adaptationio/railway-auth
.claude/skills/railway-auth/SKILL.md
Railway authentication and token management. Use when logging into Railway, creating API tokens, setting up CI/CD authentication, or verifying Railway credentials.
$ install --global
skillsauthnpx skillsauth add adaptationio/skrillz railway-authInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Mar 31, 2026, 1:18 AM55.5s4 files scanned
SKILL.md
- name:
- railway-auth
- description:
- Railway authentication and token management. Use when logging into Railway, creating API tokens, setting up CI/CD authentication, or verifying Railway credentials.
Railway Authentication
Manage Railway authentication for CLI, API, and CI/CD workflows.
Overview
Railway supports multiple authentication methods for different use cases:
- Interactive Login: Browser-based OAuth for developers
- Browserless Login: Device code flow for SSH/Codespaces/headless
- API Tokens: Programmatic access for automation and CI/CD
When to Use
- Setting up Railway CLI for first time
- Authenticating in CI/CD pipelines
- Creating API tokens for automation
- Verifying authentication status
- Troubleshooting auth issues
Operations
Operation 1: Interactive Login
Standard browser-based authentication for local development.
Command:
railway login
Process:
- Opens browser to Railway OAuth page
- Authenticate with GitHub/email
- CLI receives authentication token
- Token stored in
~/.railway/config.json
Verification:
railway whoami
# Output: Logged in as: [email protected]
Use When: Local development, first-time setup
Operation 2: Browserless Login
Device code authentication for headless environments.
Command:
railway login --browserless
Process:
- CLI generates device code
- Display URL and code to user
- User visits URL on any device
- Enters code to authenticate
- CLI receives token after approval
Example Output:
To authenticate, visit: https://railway.app/cli-auth
Enter code: ABCD-1234
Waiting for authentication...
Use When:
- SSH sessions
- GitHub Codespaces
- Remote servers
- Docker containers
- Any environment without browser
Operation 3: Token-Based Authentication
Use API tokens for programmatic access and CI/CD.
Token Types:
| Type | Scope | Header | Use Case |
|------|-------|--------|----------|
| Account Token | All personal + team resources | Authorization: Bearer <TOKEN> | Full API access |
| Team Token | Team resources only | Team-Access-Token: <TOKEN> | Team automation |
| Project Token | Single environment | Project-Access-Token: <TOKEN> | Scoped deployments |
Creating Tokens:
- Visit https://railway.com/account/tokens
- Click "Create Token"
- Select token type and scope
- Copy token (shown only once!)
CLI Authentication with Token:
# For Project Tokens
export RAILWAY_TOKEN=<your-project-token>
# For Account/Team Tokens
export RAILWAY_API_TOKEN=<your-account-or-team-token>
# Verify
railway whoami
API Authentication:
# Account Token
curl -H "Authorization: Bearer $RAILWAY_API_TOKEN" \
-H "Content-Type: application/json" \
-d '{"query":"query { me { name email } }"}' \
https://backboard.railway.com/graphql/v2
# Project Token
curl -H "Project-Access-Token: $RAILWAY_TOKEN" \
-H "Content-Type: application/json" \
-d '{"query":"query { projectToken { projectId } }"}' \
https://backboard.railway.com/graphql/v2
Use When: CI/CD pipelines, automation scripts, API integrations
Operation 4: Verify Authentication
Check current authentication status.
Commands:
# Check who you're logged in as
railway whoami
# Check current project context
railway status
# Verify token via API
curl -s -H "Authorization: Bearer $RAILWAY_API_TOKEN" \
-H "Content-Type: application/json" \
-d '{"query":"query { me { name } }"}' \
https://backboard.railway.com/graphql/v2
Troubleshooting Auth Issues:
| Issue | Solution |
|-------|----------|
| "Not logged in" | Run railway login |
| "Not Authorized" (API) | Check token type matches header |
| Token expired | Create new token at railway.com/account/tokens |
| Wrong project context | Run railway link to re-link project |
CI/CD Integration
GitHub Actions
name: Deploy to Railway
on:
push:
branches: [main]
jobs:
deploy:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Install Railway CLI
run: npm install -g @railway/cli
- name: Deploy
env:
RAILWAY_TOKEN: ${{ secrets.RAILWAY_TOKEN }}
run: railway up --ci
Setup:
- Create Project Token in Railway dashboard
- Add as
RAILWAY_TOKENsecret in GitHub repo settings - Use
--ciflag for non-interactive deployment
GitLab CI
deploy:
stage: deploy
image: node:20
script:
- npm install -g @railway/cli
- railway up --ci
variables:
RAILWAY_TOKEN: $RAILWAY_PROJECT_TOKEN
only:
- main
Token Security Best Practices
- Never commit tokens - Use environment variables or secrets managers
- Use minimal scope - Project tokens for single-project CI/CD
- Rotate regularly - Delete and recreate tokens periodically
- Monitor usage - Check Railway dashboard for unusual activity
- Separate environments - Different tokens for dev/staging/prod
Quick Reference
| Task | Command |
|------|---------|
| Login (browser) | railway login |
| Login (headless) | railway login --browserless |
| Check auth | railway whoami |
| Logout | railway logout |
| Set token (CLI) | export RAILWAY_TOKEN=xxx |
| API auth header | Authorization: Bearer <token> |
References
- token-types.md - Detailed token comparison and usage
- token-troubleshooting.md - Common auth issues and fixes
Related Skills
- railway-api - GraphQL API automation
- railway-automation - CI/CD patterns
- railway-project-management - Project setup
Related Skills
adaptationio/ttyd-remote-terminal-wsl2
development
VerifiedTrustedCommunity
Setup secure web-based terminal access to WSL2 from mobile/tablet via ttyd + ngrok/Cloudflare/Tailscale. One-command install, start, stop, status. Use when you need remote terminal access, web terminal, browser-based shell, or mobile access to WSL2 environment.
6SKILL.mdUpdated Mar 28, 2026
adaptationio/tri-ai-collaboration
development
VerifiedTrustedCommunity
Complete development workflows where Claude writes the code while Gemini and Codex provide research, planning, reviews, and different perspectives. Claude remains the main developer. Use for complex projects requiring expert planning and multi-perspective reviews.
6SKILL.mdUpdated Mar 28, 2026
adaptationio/todo-management
development
VerifiedTrustedCommunity
Systematic progress tracking for skill development. Manages task states (pending/in_progress/completed), updates in real-time, reports progress, identifies blockers, and maintains momentum. Use when tracking skill development, coordinating work, or reporting progress.
6SKILL.mdUpdated Mar 28, 2026
adaptationio/testing-workflow
testing
VerifiedTrustedCommunity
Comprehensive testing workflow orchestrating functional testing, example validation, integration testing, and usability assessment. Sequential workflow for complete skill testing from examples through scenarios to integration validation. Use when conducting thorough testing, pre-deployment validation, ensuring skill functionality, or comprehensive quality checks.
6SKILL.mdUpdated Mar 28, 2026