Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

flsteven87/recur-portal

Name: recur-portal
Author: flsteven87

.agents/skills/recur-portal/SKILL.md

npx skillsauth add flsteven87/three_kingdoms_strategy recur-portal

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Recur Customer Portal Integration

You are helping implement Recur's Customer Portal, which allows subscribers to self-manage their subscriptions without contacting support.

This project uses FastAPI (Python) + React (TypeScript). All examples match this stack.

What is Customer Portal?

Customer Portal is a Recur-hosted page where customers can:

View active subscriptions and billing history
Update payment methods
Cancel or reactivate subscriptions
Switch between plans (upgrade/downgrade)
Pause/resume subscriptions

When to Use

| Scenario | Solution | |----------|----------| | "Add account management page" | Create portal session and redirect | | "Let users update their card" | Portal handles payment method updates | | "Users need to cancel subscription" | Portal provides self-service cancellation | | "Show billing history" | Portal displays invoices and payments |

FastAPI: Create Portal Session

Portal sessions must be created server-side (requires Secret Key).

Portal Endpoint

# src/api/v1/endpoints/portal.py
import httpx
import logging

from fastapi import APIRouter, Depends, HTTPException

from src.core.auth import get_current_user
from src.core.config import Settings, get_settings
from src.models.user import User

logger = logging.getLogger(__name__)
router = APIRouter()


@router.post("/portal/session")
async def create_portal_session(
    current_user: User = Depends(get_current_user),
    settings: Settings = Depends(get_settings),
) -> dict:
    """Create a Recur Customer Portal session for the authenticated user."""
    async with httpx.AsyncClient() as client:
        response = await client.post(
            "https://api.recur.tw/v1/portal/sessions",
            headers={
                "X-Recur-Secret-Key": settings.recur_secret_key,
                "Content-Type": "application/json",
            },
            json={
                "email": current_user.email,
                "returnUrl": f"{settings.frontend_url}/account",
            },
        )

        if response.status_code == 404:
            raise HTTPException(
                status_code=404,
                detail="找不到訂閱資料，請先訂閱方案",
            )

        response.raise_for_status()
        data = response.json()

    return {"url": data["url"]}

Customer Identification

You can identify customers by (in priority order):

# By Recur customer ID (highest priority)
json={"customer": "cus_xxx", "returnUrl": return_url}

# By your system's user ID
json={"externalId": user.id, "returnUrl": return_url}

# By email (lowest priority)
json={"email": user.email, "returnUrl": return_url}

React: Portal Button Component

import { useState } from 'react'
import { Button } from '@/components/ui/button'
import { apiClient } from '@/lib/api-client'

function PortalButton() {
  const [isLoading, setIsLoading] = useState(false)

  const handleClick = async () => {
    setIsLoading(true)
    try {
      const { url } = await apiClient.post<{ url: string }>('/portal/session')
      window.location.href = url
    } catch (error) {
      console.error('Failed to open portal:', error)
      // Show error toast
    } finally {
      setIsLoading(false)
    }
  }

  return (
    <Button onClick={handleClick} disabled={isLoading} variant="outline">
      {isLoading ? '載入中...' : '管理訂閱'}
    </Button>
  )
}

Portal Session Response

{
    "id": "portal_sess_xxx",
    "object": "portal.session",
    "url": "https://billing.recur.tw/portal/...",  # Redirect customer here
    "customer": "cus_xxx",
    "returnUrl": "https://tktmanager.com/account",
    "status": "active",           # "active" or "expired"
    "expiresAt": "2026-03-26T13:00:00Z",  # Sessions last 1 hour
    "accessedAt": None,
    "createdAt": "2026-03-26T12:00:00Z",
}

Common Patterns

Account Page with Portal Link

import { useAuth } from '@/contexts/AuthContext'
import { useFeature } from '@/hooks/useFeature'

function AccountPage() {
  const { user } = useAuth()
  const { enabled: hasSubscription } = useFeature('pro-plan')

  return (
    <div className="space-y-6">
      <h1 className="text-2xl font-bold">帳戶設定</h1>
      <p>Email: {user?.email}</p>

      <section className="space-y-2">
        <h2 className="text-lg font-semibold">訂閱管理</h2>
        {hasSubscription ? (
          <>
            <p className="text-muted-foreground">
              管理您的訂閱、更新付款方式、查看帳單記錄
            </p>
            <PortalButton />
          </>
        ) : (
          <>
            <p className="text-muted-foreground">您目前沒有訂閱</p>
            <Button asChild>
              <Link to="/pricing">查看方案</Link>
            </Button>
          </>
        )}
      </section>
    </div>
  )
}

Conditional Portal Access

function SubscriptionSection() {
  const { enabled, entitlement } = useFeature('pro-plan')

  if (!enabled) {
    return (
      <div>
        <p>您目前沒有訂閱</p>
        <Link to="/pricing">查看方案</Link>
      </div>
    )
  }

  return (
    <div>
      <p>
        目前方案：Pro
        {entitlement?.status === 'canceled' && ' (已取消，到期前仍可使用)'}
        {entitlement?.status === 'past_due' && ' (付款失敗，請更新付款方式)'}
      </p>
      <PortalButton />
    </div>
  )
}

Portal Configuration

Configure portal behavior in Recur Dashboard → Settings → Customer Portal:

Default Return URL: Where to redirect after leaving portal
Allowed Actions: Enable/disable cancel, update payment, switch plan
Branding: Custom logo and colors

Security Notes

Server-side only — Portal sessions require Secret Key (sk_*), never expose on frontend
Short-lived — Sessions expire in 1 hour
One-time use — Each session URL should only be used once
Authenticate first — Always verify the user's identity before creating a portal session

Error Handling

try:
    response = await client.post(
        "https://api.recur.tw/v1/portal/sessions",
        headers={"X-Recur-Secret-Key": settings.recur_secret_key, ...},
        json={"email": user.email, "returnUrl": return_url},
    )
    response.raise_for_status()
except httpx.HTTPStatusError as e:
    if e.response.status_code == 404:
        # Customer doesn't exist in Recur — they haven't subscribed yet
        raise HTTPException(status_code=404, detail="找不到訂閱資料") from e
    raise HTTPException(status_code=502, detail="無法連接付款服務") from e

Related Skills

/recur-quickstart - Initial SDK setup
/recur-checkout - Implement purchase flows
/recur-entitlements - Check subscription access
/recur-webhooks - Receive payment events (FastAPI handler)

flsteven87/recur-portal

.agents/skills/recur-portal/SKILL.md

Implement Customer Portal for subscription self-service. Use when building account pages, letting customers manage subscriptions, update payment methods, view billing history, or when user mentions "customer portal", "帳戶管理", "訂閱管理", "更新付款方式", "self-service".

development

Updated Apr 16, 2026

$ install --global

skillsauth

npx skillsauth add flsteven87/three_kingdoms_strategy recur-portal

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Apr 16, 2026, 11:05 PM4.3s1 file scanned

SKILL.md

name:: recur-portal
description:: Implement Customer Portal for subscription self-service. Use when building account pages, letting customers manage subscriptions, update payment methods, view billing history, or when user mentions "customer portal", "帳戶管理", "訂閱管理", "更新付款方式", "self-service".
license:: Elastic-2.0
author:: recur
version:: 0.1.0
stack:: FastAPI + React

Recur Customer Portal Integration

You are helping implement Recur's Customer Portal, which allows subscribers to self-manage their subscriptions without contacting support.

This project uses FastAPI (Python) + React (TypeScript). All examples match this stack.

What is Customer Portal?

Customer Portal is a Recur-hosted page where customers can:

View active subscriptions and billing history
Update payment methods
Cancel or reactivate subscriptions
Switch between plans (upgrade/downgrade)
Pause/resume subscriptions

When to Use

FastAPI: Create Portal Session

Portal sessions must be created server-side (requires Secret Key).

Portal Endpoint

# src/api/v1/endpoints/portal.py
import httpx
import logging

from fastapi import APIRouter, Depends, HTTPException

from src.core.auth import get_current_user
from src.core.config import Settings, get_settings
from src.models.user import User

logger = logging.getLogger(__name__)
router = APIRouter()


@router.post("/portal/session")
async def create_portal_session(
    current_user: User = Depends(get_current_user),
    settings: Settings = Depends(get_settings),
) -> dict:
    """Create a Recur Customer Portal session for the authenticated user."""
    async with httpx.AsyncClient() as client:
        response = await client.post(
            "https://api.recur.tw/v1/portal/sessions",
            headers={
                "X-Recur-Secret-Key": settings.recur_secret_key,
                "Content-Type": "application/json",
            },
            json={
                "email": current_user.email,
                "returnUrl": f"{settings.frontend_url}/account",
            },
        )

        if response.status_code == 404:
            raise HTTPException(
                status_code=404,
                detail="找不到訂閱資料，請先訂閱方案",
            )

        response.raise_for_status()
        data = response.json()

    return {"url": data["url"]}

Customer Identification

You can identify customers by (in priority order):

# By Recur customer ID (highest priority)
json={"customer": "cus_xxx", "returnUrl": return_url}

# By your system's user ID
json={"externalId": user.id, "returnUrl": return_url}

# By email (lowest priority)
json={"email": user.email, "returnUrl": return_url}

React: Portal Button Component

import { useState } from 'react'
import { Button } from '@/components/ui/button'
import { apiClient } from '@/lib/api-client'

function PortalButton() {
  const [isLoading, setIsLoading] = useState(false)

  const handleClick = async () => {
    setIsLoading(true)
    try {
      const { url } = await apiClient.post<{ url: string }>('/portal/session')
      window.location.href = url
    } catch (error) {
      console.error('Failed to open portal:', error)
      // Show error toast
    } finally {
      setIsLoading(false)
    }
  }

  return (
    <Button onClick={handleClick} disabled={isLoading} variant="outline">
      {isLoading ? '載入中...' : '管理訂閱'}
    </Button>
  )
}

Portal Session Response

{
    "id": "portal_sess_xxx",
    "object": "portal.session",
    "url": "https://billing.recur.tw/portal/...",  # Redirect customer here
    "customer": "cus_xxx",
    "returnUrl": "https://tktmanager.com/account",
    "status": "active",           # "active" or "expired"
    "expiresAt": "2026-03-26T13:00:00Z",  # Sessions last 1 hour
    "accessedAt": None,
    "createdAt": "2026-03-26T12:00:00Z",
}

Common Patterns

Account Page with Portal Link

import { useAuth } from '@/contexts/AuthContext'
import { useFeature } from '@/hooks/useFeature'

function AccountPage() {
  const { user } = useAuth()
  const { enabled: hasSubscription } = useFeature('pro-plan')

  return (
    <div className="space-y-6">
      <h1 className="text-2xl font-bold">帳戶設定</h1>
      <p>Email: {user?.email}</p>

      <section className="space-y-2">
        <h2 className="text-lg font-semibold">訂閱管理</h2>
        {hasSubscription ? (
          <>
            <p className="text-muted-foreground">
              管理您的訂閱、更新付款方式、查看帳單記錄
            </p>
            <PortalButton />
          </>
        ) : (
          <>
            <p className="text-muted-foreground">您目前沒有訂閱</p>
            <Button asChild>
              <Link to="/pricing">查看方案</Link>
            </Button>
          </>
        )}
      </section>
    </div>
  )
}

Conditional Portal Access

function SubscriptionSection() {
  const { enabled, entitlement } = useFeature('pro-plan')

  if (!enabled) {
    return (
      <div>
        <p>您目前沒有訂閱</p>
        <Link to="/pricing">查看方案</Link>
      </div>
    )
  }

  return (
    <div>
      <p>
        目前方案：Pro
        {entitlement?.status === 'canceled' && ' (已取消，到期前仍可使用)'}
        {entitlement?.status === 'past_due' && ' (付款失敗，請更新付款方式)'}
      </p>
      <PortalButton />
    </div>
  )
}

Portal Configuration

Configure portal behavior in Recur Dashboard → Settings → Customer Portal:

Default Return URL: Where to redirect after leaving portal
Allowed Actions: Enable/disable cancel, update payment, switch plan
Branding: Custom logo and colors

Security Notes

Server-side only — Portal sessions require Secret Key (sk_*), never expose on frontend
Short-lived — Sessions expire in 1 hour
One-time use — Each session URL should only be used once
Authenticate first — Always verify the user's identity before creating a portal session

Error Handling

try:
    response = await client.post(
        "https://api.recur.tw/v1/portal/sessions",
        headers={"X-Recur-Secret-Key": settings.recur_secret_key, ...},
        json={"email": user.email, "returnUrl": return_url},
    )
    response.raise_for_status()
except httpx.HTTPStatusError as e:
    if e.response.status_code == 404:
        # Customer doesn't exist in Recur — they haven't subscribed yet
        raise HTTPException(status_code=404, detail="找不到訂閱資料") from e
    raise HTTPException(status_code=502, detail="無法連接付款服務") from e

Related Skills

/recur-quickstart - Initial SDK setup
/recur-checkout - Implement purchase flows
/recur-entitlements - Check subscription access
/recur-webhooks - Receive payment events (FastAPI handler)

Related Skills

flsteven87/recur-webhooks

development

VerifiedTrustedCommunity

Set up and handle Recur webhook events for payment notifications. Use when implementing webhook handlers, verifying signatures, handling subscription events, or when user mentions "webhook", "付款通知", "訂閱事件", "payment notification".

SKILL.mdUpdated Apr 16, 2026

flsteven87/recur-webhooks

flsteven87/recur-quickstart

development

VerifiedTrustedCommunity

Quick setup guide for Recur payment integration. Use when starting a new Recur integration, setting up API keys, installing the SDK, or when user mentions "integrate Recur", "setup Recur", "Recur 串接", "金流設定".

SKILL.mdUpdated Apr 16, 2026

flsteven87/recur-quickstart

flsteven87/recur-help

data-ai

VerifiedTrustedCommunity

List all available Recur skills and how to use them. Use when user asks "what can Recur do", "Recur skills", "Recur 有什麼功能", "help with Recur", "如何使用 Recur skills".

SKILL.mdUpdated Apr 16, 2026

flsteven87/recur-help

flsteven87/recur-entitlements

development

VerifiedTrustedCommunity

Implement access control and permission checking with Recur entitlements API. Use when building paywalls, checking subscription status, gating premium features, or when user mentions "paywall", "權限檢查", "entitlements", "access control", "premium features".

SKILL.mdUpdated Apr 16, 2026

flsteven87/recur-entitlements

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/flsteven87/three_kingdoms_strategy.git

# Copy into Claude Code skills folder (global)
cp -r three_kingdoms_strategy/.agents/skills/recur-portal ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

flsteven87/three_kingdoms_strategy

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT