bc-gov-iam
CommunityBC Gov OIDC integration for DIAM & Common SSO
Authorrloisell
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill provides practical guidance and implementation patterns to integrate BC Government identity providers (DIAM and Common SSO) using OIDC and Keycloak so applications can perform secure authentication and token-based authorization without ad-hoc setup mistakes.
Core Features & Use Cases
- OIDC PKCE for SPAs: Steps and configuration for PKCE S256 flow using react-oidc-context and oidc-client-ts.
- .NET JWT validation and API protection: Recommended JwtBearer setup, token validation parameters, and claim extraction snippets.
- Keycloak client registration and backchannel logout: Client settings for public and confidential clients and a backchannel logout handler pattern.
- Operational guidance: Recommended Vault path for client secrets, common pitfalls, and troubleshooting for silent renew and audience mapping.
- Use Cases: Secure a React SPA with Common SSO, configure a confidential API with DIAM Keycloak, and handle token refresh and logout across services.
Quick Start
Configure your React SPA to use oidc-client-ts with PKCE against loginproxy.gov.bc.ca and provide the oidcConfig, callback page, silent renew entry, and corresponding .NET JwtBearer settings for the API.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: bc-gov-iam Download link: https://github.com/rloisell/rl-agents-n-skills/archive/main.zip#bc-gov-iam Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.