oauth-implementation

Solid

OAuth 2.0 and OpenID Connect authentication with secure flows. Use for third-party integrations, SSO systems, token-based API access, or encountering authorization code flow, PKCE, token refresh, scope management errors.

API & Backend 160 stars 25 forks Updated 2 weeks ago MIT

Install

View on GitHub

Quality Score: 88/100

Stars 20%

Recency 20%

Frontmatter 20%

Documentation 15%

100

Issue Health 10%

License 10%

100

Description 5%

100

Skill Content

# OAuth Implementation Implement OAuth 2.0 and OpenID Connect for secure authentication. ## OAuth 2.0 Flows | Flow | Use Case | |------|----------| | Authorization Code | Web apps (most secure) | | Authorization Code + PKCE | SPAs, mobile apps | | Client Credentials | Service-to-service | | Refresh Token | Session renewal | ## Authorization Code Flow (Express) ```javascript const express = require('express'); const jwt = require('jsonwebtoken'); // Step 1: Redirect to authorization app.get('/auth/login', (req, res) => { const state = crypto.randomBytes(16).toString('hex'); req.session.oauthState = state; const params = new URLSearchParams({ client_id: process.env.CLIENT_ID, redirect_uri: process.env.REDIRECT_URI, response_type: 'code', scope: 'openid profile email', state }); res.redirect(`${PROVIDER_URL}/authorize?${params}`); }); // Step 2: Handle callback app.get('/auth/callback', async (req, res) => { if (req.query.state !== req.session.oauthState) { return res.status(400).json({ error: 'Invalid state' }); } const tokenResponse = await fetch(`${PROVIDER_URL}/token`, { method: 'POST', headers: { 'Content-Type': 'application/x-www-form-urlencoded' }, body: new URLSearchParams({ grant_type: 'authorization_code', code: req.query.code, redirect_uri: process.env.REDIRECT_URI, client_id: process.env.CLIENT_ID, client_secret: process.env.CLIENT_SECRET }) }); const tokens = await t...

Details

Author: secondsky
Repository: secondsky/claude-skills
Created: 6 months ago
Last Updated: 2 weeks ago
Language: TypeScript
License: MIT

Integrates with

Cloudflare · Cloud OAuth · Auth

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Solid

oauth

OAuth 2.0/OIDC flows, provider integration, and token handling.

1,034 Updated today

a5c-ai

AI & Automation Solid

oauth-flow-implementer

Implement OAuth 2.0 and OpenID Connect flows for SDKs

1,034 Updated today

a5c-ai

AI & Automation Featured

configuring-oauth2-authorization-flow

Configure secure OAuth 2.0 authorization flows including Authorization Code with PKCE, Client Credentials, and Device Authorization Grant. This skill covers flow selection, PKCE implementation, token

12,642 Updated today

mukul975

API & Backend Solid

api-authentication

Secure API authentication with JWT, OAuth 2.0, API keys. Use for authentication systems, third-party integrations, service-to-service communication, or encountering token management, security headers, auth flow errors.

160 Updated 2 weeks ago

secondsky

AI & Automation Solid

auth-security

OAuth 2.1 + JWT authentication security best practices. Use when implementing auth, API authorization, token management. Follows RFC 9700 (2025).

140 Updated today

majiayu000