firebase-auth-setupConfigures Firebase Authentication — providers, security rules, custom claims, and React auth hooks
Install via ClawdBot CLI:
clawdbot install guifav/firebase-auth-setupGrade Fair — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Calls external URL not in known-safe list
https://github.com/guifav/openclaw-skillsAudited Apr 16, 2026 · audit v1.0
Generated Mar 21, 2026
A subscription-based SaaS platform needs secure user authentication for managing accounts and accessing premium features. This skill configures Firebase Auth with Google and email/password providers, enabling role-based access via custom claims for different subscription tiers. It integrates with Supabase for user profile storage and RLS policies.
An online store requires authentication for customers to track orders, save payment methods, and manage profiles. This skill sets up Firebase Auth with email/password and social providers like Google, syncing user data to Supabase for order history and personalization. It includes middleware for protected checkout pages.
A healthcare application needs HIPAA-compliant authentication for patients to access medical records and schedule appointments. This skill configures Firebase Auth with strict security rules and custom claims for patient roles, ensuring data privacy through Supabase RLS. It supports multi-factor authentication for added security.
An online learning platform requires authentication for students and instructors to access courses and materials. This skill sets up Firebase Auth with Google and email providers, using custom claims to differentiate user roles (e.g., student vs. admin). It syncs with Supabase for course enrollment data and progress tracking.
A real estate agency needs authentication for agents to manage property listings and client interactions. This skill configures Firebase Auth with email/password and Apple sign-in for mobile users, integrating with Supabase for agent profiles and listing databases. It includes hooks for real-time auth state management.
Businesses charge users a recurring fee for access to premium features or content. This skill supports role-based access via Firebase custom claims to enforce subscription tiers, syncing user data to Supabase for billing and usage tracking. It enables secure authentication across web and mobile platforms.
Offers basic services for free with paid upgrades for advanced features. This skill configures Firebase Auth to handle both free and premium users, using custom claims to limit access. It integrates with Supabase to manage user profiles and upsell opportunities based on authentication data.
Targets businesses with custom authentication needs for employee or client portals. This skill sets up Firebase Auth with multiple providers and security rules, ensuring compliance and scalability. It syncs with Supabase for enterprise data management, supporting SSO and advanced user management features.
💬 Integration Tip
Ensure Firebase environment variables are set in .env.example before deployment, and manually configure providers in the Firebase Console to avoid runtime errors.
Scored Apr 18, 2026
Use when reviewing code for security vulnerabilities, implementing authentication flows, auditing OWASP Top 10, configuring CORS/CSP headers, handling secrets, input validation, SQL injection prevention, XSS protection, or any security-related code review.
gws CLI: Shared patterns for authentication, global flags, and output formatting.
Set up Gmail API access via gog CLI with manual OAuth flow. Use when setting up Gmail integration, renewing expired OAuth tokens, or troubleshooting Gmail authentication on headless servers.
Automate OAuth login flows with user confirmation via Telegram. Supports 7 providers: Google, Apple, Microsoft, GitHub, Discord, WeChat, QQ. Features: - Auto-detect available OAuth options on login pages - Ask user to choose via Telegram when multiple options exist - Confirm before authorizing - Handle account selection and consent pages automatically
Self-hosted auth for TypeScript/Cloudflare Workers with social auth, 2FA, passkeys, organizations, RBAC, and 15+ plugins. Requires Drizzle ORM or Kysely for D1 (no direct adapter). Self-hosted alternative to Clerk/Auth.js. Use when: self-hosting auth on D1, building OAuth provider, multi-tenant SaaS, or troubleshooting D1 adapter errors, session caching, rate limits, Expo crashes, additionalFields bugs.
OAuth token refresh management for Google APIs via gog CLI.