Better Auth Best Practices

What it does

This skill provides guidance and recommendations for implementing secure authentication practices. It helps ensure user data is protected through best practice application of techniques like multi-factor authentication, password hashing, and rate limiting to prevent brute force attacks. The skill aims to improve the overall security posture of applications by incorporating industry-standard authentication protocols.

When to use it

• When designing a new application that requires user accounts and login functionality.
• During an audit or review of existing authentication systems to identify vulnerabilities.
• To assist developers in understanding and implementing secure password reset flows.
• When integrating third-party authentication providers (e.g., OAuth, SAML).

Key capabilities

• Multi-factor authentication guidance
• Secure password hashing recommendations
• Rate limiting strategies for preventing brute force attacks
• Best practices for password reset flows
• Integration advice for third-party authentication providers

Example prompts

• "What are the best practices for securely storing user passwords?"
• "How can I implement multi-factor authentication in my application?"
• "Suggest a rate limiting strategy to prevent brute force login attempts."
• “Explain how OAuth works and when it should be used.”

Tips & gotchas

This skill assumes a basic understanding of authentication concepts. While it provides guidance, implementing these practices requires careful consideration of your specific application's architecture and security requirements.