Skill

oauth-implementation

Implements secure OAuth 2.0, OpenID Connect (OIDC), JWT authentication, and SSO for web/mobile apps. Node.js/Express, Python, Java Spring examples.

Javascript

Express

Install

npx claudepluginhub joshuarweaver/cascade-code-languages-misc-1 --plugin aj-geddes-useful-ai-prompts-4

Tool Access

This skill uses the workspace's default tool permissions.

Preview

- [Overview](#overview)

Supporting Assets

references/java-spring-security-oauth.mdreferences/nodejs-oauth-20-server.mdreferences/python-openid-connect-implementation.mdscripts/security-checklist.sh

SKILL.md

Similar Skills

skill-lookup

Searches, retrieves, and installs Agent Skills from prompts.chat registry using MCP tools like search_skills and get_skill. Activates for finding skills, browsing catalogs, or extending Claude.

prompts.chat

159.9k

prompt-lookup

Searches prompts.chat for AI prompt templates by keyword or category, retrieves by ID with variable handling, and improves prompts via AI. Use for discovering or enhancing prompts.

prompts.chat

159.9k

next-compile

1 file

Checks Next.js compilation errors using a running Turbopack dev server after code edits. Fixes actionable issues before reporting complete. Replaces `next build`.

vercel-next-js-2

139.2k

Stats

Stars180

Forks28

Last CommitMar 3, 2026

Actions

View Source View Plugin View on GitHub View README

Tags

secure-authentication

OAuth Implementation

Table of Contents

Overview

Implement industry-standard OAuth 2.0 and OpenID Connect authentication flows with JWT tokens, refresh tokens, and secure session management.

When to Use

User authentication systems

Third-party API integration

Single Sign-On (SSO) implementation

Mobile app authentication

Microservices security

Social login integration

Quick Start

Minimal working example:

// oauth-server.js - Complete OAuth 2.0 implementation const express = require("express"); const jwt = require("jsonwebtoken"); const crypto = require("crypto"); const bcrypt = require("bcrypt"); class OAuthServer { constructor() { this.app = express(); this.clients = new Map(); this.authorizationCodes = new Map(); this.refreshTokens = new Map(); this.accessTokens = new Map(); // JWT signing keys this.privateKey = process.env.JWT_PRIVATE_KEY; this.publicKey = process.env.JWT_PUBLIC_KEY; this.setupRoutes(); } // Register OAuth client registerClient(clientId, clientSecret, redirectUris) { this.clients.set(clientId, { clientSecret: bcrypt.hashSync(clientSecret, 10), // ... (see reference guides for full implementation)

Reference Guides

Detailed implementations in the references/ directory:

Guide

Contents

Node.js OAuth 2.0 Server

Python OpenID Connect Implementation

Java Spring Security OAuth

Best Practices

✅ DO

Use PKCE for public clients

Implement token rotation

Store tokens securely

Use HTTPS everywhere

Validate redirect URIs

Implement rate limiting

Use short-lived access tokens

Log authentication events

❌ DON'T

Store tokens in localStorage

Use implicit flow

Skip state parameter

Expose client secrets

Allow open redirects

Use weak signing keys