// Add an authentication provider to an Ivy project. Supports Basic Auth (JWT), Auth0, Supabase, Clerk, GitHub OAuth, Authelia, and Microsoft Entra ID. Use when the user wants to add login, authentication, or identity to their project.
[HINT] Download the complete skill directory including SKILL.md and all related files
| name | ivy-create-auth-connection |
| description | Add an authentication provider to an Ivy project. Supports Basic Auth (JWT), Auth0, Supabase, Clerk, GitHub OAuth, Authelia, and Microsoft Entra ID. Use when the user wants to add login, authentication, or identity to their project. |
| allowed-tools | Bash(dotnet:*) Bash(ivy:*) Read Write Edit Glob Grep |
| effort | medium |
| argument-hint | [auth provider name, e.g. Auth0, Supabase, Clerk] |
Add an authentication provider to an existing Ivy project. This skill guides you through selecting a provider, collecting the required credentials, and configuring the project.
If the file .ivy/learnings/ivy-create-auth-connection.md exists in the project directory, read it first and apply any lessons learned from previous runs of this skill.
Read before implementing:
.csproj file and Program.cs in the working directory. If this is not an Ivy project, tell the user and stop.| Provider | Description | Required Secrets |
|---|---|---|
| Basic | Simple username/password auth with JWT tokens. Good for internal tools or prototyping. | Users, HashSecret, JwtSecret, JwtIssuer, JwtAudience |
| Auth0 | Enterprise-grade identity platform with social logins, MFA, and SSO. | Domain, ClientId, ClientSecret, Audience, Namespace |
| Supabase | Open-source Firebase alternative with built-in auth. Supports email/password, social logins, and SSO via WorkOS. | Url, ApiKey, LegacyJwtSecret |
| Clerk | Modern authentication with prebuilt UI components and session management. | PublishableKey, SecretKey |
| GitHub | GitHub OAuth for developer-facing applications. | ClientId, ClientSecret, RedirectUri |
| Authelia | Self-hosted single sign-on and 2FA server. | Url |
| Microsoft Entra | Azure Active Directory / Microsoft Entra ID for enterprise SSO. | TenantId, ClientId, ClientSecret |
your-tenant.auth0.com)https://your-api.example.com)https://your-project.supabase.co)pk_)sk_)https://localhost:5001/callback)https://auth.example.com)The auth provider setup involves:
Program.cs with server.UseAuth<[ProviderClassName]>()Initialize user secrets for the project:
dotnet user-secrets init
dotnet user-secrets set. For example:dotnet user-secrets set "Auth0:Domain" "your-tenant.auth0.com"
dotnet user-secrets set "Auth0:ClientId" "your-client-id"
ivy docs or ivy ask to look up the specific auth provider documentation if you need details about the NuGet package name, the provider class name, or the Program.cs registration pattern for the chosen provider.Run dotnet build to verify everything compiles. Fix any errors.
If the project is in a git repository, create a commit with a descriptive message, for example: "Added [ProviderDisplayName] authentication."
Tell the user the auth provider is ready and summarize what was configured:
If the setup fails:
Diagnose the root cause (invalid credentials, auth provider not configured, network issues):
After fixing the underlying issue, either retry using the /ivy-create-auth-connection skill from scratch, or manually create the auth provider class and register it in Program.cs.
Use ivy ask "How do I configure [ProviderName] authentication?" for provider-specific guidance.
After completing the task:
.ivy/learnings/ivy-create-auth-connection.md (create the file and .ivy/learnings/ directory if they don't exist). Each entry should note: the date, what went wrong, why, and what to do differently next time.