Name: Auth Session Doctor
Author: Jethro663

Trace authentication and session failures as a chain, not as isolated files. Distinguish transport, storage, gating, and authorization before changing code.

Quick Start

Emit: ROUTER_TRACE task=auth-session include=kernel optional_skipped=<unneeded slices> exclude=<unrelated slices> reason=<one line>
Load:
- root AGENTS.md
- failing client slice
- references/slices/security.md
- backend slice when the failing surface is frontend or mobile

Use This For

refresh token loop
login succeeds then protected route redirects
cookie present but access token missing
mobile secure storage drift
middleware, guard, or role mismatch after auth
401 after refresh, logout loop, session expires too early

Workflow

Trace authentication and session failures as a chain, not as isolated files. Distinguish transport, storage, gating, and authorization before changing code.

Quick Start

Emit: ROUTER_TRACE task=auth-session include=kernel optional_skipped=<unneeded slices> exclude=<unrelated slices> reason=<one line>
Load:
- root AGENTS.md
- failing client slice
- references/slices/security.md
- backend slice when the failing surface is frontend or mobile

Use This For

refresh token loop
login succeeds then protected route redirects
cookie present but access token missing
mobile secure storage drift
middleware, guard, or role mismatch after auth
401 after refresh, logout loop, session expires too early

Auth Session Doctor

Quick Start

Use This For

Workflow

Auth Session Doctor

Quick Start

Use This For

Workflow

Do Not Use This For

Do Not Forget

1password

Springboot Security

Security Review

Laravel Security

Security Review

Django Security