verify-auth
CommunityEnsure backend auth patterns are implemented correctly.
Authorjunnv93
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Verifies that backend controllers comply with server-side authentication and authorization rules to prevent security gaps and insecure patterns.
Core Features & Use Cases
- Enforces extraction of userId from req.user.userId (no body userId) and ensures DTOs do not define userId fields for state-changing operations.
- Ensures protected endpoints use a Permission Guard such as @RequirePermissions and that modifications trigger an audit log with @AuditLog.
- Flags and guides proper use of @Public on endpoints that do not require authentication, and documents related references for auditing checks.
Quick Start
Run verify-auth after adding or modifying controller endpoints to validate authentication and authorization patterns.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: verify-auth Download link: https://github.com/junnv93/equipment_management_system/archive/main.zip#verify-auth Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.