Authentication plugins

Integrate external APIs for payments, communications, search, CRM, and financial data — Stripe, Twilio, Algolia, HubSpot, and Plaid — with production patterns for auth, webhooks, and compliance.

Manage iMessage access control for Claude Code — approve or deny pairing requests, edit sender allowlists, set DM and group chat policies, and check that Full Disk Access and chat.db are properly configured.

Enterprise deployment of a Claude Office add-in with managed cloud access (Vertex AI, Bedrock, or LLM gateway), generating custom manifests, provisioning Azure admin consent, and writing per-user config via Microsoft Graph extension attributes.

Build and optimize Next.js App Router apps: scaffold pages/layouts/components/API routes/server actions, implement authentication with Auth.js/Prisma/middleware, guide server/client components usage, and analyze/generate performance reports with recommendations.

Read, send, and manage Gmail messages; create and edit Google Docs, Sheets, and Slides; access and organize Drive files; manage Calendar events, Tasks, and Contacts; orchestrate Chat messages, Apps Script execution, and Custom Search via MCP tools from the command line or uvx.

Implement, customize, secure, deploy, troubleshoot, and scale Clerk authentication in Next.js apps using 24 skills for SDK installation, sign-up/sign-in UIs, middleware protection, error debugging, webhook handling, performance tuning, cost optimization, RBAC/SSO, GDPR compliance, production checklists, CI/CD pipelines, local dev loops, and migrations from Auth0, Firebase, or Supabase.

Build complete API authentication and authorization systems supporting JWT, OAuth2, API keys, sessions, MFA, RBAC, token refresh, validation, and brute-force protection. Generates models, middleware, and services for JavaScript/Node.js, Python, and Java backends.

Audit web app session management for vulnerabilities like fixation, ID generation flaws, expiration issues, cookie misconfigurations, insecure storage, and poor invalidation in Express, Django, Rails, Python, and Java apps. Check current Claude Code session status, including active state and user details.

Audit authentication in JavaScript, Python, and Java web apps/APIs against OWASP/NIST standards—covering password hashing, JWT handling, sessions, OAuth flows, MFA, and account controls. Validate project setups by checking credentials, tokens, and config files for errors and compliance status.

Audit access controls including IAM policies, RBAC, ACLs, file permissions, and API authorizations in AWS, GCP, Azure, and local projects to detect vulnerabilities, privilege escalation paths, and least privilege violations, generating detailed compliance reports.

Integrate Procore REST API into Python apps for construction project management: authenticate with OAuth2, create/track RFIs and submittals, handle errors/rate limits/backoffs, manage multi-env setups, migrations, RBAC, webhooks, and production checklists.

Parse, sign, and validate JWTs using the lestrrat-go/jwx v4 library in Go, with support for JWS, JWE, and JWK, algorithm selection, and common security pitfalls avoided.

Integrate Podium SaaS API into Node.js/TypeScript apps for two-way messaging, review requests, payments processing, and business workflows. Set up OAuth2 auth, handle REST calls, webhooks, rate limits, errors, retries, security, performance tuning, local dev, deployments, and migrations using proven patterns.

Integrate RemoFirst API in Python for global HR, EOR, and payroll workflows: onboard employees with compliance checks and document uploads, process multi-currency payslips and invoices, set up authentication, handle errors/rate limits/security, debug locally, follow production checklists, and manage upgrades/migrations.

Develop full OneNote Graph API integrations in Python or TypeScript: perform CRUD on notebooks, sections, and pages; set up MSAL auth; debug errors and generate diagnostics; optimize for rate limits and performance; configure CI/CD pipelines, local mocks, Docker/K8s deployments, and production checklists.

Integrate Ramp's corporate card and expense management API into Python apps: issue and manage virtual cards with limits, fetch and filter transactions, sync expenses to accounting, handle OAuth2 authentication, rate limits, errors, webhooks, and multi-env setups via 24 ready skills.

Build, debug, deploy, and optimize Persona KYC identity verification integrations: set up API auth, create embedded UI workflows in React apps, handle webhooks/results in Node/Python backends, fix errors/rate limits, tune costs/performance, implement CI/CD pipelines, and deploy to GCP with Docker.

Integrate Workhuman Social Recognition API into apps for employee rewards, nominations, recognitions, and HRIS sync with Workday/SuccessFactors. Handle OAuth 2.0 auth, REST endpoints, webhooks, errors, rate limits, performance tuning, security, debugging, local dev, and production deployment via 18 specialized skills.

Authenticate Shopify stores via CLI setup, then create and manage products with bulk CSV imports/updates/variants/inventory/images/collections, plus pages, blog posts, navigation, redirects, SEO metadata, and metaobjects using GraphQL/REST APIs, CLI commands, or browser automation.

Administer Keycloak identity and access management with realm/client configuration, authentication flows, authorization policies, and security hardening, plus implement Keycloak.AuthServices .NET library for JWT/OIDC authentication, RBAC, and Admin REST API integration.

Build persistent data layers in SwiftUI iOS/macOS apps using Boutique: initialize Stores for CRUD on structured data, persist preferences and secrets via @StoredValue/@SecurelyStoredValue, bind reactively to views with onChange and previews, apply Swift 6 concurrency best practices, and test store setups.

Run slash commands to perform security audits: scan dependencies for vulnerabilities and risks, review auth configs and inputs, generate severity-prioritized reports with remediations and code fixes, add secure authentication systems with MFA and RBAC, and automatically harden app configurations across encryption, headers, and infra.

Build and manage Microsoft Teams bots via CLI: scaffold code in TypeScript, C#, or Python; register bots and set up infrastructure/credentials; configure SSO; troubleshoot deployments—all in one workflow.

Set up Azure MCP server with Azure CLI authentication and manage 40+ Azure services like Storage, Key Vault, Cosmos DB, AKS clusters, and Log Analytics directly in Claude conversations. Handles prerequisites (Azure CLI, Node.js 20+, RBAC), login verification, and resource operations including listing, creating, and querying.

Bridge Claude Code with WeChat messaging via iLink Bot API, with built-in access control for approving pairings and managing allowlists.

Operate freee accounting, HR, invoicing, project management, sales, IT asset management, and e-signature APIs via MCP, with OAuth authentication, company management, and REST requests.

Build and debug iOS apps for Meta smart glasses using the DAT SDK, handling camera streaming, display configuration, device registration, session lifecycle, and testing with mock devices.

Implement secure OAuth 2.0 and OpenID Connect authentication flows for web apps, SPAs, and services. Handle Authorization Code with PKCE, Client Credentials grants, and token refresh. Use ready Express.js examples with Flask and Spring Boot references to integrate third-party auth and SSO quickly.

Operate a complete Monday.com CRM workflow from within Claude: run first-run setup, generate morning briefings and forecast dashboards, diagnose board health, clean and normalize deal data, build new workspaces from descriptions, and sync meeting transcripts to opportunities.

Connect to your Okta org with a read-only API token to scan authentication policies, MFA enrollment, password rules, session settings, admin users, and logs for FedRAMP/NIST/SOC2/PCI compliance. Emit standardized security findings, setup idempotent YAML config, and check connector status.

Set up, configure, extend, and debug Better Auth TypeScript authentication for Next.js, Nuxt, Cloudflare D1 via Drizzle/Prisma/Kysely/Hono, and 15+ frameworks. Interactively generate auth configs, schemas, routes, clients, and env vars; add plugins like 2FA, passkeys, Stripe; explain errors with fixes; reference providers; autonomously diagnose issues.

Implement secure session management in Node.js/Express apps using JWT tokens stored in Redis, with refresh token flows and secure cookie configuration for handling user authentication, sessions, and logout.

Implement secure API authentication in Node.js backends using JWT middleware, OAuth 2.0 flows, and API keys. Add security headers, manage tokens, avoid common pitfalls, and reference Flask implementations for service-to-service auth and third-party integrations.

Set up Nuxt Studio visual CMS for Nuxt Content sites with interactive wizards. Configure OAuth authentication using GitHub, GitLab, or Google providers. Deploy to Cloudflare Pages or Workers with custom subdomains, or to Vercel/Netlify. Validate setups and auto-fix issues like module order.

Build, deploy, and audit AI agents on Starknet with native account abstraction, DeFi operations, privacy workflows, and Cairo smart contract development — all from a single agentic skill bundle.

Connect WeChat accounts to Claude Code via QR code pairing and official iLink Bot API, manage user access with allowlists and policies (pairing/allowlist/disabled), and run a local Bun-based MCP server for WeChat messaging, bot tools, and AI coding assistant integration.

Review fintech platforms, investment advertising, client advice, disclosures, AML/KYC processes, recordkeeping, and operations for compliance with US securities regulations including SEC Marketing Rule, FINRA rules, ERISA, FinCEN BSA/AML, Reg BI, fiduciary duties, Reg S-P privacy, and GIPS standards to prepare for exams and mitigate risks.

Automate Duende Software docs lifecycle for IdentityServer, BFF, Access Token Management, IdentityModel, OidcClient: scrape sources, validate and rebuild indexes, perform keyword/NLP searches, resolve doc sections, and maintain searchable storage to accelerate authentication research.

Implement SIP protocol for VoIP and real-time communications apps, covering fundamentals like message structures and call flows per RFC 3261, HTTP Digest authentication with TLS/SIPS encryption and security best practices, plus SDP parsing for codec and media negotiation in RTP sessions using TypeScript examples.

Integrate Clerk authentication across frameworks (Next.js, React, Vue, Nuxt, Astro, Expo, Android, iOS) with custom UI, organizations, billing, webhooks, and E2E testing

Delegate security engineering tasks to an AI agent that performs vulnerability assessments, fixes issues like SQL injection and XSS, implements authentication with OAuth/JWT and RBAC, protects PII, conducts threat modeling, code reviews, and ensures OWASP/GDPR compliance in your codebase.

Implement USDC payments, CCTP cross-chain bridging across EVM chains and Solana, programmable wallets (developer-controlled, user-controlled, modular with passkeys/MPC), Gateway unified balances, and smart contract interactions using Circle SDKs with guided skills for web3 apps.

Integrate Neon serverless PostgreSQL into Next.js, React, and Node.js apps with Drizzle ORM schemas, authentication routes, session management, and low-latency serverless drivers; provision ephemeral test databases for CI/CD and prototyping; embed Neon best practices in AI docs; query and manage DBs remotely via HTTP MCP.

Bootstrap Auth0 authentication by auto-detecting frameworks like React, Next.js, Vue, Angular, Express, or React Native; migrate user auth from Firebase, Cognito, Supabase, Clerk, or custom setups; enable MFA/2FA via TOTP, SMS, push, passkeys with step-up verification and adaptive risk-based auth for compliance.

Authenticate with Trading 212 API keys to automate trading workflows: place and cancel market/limit/pending buy/sell orders, monitor portfolio balances/positions/P&L, retrieve order history/dividends, and search instruments for position tracking and historical analysis.

Scaffold signin and signup authentication endpoints from scratch, then audit and harden auth code for security vulnerabilities including credential storage, session handling, OAuth/OIDC flows, MFA/passkeys, and OWASP patterns.

Implement and audit GDPR/CCPA/CN IL-compliant consent management: build preference centers with DB/API/UI schemas, withdrawal flows with one-click UIs and notifications, valid consent banners without dark patterns, GPC detection in JS, record-keeping systems, mobile app consents for iOS/Android, child/research handling, CMP evaluations, and international transfer consents.

Implement children's privacy compliance for online services and EdTech by adding age gating, verification methods, parental consent, data minimization, deletion requests, age-appropriate notices, profiling limits, and assessments aligned with COPPA, GDPR, UK AADC.

Automate processing of GDPR and CCPA data subject rights requests including DSAR intake via web/email/phone, identity verification, fulfillment workflows for erasure, rectification, portability, objection, opt-outs, restriction, and automated decisions, with response generation, exemptions handling, third-party notifications, and regulatory complaint management within deadlines.

Manage an InsForge backend cloud platform through CLI and SDK: provision Postgres databases with row-level security, configure authentication and third-party auth providers, deploy edge functions and storage, set up AI gateways and Stripe payments, and diagnose project health via logs and metrics.

Develop NestJS applications with advanced patterns for dependency injection, guards, interceptors, and unit testing, including JWT authentication and modular modular design.

Enable wallet-based payment workflows for APIs using x402: authenticate via email OTP, fund with Coinbase Onramp, send/swap tokens on Base/Polygon/Solana, query onchain data, and build or consume paid Express endpoints with automatic USDC settlement.

Secure Cloudflare Workers apps with Zero Trust Access authentication using Hono middleware: validate JWTs and service tokens, protect routes via RBAC, and resolve CORS preflight, cache races, and missing headers.

Automate KYC/AML compliance workflows including customer onboarding with 17 stagegates and independent verification, sanctions/PEP screening, four-factor risk scoring, transaction monitoring for anomalies, periodic refreshes, SAR generation, Excel/PDF reports, and immutable audit trails for UK/EU/US/MENA jurisdictions.

Integrate WorkOS widgets for user management, SSO connections, admin portals, and domain verification into Next.js, React, SvelteKit, Ruby, Python, Go, PHP, Java apps via stack detection and OpenAPI specs. Access guides for implementing and debugging SSO, SAML, MFA, RBAC, Directory Sync across frameworks.

Authenticate via Smart-ID QR code to the Estonian Tax and Customs Board (EMTA) CLI, then list and view TSD income and social tax declarations directly from your terminal.

Sign and verify AI agent actions with cryptographic identity using DIDs and Verifiable Credentials, supporting post-quantum proofs and delegation chains across Python, TypeScript, and Go SDKs.

Manage Skyboard kanban boards on AT Protocol from terminal CLI: join boards by URI, list boards/columns/cards, create/edit/move/delete/comment cards, view details, login/logout with OAuth.

Build Zoom platform integrations including REST APIs, Meeting/Video SDKs, OAuth authentication, webhooks, Team Chat bots, Phone CTI workflows, Contact Center, and real-time media streaming. Includes MCP servers for AI-agent access to Zoom meetings, whiteboards, chat, documentation, and revenue analytics.

Automate SecondMe platform interactions via Agent for login, profile management, chatting, Plaza posts, friend handling, Key Memory CRUD, discovery, and skill installs. Develop third-party apps with guided OAuth flows, MCP/API integrations, scaffolding, reviews, and hackathon submissions.

Prove AI agents are human-backed with AgentKit to unlock free or discounted access to x402 payment-required endpoints. Sign CAIP-122 challenges using EVM wallets (EOA via EIP-191 or SCW via ERC-1271), handle 402 responses with auth headers, and integrate into servers for payment modes, EVM chain wiring, and ExactEvmScheme parsing.

Implement secure authentication and authorization systems with JWT tokens, OAuth2 flows, refresh tokens, session management, bcrypt/Argon2 hashing, 2FA/MFA, SSO, RBAC, and best practices in TypeScript, JavaScript, and Express apps.

Design and implement enterprise API integrations for microservices and third-party services in B2B applications, using REST, GraphQL, gRPC, webhooks for connectivity, with authentication, data transformation, error handling, API gateways, service mesh, and monitoring to build scalable architectures.

Run a local Python MCP server to connect Claude securely to Google Workspace via OAuth, enabling it to read/send Gmail emails, manage Drive files, edit Docs and Sheets, and handle Calendar events directly in your workflows.

Integrate email, phone, SMS, and iMessage communication into AI agent workflows using Inkbox's Python and TypeScript SDKs and CLI. Manage identities, contacts, notes, encrypted vaults, and expose local servers via public tunnels.

Bridge Claude Code with LINE Messenger: send and receive messages, manage user access via pairing codes, allowlists, or open policy, and configure bot credentials through slash commands.

Log users into Vue 3 apps via OAuth2/OpenID Connect with authorization-code + PKCE flow, token refresh, route guards, and reactive auth state.

Scaffold and configure complete Better Auth authentication systems in TypeScript/JavaScript apps using Next.js, SvelteKit, Astro. Set up server/client with Prisma/Drizzle/MongoDB/Redis adapters, OAuth providers, email/password flows, 2FA/MFA, and multi-tenant organizations with RBAC and team management.

Manage Buildin.ai wiki content programmatically: authenticate via Google SSO, then create, update, and read pages as markdown using the UI API.

Integrate Descope authentication into apps, manage FGA authorization schemas, generate React BYOS components from flow exports, run static security reviews for auth vulnerabilities, and manage Descope projects as Terraform infrastructure-as-code.

Build and manage a production-ready frontend design system with 263+ design styles, multi-tenant Keycloak theming, token generation, component scaffolding, accessibility auditing, and style conversion

Enable WhatsApp as a messaging channel for Claude Code with built-in access control and setup configuration. Manage device pairing, allowlists, and group/DM policy through simple commands, and configure phone number and authentication state via dedicated skills.

Configure and manage Duende IdentityServer deployments in ASP.NET Core — OAuth/OIDC flows, token management, BFF security patterns, client/scope setup, signing keys, store customization, and production hardening

Manage Solana, Bitcoin, and EVM wallets through a local AgentLayer runtime, enabling balance checks, token transfers, swaps, DeFi operations, and x402 payments without creating new wallets.

Read and summarize Mattermost (Time) conversations including channels, threads, and direct messages. Authenticate via browser MCP or bot token, then retrieve posts and summaries for quick context.

Manage multi-tenant MERN platforms on Keycloak: administer realms, users, clients, and themes; orchestrate Docker Compose microservices with health checks and env validation; generate Jest tests from Express routes with auth mocking.

Configure the Infisical Agent daemon to manage auth token lifecycles and render secrets to files via Go templates. Deploy as sidecar in Kubernetes, Docker, ECS with auth methods like AWS IAM, Azure, GCP. Handle YAML configs, sinks, polling, caching for secure secret access in production environments.

Integrates the Agentforce Mobile SDK into an Android app by discovering the use case, selecting the appropriate auth flow (employee OAuth/JWT, public service agent, or guest), adding Salesforce Maven repositories and SDK dependencies, and scaffolding Kotlin files for credential provider, AgentforceClient holder, logger, network, navigation, UI delegate, and a Compose chat host.

Adds login, registration, session management, TOTP 2FA, password hashing, CSRF protection, rate limiting, password reset, email verification, and cookie-backed sessions to any JavaScript application

Build and orchestrate multi-agent systems using Google's A2A (Agent-to-Agent) protocol—discover agents via Agent Cards, delegate tasks over JSON-RPC with streaming and push notifications, manage full task lifecycles, authenticate agent communication, and integrate with frameworks like LangGraph, CrewAI, and Google ADK.

Customize and implement YCom user authentication in REDAXO PHP apps: configure login/registration/profile forms, integrate SSO with SAML/OAuth2/CAS, enable 2FA/OTP enforcement, protect articles/media via groups/permissions, manage sessions/tokens, and log activity.

Set up a LINE messaging channel for Claude Code by configuring access tokens, secrets, and webhook port in .env, then manage secure access: approve/deny user pairings via codes, edit allowlists, set DM policies and group configs using /line:access CLI commands for status checks and changes.

Automate Peking University campus services via Rust CLI tools: course selection, campus card management, classroom booking, financial queries, treehole forum, and WeChat article scraping, with integrated IAAA SSO and credential storage.

Manage an AI agent's portable Ethereum identity onchain using ERC-8004 and CLI commands for creating, saving snapshots, and syncing soul, memory, and skills. Also runs Convex linting and type checking during development.

Secure Python-based MCP servers and multi-agent pipelines by implementing OAuth 2.0 flows with PKCE and providers like Google/GitHub, enforcing 5-layer defenses against prompt/SQL injections and unauthorized access via RBAC, and achieving GDPR/CCPA compliance with consent management, data minimization patterns, and regulatory checklists.

Connect Claude Code to ManageLM for remote Linux server management using natural language: run commands, transfer files, monitor infrastructure, and automate sysadmin tasks through an MCP endpoint with OAuth 2.0 authentication.

Programmatically manage LinkedIn ABM ad campaigns via Python CLI by cloning campaigns, updating budgets and targeting, batch pausing or resuming, auditing spend, analyzing performance, and searching URNs after quick OAuth credential setup.

Manage Supabase projects from Claude Code: query and optimize Postgres databases, configure authentication and RLS policies, manage storage buckets, deploy Edge Functions, and handle schema migrations using Supabase best practices.

Interact with the Alation data intelligence platform: query data products, discover catalog assets, create and schedule automated workflows, manage AI agents and tools, curate metadata, and configure authentication — all from within Claude Code.

Develop full-stack web apps with Wasp using Claude — add authentication, email, database, and styling; run dev servers with database setup; deploy to Railway or Fly.io; debug via browser automation and server logs.

Set up Gmail CLI with OAuth2 credentials from Google Cloud Console and use it in your terminal to search emails with operators, read/view threads, compose/send/reply to emails, and manage labels/styles via bash commands and workflows.

Search global open source repositories for code examples matching natural language queries via GitHits CLI. Authenticate via OAuth for personalized results, check login status, logout securely, and scan local Git repos for secrets, API keys, and sensitive data without external APIs.

Manage QQ Bot channel access for Claude Code: approve/deny pairings via 6-char codes, edit OpenID allowlists, set DM policy (pairing/allowlist/disabled). Configure credentials and review access policy.

Implement production-grade Express.js APIs using patterns for JWT authentication with refresh tokens, Zod-powered request validation in body/query/params, modular routing with versioning and REST resources, middleware stacks for logging/request IDs/rate limiting, and structured error handling with custom classes and HTTP responses.

Build full-stack Next.js App Router apps by applying patterns for file-based routing and layouts, dynamic API routes with CRUD and request handling, middleware for auth and headers, NextAuth integration with sessions and protected routes, plus server/client components with Prisma data fetching.

Implement Auth0 authentication in Next.js and Express.js apps using patterns for JWT middleware with scopes, permissions, and RBAC; client-side providers, hooks, and protected routes; server sessions; plus M2M flows, token caching, and user/organization management via TypeScript SDKs.