此内容尚未提供您的语言版本,正在以英文显示。

Auth0 Express OAuth2 JWT Bearer

技能已验证活跃

属于:Auth0

Use when adding Auth0 token validation to Express or Node.js APIs - integrates express-oauth2-jwt-bearer SDK to protect Node.js API endpoints with JWT Bearer authentication, scope-based RBAC, claim validation, and optional DPoP support

目的

Integrate Auth0 JWT bearer token validation into Express or Node.js APIs to secure endpoints and enforce authorization rules.

功能

JWT Bearer token validation per RFC 6750
Scope-based RBAC and claim validation
Optional DPoP support for token binding
Automatic setup script for Auth0 API configuration
Clear guidance on CORS, error handling, and testing

使用场景

Securing Node.js API endpoints with Auth0 JWTs
Implementing role-based access control using JWT claims
Protecting APIs called by SPAs, mobile apps, or M2M clients
Validating Auth0-issued access tokens against an API audience

非目标

Building full-stack web applications with UI/session management
Handling authentication for client-side SPAs or mobile apps directly
Managing user login flows or UI components
Providing alternative authentication providers

工作流

Fetch latest SDK release version
Install the SDK
Configure Auth0 API and environment variables (automatic or manual)
Set up middleware in the Node.js application
Protect API endpoints with the middleware
Add RBAC or claim validation rules
Verify the integration by testing protected endpoints

实践

JWT Authentication
API Security
Authorization
RBAC

先决条件

Node.js 18+ (20+ recommended)
Express 4.x or 5.x
npm or yarn
An Auth0 account with a configured API (Resource Server)
Auth0 CLI (for automatic setup)

安装

/plugin install auth0@auth0-agent-skills

质量评分

已验证

100 /100

1 day ago 分析

信任信号

最近提交1 day ago

GitHub 所有者 auth0

星标20

许可证Apache-2.0

状态

查看源代码

类似扩展

Auth0 Nuxt

Use when implementing Auth0 authentication in Nuxt 3/4 applications, configuring session management, protecting routes with middleware, or integrating API access tokens - provides setup patterns, composable usage, and security best practices for the @auth0/auth0-nuxt SDK

Netlify Identity

用于身份验证、用户注册、登录、密码恢复、OAuth 提供商、基于角色的访问控制或保护路由和函数。始终使用 `@netlify/identity`。切勿使用 `netlify-identity-widget` 或 `gotrue-js` — 它们已弃用。

Auth0 SPA JS Integration

Use when adding authentication to Vanilla JS, Svelte, or any framework-agnostic single-page applications - integrates @auth0/auth0-spa-js SDK for SPAs without framework-specific wrappers

Auth0 Next.js

Use when adding authentication to Next.js applications (login, logout, protected pages, middleware, server components) - supports App Router and Pages Router with @auth0/nextjs-auth0 SDK.

Auth0 Java Mvc Common

Use when adding Auth0 login, logout, and callback handling to Java Servlet web applications - integrates com.auth0:mvc-auth-commons SDK for server-side Java apps using javax.servlet with session-based authentication. Triggers on AuthenticationController, AuthorizeUrl, Tokens, IdentityVerificationException, Java MVC auth.

Auth0 Flask

Use when adding login, logout, and user profile to a Flask web application using session-based authentication - integrates auth0-server-python for server-rendered apps with login/callback/profile/logout flows.