nav-auth
OfficialSecure Azure/TokenX/ID-porten auth setup
Software Engineering#authorization#authentication#azure-ad#jwt-validation#tokenx#id-porten#maskinporten
Authornavikt
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Prevents broken or insecure authentication and authorization in Nav applications by providing correct patterns for Azure AD, TokenX, ID-porten, Maskinporten, and JWT validation.
Core Features & Use Cases
- Correct authentication wiring for Nav stacks: Implements Azure AD JWT validation (issuer, audience, signature) and service-to-service TokenX exchange flows.
- Machine-to-machine and citizen access models: Covers Maskinporten scopes for external organizations and ID-porten sidecar configuration for citizens.
- Practical debugging guidance: Includes commands and testing approaches to diagnose auth failures like audience mismatches, JWKS retrieval issues, and TokenX access-policy drift.
Quick Start
Configure your Nais app for Azure AD and validate incoming JWTs using the nav-auth skill patterns for issuer, JWKS, audience checks, and TokenX OBO exchange.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: nav-auth Download link: https://github.com/navikt/copilot/archive/main.zip#nav-auth Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.