From role-backend
Implements backend auth/authorization: JWT tokens, sessions, OAuth2/OIDC flows, RBAC/ABAC, API keys, multi-tenancy isolation, SSO/SAML. For login flows, endpoint protection, permissions.
How this skill is triggered — by the user, by Claude, or both
Slash command
/role-backend:auth-implementationThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
- Building login, logout, and token refresh flows
sub, roles, tenant only; nothing sensitive in JWT payloadreferences/jwt-sessions-oauth.md — JWT structure and token validation checklist, refresh token rotation rules, server-side session cookie flags, OAuth2 flow selection table, Authorization Code + PKCE implementation steps, and OIDC identity verificationreferences/rbac-apikeys-multitenancy-sso.md — RBAC role/permission model, ABAC with policy engines (Casbin, OPA, Cedar), enforcement point hierarchy, API key generation and hashing, multi-tenancy query isolation, and SSO integration (SAML 2.0, OIDC, JIT provisioning)npx claudepluginhub rnavarych/alpha-engineer --plugin role-backendProvides authentication patterns for JWT with rotation/revocation, OAuth/OIDC with PKCE, Redis sessions with CSRF protection, multi-tenant auth, RBAC/ABAC, and data isolation best practices.
Implements authentication and authorization patterns including JWT, OAuth2, session management, and RBAC for securing APIs and user login. Use when implementing auth systems or debugging security issues.
Implements authentication and authorization patterns including JWT, OAuth2, session management, and RBAC. Use when building secure APIs or debugging auth issues.