auth-implementation-patterns

by wshobson

Master authentication and authorization patterns including JWT, OAuth2, session management, and RBAC to build secure, scalable access control systems. Use when implementing auth systems, securing APIs, or debugging security issues.

Stars0

Favorites0

Comments0

AddedMar 28, 2026

CategoryAccess Control

Install Command

npx skills add https://github.com/wshobson/agents --skill auth-implementation-patterns

Jwt Oauth2

Overview

What is auth-implementation-patterns?

auth-implementation-patterns is a practical skill for building secure authentication and authorization systems using proven patterns like JWT, OAuth2, session management, and role-based access control (RBAC). It is designed for developers and architects who need to secure applications, APIs, or migrate existing auth systems with modern best practices.

Who Should Use This Skill?

This skill is ideal for:

Developers implementing user authentication or authorization
Teams securing REST or GraphQL APIs
Projects adding OAuth2 or social login
Organizations designing RBAC or session management
Anyone debugging authentication issues or migrating auth systems

Problems Solved

Simplifies the implementation of robust access control
Helps prevent common security flaws in authentication
Supports scalable, maintainable auth workflows

How to Use

Installation Steps

Install the skill using:
npx skills add https://github.com/wshobson/agents --skill auth-implementation-patterns
Begin with the SKILL.md file for a high-level overview and practical guidance.
Review supporting files such as README.md, AGENTS.md, and metadata.json for additional context.
Explore any rules/, resources/, references/, or scripts/ folders for implementation details and helper scripts.

Adapting the Workflow

Integrate the patterns into your own repository and adapt to your tech stack.
Use the skill as a reference for designing authentication flows, session handling, and RBAC.
Avoid copying code verbatim; instead, tailor the concepts to your project requirements.

Key Concepts Covered

Authentication vs Authorization: Understand the distinction and how each is implemented.
Session-Based Authentication: Traditional, stateful approach using cookies.
Token-Based Authentication (JWT): Stateless, scalable, and suitable for distributed systems.
OAuth2/OpenID Connect: Enables delegated authentication and social login.
RBAC: Implement fine-grained access control based on user roles.

Suggested Files to Preview

SKILL.md: Main skill documentation and workflow overview.

FAQ

Where can I find implementation examples?

Check the SKILL.md file for practical examples and explanations of each auth pattern.

Is auth-implementation-patterns suitable for enterprise projects?

Yes, it covers industry-standard patterns like OAuth2, JWT, and RBAC, making it suitable for both small and large-scale applications.

How do I debug authentication issues with this skill?

Use the troubleshooting sections and pattern explanations in SKILL.md to identify and resolve common auth problems.

Can I use this skill for multi-factor authentication (MFA)?

While the skill covers core authentication patterns, you can extend its concepts to implement MFA and two-factor authentication.

Where can I explore the full file tree?

Open the Files tab in the repository to inspect all documentation, references, and helper scripts.

Ratings & Reviews

No ratings yet

Share your review

0/10000

Latest reviews

Saving...

more skill

k8s-security-policies

by wshobson

Implement Kubernetes security policies including NetworkPolicy, RBAC, and pod security standards for secure, production-ready clusters. Ideal for enforcing network isolation and access controls.

Security Audit

Favorites 0GitHub 0

two-factor-authentication-best-practices

by better-auth

Add TOTP, OTP delivery, backup codes, and trusted device management to your Better Auth workflow with the twoFactor skill. Ideal for enhancing access control and login security.

Access Control

Favorites 0GitHub 0

organization-best-practices

by better-auth

Set up multi-tenant organizations, manage members, roles, permissions, teams, and implement RBAC with Better Auth's organization skill. Ideal for backend developers needing robust org and access control features.

Backend Development

Favorites 0GitHub 0

programmatic-seo

by coreyhaines31

Use the programmatic-seo skill to design and plan SEO-driven pages at scale using templates and data, such as location pages, directories, comparisons, and integration pages that rank and convert without being thin content.

SEO Content

Favorites 0GitHub 0

team-composition-patterns

by wshobson

Configure optimal agent teams for development workflows with sizing heuristics, preset team templates, and agent type selection. Use team-composition-patterns to decide team size, roles, and display modes for tasks like code review, debugging, and custom workflows.

Git Workflows

Favorites 0GitHub 32.4K

react-modernization

by wshobson

Upgrade React applications to the latest versions, migrate class components to hooks, and adopt concurrent React features. Ideal for modernizing React codebases and improving performance.

Frontend Development

Favorites 0GitHub 32.4K

nodejs-backend-patterns

by wshobson

Comprehensive patterns and best practices for building scalable Node.js backend services with Express or Fastify. Covers middleware, error handling, authentication, database integration, and API design for REST, GraphQL, and microservices.

Backend Development

Favorites 0GitHub 0

react-state-management

by wshobson

Master modern React state management with Redux Toolkit, Zustand, Jotai, and React Query. Use when setting up global state, managing server state, or choosing between state management solutions.

Frontend Development

Favorites 0GitHub 0