2
GitHub Stars
2
Bundled Files
2 months ago
Catalog Refreshed
4 months ago
First Indexed
Readme & install
Copy the install command, review bundled files from the catalogue, and read any extended description pulled from the listing source.
Installation
Preview and clipboard use veilstrat where the catalogue uses aiagentskills.
npx veilstrat add skill fusengine/agents --skill better-auth- meta.json258 B
- SKILL.md7.3 KB
Overview
This skill packages a complete TypeScript-first authentication solution with 40+ OAuth providers, 20+ plugins, and adapters for all major databases and frameworks. It’s framework-agnostic and built for self-hosted, enterprise-ready use cases like SSO, SCIM, 2FA, magic links, passkeys, and Stripe billing. Use it to standardize auth across Next.js, SvelteKit, Nuxt, Remix, Astro, Expo, NestJS, or custom backends. The workflow includes an initial codebase analysis and post-implementation validation by automated agents for safer rollout.
How this skill works
The skill provides modular configuration for providers, plugins, and adapters so you compose only the features you need. It exposes server configuration, client hooks, API routes, and optional proxy handlers for route protection. Built-in plugins cover 2FA, magic links, WebAuthn passkeys, SSO/SAML, SCIM provisioning, API keys, JWTs, and Stripe integration. Adapters for Prisma, Drizzle, MongoDB, and raw SQL ensure persistent session and user storage.
When to use it
- Implementing authentication or migrating from Auth.js, Clerk, Auth0, Supabase, or WorkOS
- Adding OAuth login for Google, GitHub, Discord, Apple, Microsoft, and 40+ providers
- Enabling enterprise features: SSO, SCIM, organizations, and audit logs
- Adding 2FA, magic links, passkeys, phone auth, or SIWE Web3 sign-in
- Integrating subscription billing or payments via Stripe/Polar
- Building a self-hosted, TypeScript-first auth stack across multiple frameworks
Best practices
- Enable only the plugins you actually need to reduce attack surface and complexity
- Use generated, type-safe client types from your server config to avoid runtime errors
- Enable session caching and database indexes for consistent performance at scale
- Secure cookies (secure, httpOnly, sameSite) and configure rate limits on auth endpoints
- Run an automated analysis step before changes and a validation pass after deployment
Example use cases
- Stand up OAuth + 2FA for a SaaS product with Stripe subscription billing
- Migrate a monolith from Auth0 to a self-hosted, TypeScript-first auth stack
- Add enterprise SSO and SCIM provisioning for customer organizations
- Support passwordless magic links and WebAuthn passkeys for mobile and web clients
- Provide M2M API access with API keys and JWT/bearer tokens for third-party integrations
FAQ
No. The plugin architecture is modular—add only the plugins your application requires.
Which databases are supported?
Adapters exist for Prisma, Drizzle, MongoDB, and raw SQL (Postgres, MySQL, SQLite), plus community adapters.
Is this suitable for enterprise SSO?
Yes. Built-in SSO/SAML, SCIM provisioning, organizations, and audit logging target enterprise needs.