Oauth
Skill ActiveImplements OAuth 2.0/2.1 authorization flows in Fastify applications — configures authorization code with PKCE, client credentials, device flow, refresh token rotation, JWT validation, and token introspection/revocation endpoints. Use when setting up authentication, authorization, login flows, access tokens, API security, or securing Fastify routes with OAuth; also applies when troubleshooting token validation errors, mismatched redirect URIs, CSRF issues, scope problems, or RFC 6749/6750/7636/8252/8628 compliance questions.
To enable developers to securely implement and manage OAuth 2.0/2.1 authorization flows within their Fastify applications, covering various grant types and security best practices.
Features
- Configures Authorization Code with PKCE
- Supports Client Credentials and Device Flow
- Implements Refresh Token Rotation
- Handles JWT validation and token introspection
- Secures Fastify routes with OAuth middleware
Use Cases
- Setting up authentication and login flows in Fastify
- Securing API routes with OAuth access tokens
- Troubleshooting token validation errors and RFC compliance
- Implementing secure API security patterns with OAuth 2.1
Non-Goals
- Implementing a full-fledged OAuth 2.0 authorization server
- Providing client-side OAuth libraries for non-Node.js environments
- Handling low-level network transport details beyond Fastify's capabilities
Maintenance
- warning:Dependency ManagementWhile dependencies are listed in the installation example, there is no explicit mention of lockfiles or automated dependency update mechanisms like Dependabot, nor vulnerability scanning.
Versioning
- warning:Release ManagementThe repository does not explicitly declare a version in SKILL.md frontmatter or use GitHub release tags. Installation instructions point to `HEAD`, making version pinning difficult.
Execution
- warning:Pinned dependenciesThe installation instructions list dependencies but do not include a lockfile (e.g., `package-lock.json`) to ensure reproducible builds and pinned versions.
Installation
npx skills add mcollina/skillsRuns the Vercel skills CLI (skills.sh) via npx — needs Node.js locally and at least one installed skills-compatible agent (Claude Code, Cursor, Codex, …). Assumes the repo follows the agentskills.io format.
Quality Score
Trust Signals
Similar Extensions
Auth0 Express OAuth2 JWT Bearer
100Use when adding Auth0 token validation to Express or Node.js APIs - integrates express-oauth2-jwt-bearer SDK to protect Node.js API endpoints with JWT Bearer authentication, scope-based RBAC, claim validation, and optional DPoP support
Auth Implementation Patterns
98Master authentication and authorization patterns including JWT, OAuth2, session management, and RBAC to build secure, scalable access control systems. Use when implementing auth systems, securing APIs, or debugging security issues.
Auth0 Nuxt
100Use when implementing Auth0 authentication in Nuxt 3/4 applications, configuring session management, protecting routes with middleware, or integrating API access tokens - provides setup patterns, composable usage, and security best practices for the @auth0/auth0-nuxt SDK
Auth0 Java Mvc Common
100Use when adding Auth0 login, logout, and callback handling to Java Servlet web applications - integrates com.auth0:mvc-auth-commons SDK for server-side Java apps using javax.servlet with session-based authentication. Triggers on AuthenticationController, AuthorizeUrl, Tokens, IdentityVerificationException, Java MVC auth.
Better Auth Authentication
99Better Auth authentication flows for TypeScript apps. Use when enabling email/password auth, configuring social providers, or implementing sign-up, sign-in, and verification flows.
Better Auth
99Add authentication with Better Auth (TypeScript). Use for email/password, OAuth providers (Google, GitHub), 2FA/MFA, passkeys/WebAuthn, sessions, RBAC, rate limiting.