better-auth

star 7

Implement authentication and authorization with modern patterns including OAuth 2.1, JWT, sessions, RBAC, and multi-factor authentication. Use when building auth systems.

ihatesea69 By ihatesea69 schedule Updated 5/17/2026
play_arrow Run Skill in Manus View GitHub

name: better-auth description: >- Implement authentication and authorization with modern patterns including OAuth 2.1, JWT, sessions, RBAC, and multi-factor authentication. Use when building auth systems. license: MIT version: 2.0.0

Better Auth

Activate when implementing authentication or authorization systems.

When to Use

  • Adding authentication to an application
  • Implementing OAuth flows (Google, GitHub, Discord)
  • Setting up JWT or session-based auth
  • Implementing role-based access control (RBAC)
  • Adding multi-factor authentication (TOTP, SMS)
  • Managing user sessions and token refresh

Authentication Patterns

Session-Based (Recommended for Next.js)

  • Store sessions server-side (Redis for distributed)
  • Use httpOnly, secure, sameSite cookies
  • Implement session rotation on privilege escalation
  • Set absolute and idle timeouts

JWT (Stateless)

  • Short-lived access tokens (15-60 minutes)
  • Long-lived refresh tokens (7-30 days, stored securely)
  • Rotate refresh tokens on use
  • Include minimal claims (user ID, roles)

OAuth 2.1

  • Use PKCE for all flows
  • Validate state parameter to prevent CSRF
  • Store tokens encrypted at rest
  • Handle provider-specific scopes and claims

Security Rules

  • Hash passwords with bcrypt (cost 12+) or argon2id
  • Use constant-time comparison for tokens
  • Implement account lockout after failed attempts
  • Log all auth events for audit trail
  • Never store plain-text passwords or tokens
Install via CLI
npx skills add https://github.com/ihatesea69/kiro-kit --skill better-auth
Repository Details
star Stars 7
call_split Forks 2
navigation Branch main
article Path SKILL.md
More from Creator
ihatesea69
ihatesea69 Explore all skills →