Labsco
clerk logo

clerk-setup

β˜… 54

by clerk Β· part of clerk/skills

Framework-agnostic Clerk authentication setup following official quickstart guides. Detects framework from package.json dependencies and fetches the corresponding Clerk quickstart documentation (supports Next.js, Remix, Astro, Nuxt, React Router, TanStack Start, React SPA, Vue, Express, Fastify, Expo, Chrome Extension, Android, iOS, and Vanilla JavaScript) Handles environment variable setup, provider configuration, and middleware/proxy file creation with version-specific guidance for Core 2...

πŸ”₯πŸ”₯πŸ”₯πŸ”₯βœ“ VerifiedFreeQuick setup
🧩 One of 7 skills in the clerk/skills package β€” works on its own, and pairs well with its siblings.

This is the playbook your agent receives when the skill activates β€” you don't need to read it to use the skill, but it's here to audit before installing.


name: clerk-setup description: Add Clerk authentication to any project by following the official quickstart guides. license: MIT allowed-tools: WebFetch compatibility: Requires NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY and CLERK_SECRET_KEY (or framework-specific equivalents like VITE_CLERK_PUBLISHABLE_KEY for Vite-based apps). Keys can be auto-generated via Keyless on first SDK initialization, or pulled from the Clerk Dashboard. Requires Node.js 20.9.0 or higher. metadata: author: clerk version: 2.3.0

Adding Clerk

Version: Check package.json for the SDK version β€” see clerk skill for the version table. Core 2 differences are noted inline with > **Core 2 ONLY (skip if current SDK):** callouts.

This skill sets up Clerk for authentication by following the official quickstart documentation. For agents, the clerk CLI handles most of this end to end β€” see the next section.

Agent-first: Provision via CLI

The clerk CLI replaces most Dashboard clicks. Three scenarios cover almost everything:

Scenario A β€” New project, new Clerk app

clerk init --framework <next|react|vue|nuxt|astro|react-router|tanstack-react-start|expressjs|fastify|expo> -y

clerk init creates the Clerk app via PLAPI, links the project, writes the framework-specific publishable + secret keys to the right env file (e.g. .env.local for Next.js, .env for Vite-based projects), and installs the SDK package.

Scenario B β€” Existing project, existing Clerk app

clerk auth login                      # one-time OAuth (skip if already logged in)
clerk link                            # autolinks if a CLERK_PUBLISHABLE_KEY is in your .env
clerk link --app app_xxx              # explicit form, required in agent mode
clerk env pull                        # writes the framework-detected env vars

Scenario C β€” Existing project, new Clerk app

clerk auth login
clerk apps create "My App" --json     # returns the new app_id
clerk link --app app_xxx
clerk env pull

Daily ops

clerk env pull                        # refresh keys (uses linked profile)
clerk env pull --instance prod        # production keys
clerk doctor --json                   # framework integration health check

Rotate the secret key (replaces Dashboard rotation)

PLAPI exposes secret-key rotation directly. Use raw clerk api until the friendly wrapper ships:

clerk api --platform POST /v1/platform/applications/<app_id>/rotate_secret_keys \
  -d '{"delay_old_secrets_expiration_hours": 24, "reason": "scheduled rotation"}'

delay_old_secrets_expiration_hours keeps the old key valid for the grace period so deploys can roll forward without downtime.

Notes for agents

  • clerk link (no flags) only autolinks when a CLERK_PUBLISHABLE_KEY is already in .env / .env.local. Without it, agent mode errors out: "Cannot select an application in agent mode." When that happens, run clerk apps list --json, and ask the user which app_id to link rather than guessing.
  • Pass --json on apps list/create, users create, and doctor for parseable output.
  • The CLI auto-detects framework env var names (VITE_CLERK_PUBLISHABLE_KEY for Vite, NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY for Next.js, etc.) and target file (.env.development.local > .env.local > .env).

Quick Reference (Dashboard fallback)

If the CLI isn't an option (sandboxed environments, docs walkthroughs), here's the manual Dashboard path:

StepAction
1. Detect frameworkCheck package.json dependencies
2. Fetch quickstartUse WebFetch on the appropriate docs URL
3. Follow instructionsExecute steps; create proxy.ts (Next.js <=15: middleware.ts)
4. Get API keysFrom dashboard.clerk.com

If the project has components.json (shadcn/ui), apply the shadcn theme after setup. See clerk-custom-ui skill β†’ shadcn Theme.

Framework Detection

Check package.json to identify the framework:

DependencyFrameworkQuickstart URL
nextNext.jshttps://clerk.com/docs/nextjs/getting-started/quickstart
@remix-run/reactRemix (deprecated)Migrate to React Router v7 β€” use the React Router quickstart below
react-routerReact Router (v7+)https://clerk.com/docs/react-router/getting-started/quickstart
astroAstrohttps://clerk.com/docs/astro/getting-started/quickstart
nuxtNuxthttps://clerk.com/docs/nuxt/getting-started/quickstart
@tanstack/react-startTanStack Starthttps://clerk.com/docs/tanstack-react-start/getting-started/quickstart
react (no framework)React SPAhttps://clerk.com/docs/react/getting-started/quickstart
vueVuehttps://clerk.com/docs/vue/getting-started/quickstart
expressExpresshttps://clerk.com/docs/expressjs/getting-started/quickstart
fastifyFastifyhttps://clerk.com/docs/fastify/getting-started/quickstart
expoExpohttps://clerk.com/docs/expo/getting-started/quickstart

For other platforms:

  • Chrome Extension: https://clerk.com/docs/chrome-extension/getting-started/quickstart
  • Android: https://clerk.com/docs/android/getting-started/quickstart
  • iOS: https://clerk.com/docs/ios/getting-started/quickstart
  • Vanilla JavaScript: https://clerk.com/docs/js-frontend/getting-started/quickstart

Decision Tree

User Request: "Add Clerk" / "Add authentication"
    β”‚
    β”œβ”€ Read package.json
    β”‚
    β”œβ”€ Existing auth detected?
    β”‚   β”œβ”€ YES β†’ Audit β†’ Migration plan
    β”‚   └─ NO β†’ Fresh install
    β”‚
    β”œβ”€ Identify framework β†’ WebFetch quickstart β†’ Follow instructions
    β”‚   └─ Next.js? β†’ Create proxy.ts (Next.js <=15: middleware.ts)
    β”‚
    └─ components.json exists? β†’ YES β†’ Apply shadcn theme (see clerk-custom-ui)

Migrating from Another Auth Provider

If the project already has authentication, create a migration plan before replacing it.

Detect Existing Auth

Check package.json for existing auth libraries:

  • next-auth / @auth/core β†’ NextAuth/Auth.js
  • @supabase/supabase-js β†’ Supabase Auth
  • firebase / firebase-admin β†’ Firebase Auth
  • @aws-amplify/auth β†’ AWS Cognito
  • auth0 / @auth0/nextjs-auth0 β†’ Auth0
  • passport β†’ Passport.js
  • Custom JWT/session implementation

Migration Process

  1. Audit current auth - Identify all auth touchpoints:

    • Sign-in/sign-up pages
    • Session/token handling
    • Protected routes and middleware
    • User data storage (database tables, external IDs)
    • OAuth providers configured
  2. Create migration plan - Consider:

    • User data export - Export users and import via Clerk's Backend API
    • Password hashes - Clerk can upgrade hashes to Bcrypt transparently
    • External IDs - Store legacy user IDs as external_id in Clerk
    • Session handling - Existing sessions will terminate on switch
  3. Choose migration strategy:

    • Big bang - Switch all users at once (simpler, requires maintenance window)
    • Trickle migration - Run both systems temporarily (lower risk, higher complexity)

Migration Reference

SDK Notes

Package Names

PackageInstall
Next.js@clerk/nextjs
React@clerk/react
Expo@clerk/expo
React Router@clerk/react-router
TanStack Start@clerk/tanstack-react-start

Core 2 ONLY (skip if current SDK): React and Expo packages have different names: @clerk/clerk-react and @clerk/clerk-expo (with clerk- prefix).

ClerkProvider Placement (Next.js)

ClerkProvider must be placed inside <body>, not wrapping <html>:

// root layout.tsx
export default function RootLayout({ children }) {
  return (
    <html>
      <body>
        <ClerkProvider>{children}</ClerkProvider>
      </body>
    </html>
  )
}

Core 2 ONLY (skip if current SDK): ClerkProvider can wrap <html> directly.

Dynamic Rendering (Next.js)

For dynamic rendering with auth data, use the dynamic prop:

<ClerkProvider dynamic>{children}</ClerkProvider>

Node.js Requirement

Requires Node.js 20.9.0 or higher.

Core 2 ONLY (skip if current SDK): Minimum Node.js 18.17.0.

Themes Package

Themes are installed from @clerk/ui:

npm install @clerk/ui

Core 2 ONLY (skip if current SDK): Themes are from @clerk/themes instead of @clerk/ui.

shadcn Theme

If the project uses shadcn/ui (check for components.json in the project root), apply the shadcn theme so Clerk components match the app's design system:

npm install @clerk/ui
import { shadcn } from '@clerk/ui/themes'

<ClerkProvider appearance={{ theme: shadcn }}>{children}</ClerkProvider>

Also import the shadcn CSS in your global styles:

@import 'tailwindcss';
@import '@clerk/ui/themes/shadcn.css';

Core 2 ONLY (skip if current SDK): Import from @clerk/themes and @clerk/themes/shadcn.css instead.

Common Pitfalls

Run clerk doctor first. It checks framework integration, env vars, middleware presence, and SDK install status. Fixes a lot of these in one shot.

IssueSolution
Missing await on auth()In Next.js 15+, auth() is async: const { userId } = await auth()
Exposing CLERK_SECRET_KEYNever use the secret key in client code; only NEXT_PUBLIC_* keys are safe
Missing middleware matcherInclude API routes: `matcher: ['/((?!.\..
ClerkProvider placementMust be inside <body> in root layout (Core 2: could wrap <html>)
Auth routes not publicAllow /sign-in, /sign-up in middleware config
Landing page requires authTo keep "/" public, exclude it: `matcher: ['/((?!.\..
Wrong import pathServer code uses @clerk/nextjs/server, client uses @clerk/nextjs
Wrong package nameUse @clerk/react not @clerk/clerk-react (Core 2 naming)

See Also

  • clerk-custom-ui - Custom sign-in/up components
  • clerk-nextjs-patterns - Advanced Next.js patterns
  • clerk-react-patterns - React SPA patterns
  • clerk-react-router-patterns - React Router patterns
  • clerk-vue-patterns - Vue patterns
  • clerk-nuxt-patterns - Nuxt patterns
  • clerk-astro-patterns - Astro patterns
  • clerk-tanstack-patterns - TanStack Start patterns
  • clerk-expo-patterns - Expo patterns
  • clerk-chrome-extension-patterns - Chrome Extension patterns
  • clerk-orgs - B2B multi-tenant organizations
  • clerk-webhooks - Webhook β†’ database sync
  • clerk-testing - E2E testing setup
  • clerk-swift - Native iOS auth
  • clerk-android - Native Android auth
  • clerk-backend-api - Backend REST API explorer

Documentation