitfalls, and reference Flask implementations for service-to-service auth and third-party integrations.

Set up Nuxt Studio visual CMS for Nuxt Content sites with interactive wizards. Configure OAuth authentication using GitHub, GitLab, or Google providers. Deploy to Cloudflare Pages or Workers with custom subdomains, or to Vercel/Netlify. Validate setups and auto-fix issues like module order.

Implement SIP protocol for VoIP and real-time communications apps, covering fundamentals like message structures and call flows per RFC 3261, HTTP Digest authentication with TLS/SIPS encryption and security best practices, plus SDP parsing for codec and media negotiation in RTP sessions using TypeScript examples.

Delegate security engineering tasks to an AI agent that performs vulnerability assessments, fixes issues like SQL injection and XSS, implements authentication with OAuth/JWT and RBAC, protects PII, conducts threat modeling, code reviews, and ensures OWASP/GDPR compliance in your codebase.

Set up, configure, extend, and debug Better Auth TypeScript authentication for Next.js, Nuxt, Cloudflare D1 via Drizzle/Prisma/Kysely/Hono, and 15+ frameworks. Interactively generate auth configs, schemas, routes, clients, and env vars; add plugins like 2FA, passkeys, Stripe; explain errors with fixes; reference providers; autonomously diagnose issues.

Connect to your Okta org with a read-only API token to scan authentication policies, MFA enrollment, password rules, session settings, admin users, and logs for FedRAMP/NIST/SOC2/PCI compliance. Emit standardized security findings, setup idempotent YAML config, and check connector status.

Connect WeChat accounts to Claude Code via QR code pairing and official iLink Bot API, manage user access with allowlists and policies (pairing/allowlist/disabled), and run a local Bun-based MCP server for WeChat messaging, bot tools, and AI coding assistant integration.

Automate Duende Software docs lifecycle for IdentityServer, BFF, Access Token Management, IdentityModel, OidcClient: scrape sources, validate and rebuild indexes, perform keyword/NLP searches, resolve doc sections, and maintain searchable storage to accelerate authentication research.

Implement USDC payments, CCTP cross-chain bridging across EVM chains and Solana, programmable wallets (developer-controlled, user-controlled, modular with passkeys/MPC), Gateway unified balances, and smart contract interactions using Circle SDKs with guided skills for web3 apps.

Review fintech platforms, investment advertising, client advice, disclosures, AML/KYC processes, recordkeeping, and operations for compliance with US securities regulations including SEC Marketing Rule, FINRA rules, ERISA, FinCEN BSA/AML, Reg BI, fiduciary duties, Reg S-P privacy, and GIPS standards to prepare for exams and mitigate risks.

Develop scalable NestJS backends by implementing dependency injection via providers, modules, and scopes; securing endpoints with guards, interceptors, JWT auth, and ExecutionContext; plus unit testing controllers and services using TestingModule and mocks.

Implement children's privacy compliance for online services and EdTech by adding age gating, verification methods, parental consent, data minimization, deletion requests, age-appropriate notices, profiling limits, and assessments aligned with COPPA, GDPR, UK AADC.

Automate processing of GDPR and CCPA data subject rights requests including DSAR intake via web/email/phone, identity verification, fulfillment workflows for erasure, rectification, portability, objection, opt-outs, restriction, and automated decisions, with response generation, exemptions handling, third-party notifications, and regulatory complaint management within deadlines.

Equip AI agents with verifiable cryptographic identities linked to human owners via Alien Network SSO, enabling SSH-signed git commits for attribution, secure authentication to services like GitHub/Slack/AWS, credential storage/retrieval, and hash-chained audit logs.

Chat with Claude via WeChat using text, images, files, voice, and video. Setup channels by scanning QR codes in terminal, manage access approvals, allowlists, and DM policies for WeChat and Feishu/Lark integrations through CLI commands and MCP servers.

Implement secure authentication and authorization systems with JWT tokens, OAuth2 flows, refresh tokens, session management, bcrypt/Argon2 hashing, 2FA/MFA, SSO, RBAC, and best practices in TypeScript, JavaScript, and Express apps.

Design and implement enterprise API integrations for microservices and third-party services in B2B applications, using REST, GraphQL, gRPC, webhooks for connectivity, with authentication, data transformation, error handling, API gateways, service mesh, and monitoring to build scalable architectures.

Bootstrap Auth0 authentication by auto-detecting frameworks like React, Next.js, Vue, Angular, Express, or React Native; migrate user auth from Firebase, Cognito, Supabase, Clerk, or custom setups; enable MFA/2FA via TOTP, SMS, push, passkeys with step-up verification and adaptive risk-based auth for compliance.

Integrate Commet billing into Node.js and Next.js apps to manage subscriptions, track usage across seats, gate features by plan, handle secure checkouts and customer portals, and process webhooks for real-time updates.

Secure Cloudflare Workers apps with Zero Trust Access authentication using Hono middleware: validate JWTs and service tokens, protect routes via RBAC, and resolve CORS preflight, cache races, and missing headers.

Scaffold signin and signup authentication endpoints for Next.js, Express, FastAPI, and Go projects using Prisma, Drizzle, PostgreSQL, or SQLAlchemy with JWT or database sessions. Audit and harden existing auth code against security best practices including credential storage, sessions, OAuth, MFA, rate limiting, CSRF, and add conformance tests.

Authenticate with Trading 212 API keys to automate trading workflows: place and cancel market/limit/pending buy/sell orders, monitor portfolio balances/positions/P&L, retrieve order history/dividends, and search instruments for position tracking and historical analysis.

Authenticate via Smart-ID QR code to the Estonian Tax and Customs Board (EMTA) CLI, then list and view TSD income and social tax declarations directly from your terminal.

Integrate WorkOS widgets for user management, SSO connections, admin portals, and domain verification into Next.js, React, SvelteKit, Ruby, Python, Go, PHP, Java apps via stack detection and OpenAPI specs. Access guides for implementing and debugging SSO, SAML, MFA, RBAC, Directory Sync across frameworks.

Manage Skyboard kanban boards on AT Protocol from terminal CLI: join boards by URI, list boards/columns/cards, create/edit/move/delete/comment cards, view details, login/logout with OAuth.

Implement and audit GDPR/CCPA/CN IL-compliant consent management: build preference centers with DB/API/UI schemas, withdrawal flows with one-click UIs and notifications, valid consent banners without dark patterns, GPC detection in JS, record-keeping systems, mobile app consents for iOS/Android, child/research handling, CMP evaluations, and international transfer consents.

Integrate Neon serverless PostgreSQL into Next.js, React, and Node.js apps with Drizzle ORM schemas, authentication routes, session management, and low-latency serverless drivers; provision ephemeral test databases for CI/CD and prototyping; embed Neon best practices in AI docs; query and manage DBs remotely via HTTP MCP.

Automate SecondMe platform interactions via Agent for login, profile management, chatting, Plaza posts, friend handling, Key Memory CRUD, discovery, and skill installs. Develop third-party apps with guided OAuth flows, MCP/API integrations, scaffolding, reviews, and hackathon submissions.

Install, authenticate, and manage the Geekbot CLI from Claude chats to create async standups and polls, submit responses, generate reports, and analyze team engagement and participation.

Prove AI agents are human-backed with AgentKit to unlock free or discounted access to x402 payment-required endpoints. Sign CAIP-122 challenges using EVM wallets (EOA via EIP-191 or SCW via ERC-1271), handle 402 responses with auth headers, and integrate into servers for payment modes, EVM chain wiring, and ExactEvmScheme parsing.

Create custom Claude Code skills for the Karma ecosystem to automate funding workflows: search grants and hackathons via API, manage programs and applications, track projects and milestones, process payouts and invoices, configure API keys, and initialize sessions with hooks.

Automate KYC/AML compliance workflows including customer onboarding with 17 stagegates and independent verification, sanctions/PEP screening, four-factor risk scoring, transaction monitoring for anomalies, periodic refreshes, SAR generation, Excel/PDF reports, and immutable audit trails for UK/EU/US/MENA jurisdictions.

Bridge Claude Code to LINE messaging app for secure interactions. Configure bot credentials in .env, manage access via pairing codes, user whitelists, and policy modes (pairing, allowlist, open) using /line:access commands. Run local Bun multiplexing server for channel handling.

Update your AI assistant's knowledge on Zitadel IAM evolution from v3 to v4.13 before development, enabling workflows with V2 ConnectRPC APIs, Actions V2 webhooks, Session API custom logins, Login V2 for Next.js apps, token exchange, and new SDKs in Go and others.

Run a local Python MCP server to connect Claude securely to Google Workspace via OAuth, enabling it to read/send Gmail emails, manage Drive files, edit Docs and Sheets, and handle Calendar events directly in your workflows.

Add Google Calendar or CalDAV (iCloud, Nextcloud, Fastmail) access to NanoTars using voice triggers like 'add calendar'. Follow guided authentication via OAuth (gog CLI) or cal CLI, with automatic environment variable configuration for immediate calendar integration.

Programmatically manage LinkedIn ABM ad campaigns via Python CLI by cloning campaigns, updating budgets and targeting, batch pausing or resuming, auditing spend, analyzing performance, and searching URNs after quick OAuth credential setup.

Configure Gmail access for NanoTars agents using gog CLI to enable searching, reading, and sending emails, while reusing existing Google Calendar OAuth credentials.

Scaffold and configure complete Better Auth authentication systems in TypeScript/JavaScript apps using Next.js, SvelteKit, Astro. Set up server/client with Prisma/Drizzle/MongoDB/Redis adapters, OAuth providers, email/password flows, 2FA/MFA, and multi-tenant organizations with RBAC and team management.

Configure the Infisical Agent daemon to manage auth token lifecycles and render secrets to files via Go templates. Deploy as sidecar in Kubernetes, Docker, ECS with auth methods like AWS IAM, Azure, GCP. Handle YAML configs, sinks, polling, caching for secure secret access in production environments.

Integrate Descope authentication flows like passwordless (OTP, Magic Link, Passkeys), OAuth, SSO, MFA into Next.js, React frontends or Python/Node backends with auto-detection and validation. Provision auth projects via Terraform IaC including RBAC and connectors. Author FGA schemas for ReBAC/ABAC authorization models. Run static scans for auth and authorization vulnerabilities with triage reports.

Generate 263+ design styles as Tailwind configs, CSS variables, and accessible React components; architect multi-tenant Keycloak themes with tenant-specific branding, FTL templates, and runtime switching; audit UI consistency, accessibility (WCAG), and best practices using AI agents and commands.

Manage Keycloak realms, clients, users, and themes for multi-tenant MERN platforms; orchestrate Docker Compose microservices including MongoDB, Postgres, Redis; generate Jest tests from Express routes; validate and generate .env configs; monitor service health for the-lobbi/keycloak-alpha repo.

Set up a LINE messaging channel for Claude Code by configuring access tokens, secrets, and webhook port in .env, then manage secure access: approve/deny user pairings via codes, edit allowlists, set DM policies and group configs using /line:access CLI commands for status checks and changes.

Authenticate securely with PKU IAAA SSO from your terminal and automate university workflows using Rust CLI tools: scrape and query course catalogs/electives/classrooms, book discussion rooms, manage campus card balances/recharges/transactions, check finances/reimbursements, interact with Treehole forum, access Blackboard, and crawl WeChat articles.

Connect Claude Code to TES AI agent memory—local or hosted—with 7-layer hybrid retrieval (BM25 + vector + KG + reranker) for persistent knowledge bases. Validate tenant/API key status, execute Node.js scripts on session lifecycle events (start, prompt, tool use, end), and run local MCP server for memory operations.

Customize and implement YCom user authentication in REDAXO PHP apps: configure login/registration/profile forms, integrate SSO with SAML/OAuth2/CAS, enable 2FA/OTP enforcement, protect articles/media via groups/permissions, manage sessions/tokens, and log activity.

Enable secure WhatsApp messaging channel for Claude Code via linked-device bridge. Pair devices with QR codes or pairing codes, approve/deny access requests, manage allowlists, and configure DM/group policies directly via CLI commands.

Bridge Claude Code to QQ messaging through a local bot channel with access control. Approve pairings via 6-char codes, manage OpenID allowlists, set DM policies, configure AppID:AppSecret credentials, review status, and run a Bun-based multiplexing server.

Secure Python-based MCP servers and multi-agent pipelines by implementing OAuth 2.0 flows with PKCE and providers like Google/GitHub, enforcing 5-layer defenses against prompt/SQL injections and unauthorized access via RBAC, and achieving GDPR/CCPA compliance with consent management, data minimization patterns, and regulatory checklists.

Monitor Claude Rank stats like position, badges, usage trends, leaderboards, and team dashboards directly in Claude Code. Sync usage to clauderank.com, authenticate accounts, configure statusline HUD for persistent display, and manage Jarvis session scripts.

Query Korean stock prices, account assets, daily returns, and execute trades via Kiwoom Securities REST API with OAuth authentication, token caching, and rate limiting. Retrieve corporate disclosures, financial statements, and shareholder reports from OpenDART API for financial analysis in Python apps.

Set up Gmail CLI with OAuth2 credentials from Google Cloud Console and use it in your terminal to search emails with operators, read/view threads, compose/send/reply to emails, and manage labels/styles via bash commands and workflows.

Search global open source repositories for code examples matching natural language queries via GitHits CLI. Authenticate via OAuth for personalized results, check login status, logout securely, and scan local Git repos for secrets, API keys, and sensitive data without external APIs.

Access Gmail for reading, sending, searching, and managing emails; Google Calendar for creating, updating, deleting events and reminders; plus Contacts—all directly in Claude Code via local Node.js MCP servers with OAuth auto-refresh, retries, and API batching.

Build full-stack Next.js App Router apps by applying patterns for file-based routing and layouts, dynamic API routes with CRUD and request handling, middleware for auth and headers, NextAuth integration with sessions and protected routes, plus server/client components with Prisma data fetching.

Implement production-grade Express.js APIs using patterns for JWT authentication with refresh tokens, Zod-powered request validation in body/query/params, modular routing with versioning and REST resources, middleware stacks for logging/request IDs/rate limiting, and structured error handling with custom classes and HTTP responses.

Implement Auth0 authentication in Next.js and Express.js apps using patterns for JWT middleware with scopes, permissions, and RBAC; client-side providers, hooks, and protected routes; server sessions; plus M2M flows, token caching, and user/organization management via TypeScript SDKs.

Connect Claude to Supabase projects using credentials to run SQL queries on PostgreSQL, manage authentication, access storage files, subscribe to realtime database changes, and invoke edge functions directly in your workflow.