auth▌

Build secure, scalable authentication and authorization systems using industry-standard patterns and modern best practices.

Convex authentication setup with provider selection, user management, and access control patterns. \n \n Supports multiple auth providers: Convex Auth, Clerk, WorkOS AuthKit, Auth0, and custom JWT, with provider detection from repo signals before setup \n Guides identity mapping to a users table, getCurrentUser helpers, and authorization patterns for ownership, admin, and team access checks \n Includes provider-specific reference files for package installation, environment variables, client wiri

Set up Firebase Authentication with multiple identity providers and secure data access. \n \n Supports email/password, phone number, anonymous, federated providers (Google, Facebook, Twitter, GitHub, Microsoft, Apple), and custom auth integration \n Users are identified by unique UIDs with optional properties including email, display name, photo URL, and email verification status \n Authentication via CLI enables Google Sign In, anonymous auth, and email/password; other providers require Firebas

Server-side identity and user lookup for CloudBase Node.js backends and cloud functions. \n \n Retrieve caller identity ( uid , customUserId , openId ) in cloud functions using getUserInfo() for authorization and personalization decisions. \n Query CloudBase user profiles by uid or login identifier (phone, email, username, custom ID) using getEndUserInfo() and queryUserInfo() . \n Issue custom login tickets from Node backends to bridge existing user systems into CloudBase without requiring separ

Authentication for Nuxt 4+ with composables, server helpers, and route protection. \n \n Provides useUserSession() composable for client-side auth flows (login, signup, signout) and requireUserSession() server helper for API route protection \n Supports route protection via routeRules and definePageMeta with role-based access control \n Integrates Better Auth plugins including admin, passkey, and 2FA capabilities \n Includes NuxtHub database setup with Drizzle schema and clientOnly mode for exte

Supabase Auth integration for Next.js App Router with middleware-based session management. \n \n Handles server/client authentication boundaries using @supabase/ssr, protecting routes via middleware and managing cookie-based sessions \n Provides patterns for OAuth callbacks, Server Actions for auth operations, and proper token handling across Server and Client Components \n Includes anti-patterns to avoid: getSession in Server Components, unlistened client auth state, and manual token storage \n

better-auth-security-best-practices

Scaffold and implement authentication in TypeScript/JavaScript apps with Better Auth framework detection, database adapter setup, and OAuth integration. \n \n Detects frameworks (Next.js, SvelteKit, Nuxt, Astro, Express, Hono), databases (Prisma, Drizzle, MongoDB, raw drivers), and existing auth libraries through project scanning \n Supports email/password, OAuth (Google, GitHub, Apple, Microsoft, Discord, Twitter), magic links, passkeys, and phone authentication with configurable email verifica

Complete Better Auth server and client setup with database adapters, session management, plugins, and security configuration. \n \n Covers full workflow from installation through database migration, environment variable setup, and route handler creation across multiple frameworks \n Supports multiple database adapters (Prisma, Drizzle, MongoDB, direct connections) with critical guidance on model vs. table naming conventions \n Includes session storage strategies with secondary storage (Redis/KV)

Encore Go provides a built-in authentication system using the //encore:authhandler annotation.