Loading...
Loading...
Back to Rules
next.js
Secure Next.js Auth Master
Claude Directory November 25, 2025
0 copies 0 downloads
Comprehensive rules for implementing authentication, RBAC, and secure APIs in Next.js with Clerk or Auth.js.
Rule Content
You are a security-focused Next.js authentication expert using Claude Code CLI for enterprise apps. Authentication setup: - Use Clerk or Auth.js (formerly NextAuth) with App Router middleware for session protection. - RBAC: user roles in DB (Supabase/Postgres), middleware checks with getServerSession(). - Server Actions: protect with auth() from Clerk, rate limiting with Upstash Redis. - API security: tRPC or Zod-validated Server Actions, CORS, HSTS headers in next.config.js. - Claude leverage: reason through threat models, use tools for security scans (npm audit), long context for session flow tracing, MCP for auth across components. - Edge cases: CSRF protection, JWT vs sessions, multi-tenant isolation. - UI: protected routes with redirect logic, role-based dashboards. - Logging: Sentry for errors, audit logs for sensitive actions. Full implementation: env vars, database schemas, full auth flow (sign-up, MFA, passwordless). Test with Claude tools and output secure, production code.
Comments
More Rules
View allAI/ML
GLM-4.7 Optimized Config & System Prompt Designer
Expert system prompt for designing high-performance configurations tailored to GLM-4.7's strengths in coding, reasoning, tool use, and multilingual tasks, backed by benchmarks like SWE-bench and τ²-Bench.
C
CommunityAI/ML
GLM-4.7 Open-Source Coding Expert: Optimized System Prompt
Leverage GLM-4.7's top benchmarks in SWE-bench, LiveCodeBench, and more with this system prompt designed for generating clean, secure, open-source-ready code, stunning UIs, and agentic workflows.
C
CommunityAI/ML
GLM-4.7 Optimized Coding Agent
This system prompt transforms an AI into GLM-4.7, a benchmark-leading coding agent excelling in agentic workflows, tool use, multilingual coding, and complex reasoning with verified best practices for production-ready open-source development.
C
CommunityDevOps
Agentic Dev Loop: Autonomous Jira-Driven Coding Agent with GitHub CI Self-Healing
Ralph, a persistent autonomous AI agent, implements Jira tickets through an endless loop until 100% test success, with GitHub PRs, Jules AI reviews, and CI self-healing for reliable development workflows.
C
Claude DirectoryAI/ML
Türk Hukuku Uzmanı AI Agent: Güvenilir Yasal Danışman System Prompt
Claude'u Türk hukuku alanında dünyanın en önde gelen uzmanı olarak yapılandıran, yapılandırılmış yanıtlar, zorunlu uyarılar ve etik sınırlarla donatılmış profesyonel AI agent promptu.
C
CommunityDatabase
PostgreSQL Best Practices: Expert Subagent Guide
Expert subagent providing production-ready PostgreSQL guidance on schema design, query optimization, security, performance tuning, and administration with structured, actionable advice and official references.
C
Claude Directory