Skills
.Work. You
Rest

fe-permissions

Official

Protect frontend features with CASL abilities

Software Engineering#authorization#permissions#nextjs#zustand#route-protection#impersonation#casl
Authorlety-ai
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Inconsistent or missing permission checks in the frontend lead to insecure UI surface and leaked functionality where users can see or act on features they should not access. This Skill provides concrete patterns and rules to centralize authorization checks, avoid fragile role-string logic, and ensure route and component-level protection are applied correctly.

Core Features & Use Cases

  • Consistent component checks: Use the permissions store and CASL abilities to show or hide UI elements reliably.
  • Route-level protection: Register permissions on sidebar items so AuthRedirect can automatically block unauthorized access and redirect to the 403 page.
  • Impersonation safety: Enforce restrictions so impersonated users cannot perform destructive DELETE actions even if abilities allow them.
  • Use Case: Add read access to a billing dashboard by updating the sidebar config and verifying that the view redirects unauthorized users to the 403 page.

Quick Start

Add Actions.READ for TenantResourceObjectEnum.BILLING to the sidebar item for /billing and verify AuthRedirect blocks users without that permission.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: fe-permissions
Download link: https://github.com/lety-ai/lety-skill-hub/archive/main.zip#fe-permissions

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.