jsentinel-vaadin-oidc-hardening
OfficialEnhance your OIDC Vaadin Flow app with deep security hardening
Authorvaadin-developer
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill addresses the security vulnerabilities and weaknesses in an OIDC Vaadin Flow application by providing enhanced hardening measures for ID tokens, token endpoint authentication, back-channel logout, and access tokens.
Core Features & Use Cases
- JWE ID Tokens: Decrypts and validates JWE-encrypted ID tokens for additional security.
- mTLS Token-Endpoint Auth: Adds mutual TLS authentication to the token endpoint for secure communication.
- Back-Channel Logout: Provides back-channel logout functionality for terminating sessions out-of-band.
- DPoP: Generates sender-constrained access tokens for secure resource-server calls.
- PAR/JAR Documentation: Offers documentation on implementing PAR and JAR for a PAR-aware flow.
- Use Case: For a Vaadin Flow application using OIDC authentication, this Skill strengthens security against attacks by adding multiple layers of protection to the ID token handling, authentication, and access token management.
Quick Start
Enable the jsentinel-vaadin-oidc-hardening skill and configure the required features for your application.
Dependency Matrix
Required Modules
jSentinel-dpopjSentinel-oauth2jSentinel-jwtjSentinel-identity-oidc
Components
scriptsreferencesassets
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: jsentinel-vaadin-oidc-hardening Download link: https://github.com/vaadin-developer/security-for-flow/archive/main.zip#jsentinel-vaadin-oidc-hardening Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.