ssr-auth-integration
SSR Auth Integration (Clerk-like JWKS Pattern)
Authentication pattern for server-rendered apps that use eridu_auth as the identity provider without sharing secrets. JWT is stored in an httpOnly cookie, verified locally with JWKS, and refreshed server-side on expiry. Framework-specific glue is kept minimal; the core helpers live in @eridu/auth-sdk/server/ssr.
Canonical Examples
Study these implementations as the source of truth:
| File | What it demonstrates |
|---|---|
apps/eridu_docs/src/lib/auth.ts |
Astro: shared JWKS/JWT setup, SDK wrappers, cookie helpers |
apps/eridu_docs/src/middleware.ts |
Astro: auth gate — verify → refresh → redirect |
apps/eridu_docs/src/pages/auth/callback.ts |
Astro: token exchange endpoint after IDP login |
apps/eridu_docs/src/pages/auth/logout.ts |
Astro: sign-out endpoint (clear docs cookie + sign out Better Auth session) |
apps/eridu_docs/src/config/env.ts |
Environment config (AUTH_URL, BYPASS_AUTH) |
apps/eridu_docs/docs/AUTH_DESIGN.md |
Full design document with architecture diagram |
Package Boundary
More from allenlin90/eridu-services
service-pattern-nestjs
Comprehensive NestJS service implementation patterns. This skill should be used when implementing Model Services, Orchestration Services, or business logic with NestJS decorators.
8erify-authorization
Patterns for implementing authorization in erify_api with current StudioMembership + AdminGuard behavior, plus planned RBAC references
6data-validation
Provides comprehensive guidance for input validation, data serialization, and ID management in backend APIs. This skill should be used when designing validation schemas, transforming request/response data, mapping database IDs to external identifiers, and ensuring type safety across API boundaries.
6code-quality
Provides general code quality and best practices guidance applicable across languages and frameworks. Focuses on linting, testing, and type safety.
6repository-pattern-nestjs
Comprehensive Prisma repository implementation patterns for NestJS. This skill should be used when implementing repositories that extend BaseRepository or use Prisma delegates.
6task-template-builder
Provides guidelines for the Task Template Builder architecture, including Schema alignment, Draft storage, Drag-and-Drop, and Validation logic.
6