jsentinel-vaadin-oidc-hardening

Official

Enhance your OIDC Vaadin Flow app with deep security hardening

Authorvaadin-developer
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill addresses the security vulnerabilities and weaknesses in an OIDC Vaadin Flow application by providing enhanced hardening measures for ID tokens, token endpoint authentication, back-channel logout, and access tokens.

Core Features & Use Cases

  • JWE ID Tokens: Decrypts and validates JWE-encrypted ID tokens for additional security.
  • mTLS Token-Endpoint Auth: Adds mutual TLS authentication to the token endpoint for secure communication.
  • Back-Channel Logout: Provides back-channel logout functionality for terminating sessions out-of-band.
  • DPoP: Generates sender-constrained access tokens for secure resource-server calls.
  • PAR/JAR Documentation: Offers documentation on implementing PAR and JAR for a PAR-aware flow.
  • Use Case: For a Vaadin Flow application using OIDC authentication, this Skill strengthens security against attacks by adding multiple layers of protection to the ID token handling, authentication, and access token management.

Quick Start

Enable the jsentinel-vaadin-oidc-hardening skill and configure the required features for your application.

Dependency Matrix

Required Modules

jSentinel-dpopjSentinel-oauth2jSentinel-jwtjSentinel-identity-oidc

Components

scriptsreferencesassets

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: jsentinel-vaadin-oidc-hardening
Download link: https://github.com/vaadin-developer/security-for-flow/archive/main.zip#jsentinel-vaadin-oidc-hardening

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.