authentication-setuplisted

# Authentication Setup ## When to use this skill Lists specific situations where this skill should be triggered: - **User Login System**: When adding user authentication to a new application - **API Security**: When adding an authentication layer to a REST or GraphQL API - **Permission Management**: When role-based access control is needed - **Authentication Migration**: When migrating an existing auth system to JWT or OAuth - **SSO Integration**: When integrating social login with Google, GitHub, Microsoft, etc. ## Input Format The required and optional input information to collect from the user: ### Required Information - **Authentication Method**: Choose from JWT, Session, or OAuth 2.0 - **Backend Framework**: Express, Django, FastAPI, Spring Boot, etc. - **Database**: PostgreSQL, MySQL, MongoDB, etc. - **Security Requirements**: Password policy, token expiry times, etc. ### Optional Information - **MFA Support**: Whether to enable 2FA/MFA (default: false) - **Social Login**: OAuth providers (Google, GitHub, etc.) - **Session Storage**: Redis, in-memory, etc. (if using sessions) - **Refresh Token**: Whether to use (default: true) ### Input Example ``` Build a user authentication system: - Auth method: JWT - Framework: Express.js + TypeScript - Database: PostgreSQL - MFA: Google Authenticator support - Social login: Google, GitHub - Refresh Token: enabled ``` ## Instructions Specifies the step-by-step task sequence to follow precisely. ### Step 1: Design the Da