Agent Skills
› rmyndharis/antigravity-skills
› auth-implementation-patterns
auth-implementation-patterns
GitHub掌握JWT、OAuth2、会话管理及RBAC等认证授权模式,用于构建安全可扩展的访问控制系统。适用于实现认证系统、保护API、添加SSO或调试安全问题,提供最佳实践与威胁建模指导。
Trigger Scenarios
实现用户认证系统
保护REST或GraphQL API
添加OAuth2/社交登录或SSO
设计会话管理或RBAC
调试认证或授权问题
Install
npx skills add rmyndharis/antigravity-skills --skill auth-implementation-patterns -g -y
SKILL.md
Frontmatter
{
"name": "auth-implementation-patterns",
"description": "Master authentication and authorization patterns including JWT, OAuth2, session management, and RBAC to build secure, scalable access control systems. Use when implementing auth systems, securing APIs, or debugging security issues."
}
Authentication & Authorization Implementation Patterns
Build secure, scalable authentication and authorization systems using industry-standard patterns and modern best practices.
Use this skill when
- Implementing user authentication systems
- Securing REST or GraphQL APIs
- Adding OAuth2/social login or SSO
- Designing session management or RBAC
- Debugging authentication or authorization issues
Do not use this skill when
- You only need UI copy or login page styling
- The task is infrastructure-only without identity concerns
- You cannot change auth policies or credential storage
Instructions
- Define users, tenants, flows, and threat model constraints.
- Choose auth strategy (session, JWT, OIDC) and token lifecycle.
- Design authorization model and policy enforcement points.
- Plan secrets storage, rotation, logging, and audit requirements.
- If detailed examples are required, open
resources/implementation-playbook.md.
Safety
- Never log secrets, tokens, or credentials.
- Enforce least privilege and secure storage for keys.
Resources
resources/implementation-playbook.mdfor detailed patterns and examples.
Version History
- e63f7dd Current 2026-07-05 09:28


