WorkOS Blog - Plushcap

Blog URL

workos.com/blog

Posts YTD

152 ↑ vs 119 last year

Avg Posts/Month

11.8 since 2022

Monthly Post Volume

Start year:

Post Details

Search:

Title	Author	Published	Words	HN Pts
2023 Product Updates Recap	Min Kim	2023-12-29	322	--
A guide to organization modeling	--	2024-02-16	1,308	--
Active Directory SCIM - Can you sync Active Directory users and groups …	--	2024-03-06	1,041	--
April Updates	Min Kim	2024-05-01	315	--
August Product Updates	Min Kim	2023-08-31	276	--
Auth0 pricing: how it works and compares to WorkOS	Min Kim	2024-01-30	595	--
Creating stronger passwords with AuthKit	Paul Asjes	2024-02-08	1,487	--
SCIM complexity explained: tackle group fragmentation	Ash Godfrey	2023-09-14	1,346	--
Decoding and Solving the Five Most Common SAML Errors	Jônatas Santos	2023-06-09	2,253	--
Directory Sync: how to provision users into your SaaS app from Microsoft …	--	2024-01-03	1,739	--
Every SCIM Attribute Explained	--	2023-12-20	1,663	--
February Updates	Min Kim	2024-02-29	209	--
Frictionless Enterprise Customer Onboarding Using the WorkOS Admin Portal	Mahmoud Abdelwahab	2022-02-28	696	--
Getting Started with the WorkOS Multi-Factor Authentication API	Mahmoud Abdelwahab	2022-04-04	935	--
How AI Companies Can Quickly Become Enterprise Ready	--	2023-12-11	1,668	--
How to use SCIM with SSO: A Developer's Guide	--	2023-10-31	1,398	--
IdP vs. SP: What is a service provider and an identity provider?	--	2023-11-06	1,066	--
Introducing AuthKit and User Management APIs	--	2023-11-28	600	--
Introducing Test SSO, an easier way to integrate SSO into your app	Amy Hanlon	2024-02-26	322	--
January Product Updates	Min Kim	2024-01-31	283	--
What are JSON Web Tokens (JWT) used for?	--	2024-01-23	2,072	--
Launch Week Day 1: Sessions	Paul Asjes	2024-03-18	652	--
Launch Week Day 2: Roles	Paul Asjes	2024-03-19	635	--
Launch Week Day 3: Stream WorkOS events to Datadog	Amy Hanlon	2024-03-20	420	--
Launch Week Day 4: Cloudflare Workers & Edge support	Paul Asjes	2024-03-21	474	--
Launch Week Day 5: Impersonation	Paul Asjes	2024-03-22	479	--
March Updates	Min Kim	2024-03-25	238	--
November Product Updates	Min Kim	2023-12-05	255	--
OAuth and JWT: How To Use Together + Best Practices	--	2023-12-18	1,983	--
October Product Updates	Min Kim	2023-10-31	217	--
OIDC vs SAML: Key Differences and Which to Use	--	2023-12-14	1,781	--
Passport.js to WorkOS Migration Guide	Michael Hadley	2023-10-25	708	--
SAML vs. LDAP: How to Choose The Right Protocol	--	2023-11-08	1,485	--
SAML vs OAuth: What's the Difference + Which should you use?	--	2024-03-07	1,735	--
What are SCIM Groups?	--	2024-01-03	1,613	--
5 examples of SCIM implementation	--	2024-01-24	1,722	--
What is a SCIM integration and should you build or buy it?	--	2023-11-16	1,481	--
SCIM Protocol Explained	--	2024-02-01	2,179	--
SCIM vs JIT: What’s the Difference	--	2024-02-09	1,946	--
SCIM vs. LDAP: Key Differences + Which To Use	--	2023-11-13	1,887	--
SCIM vs SAML: What Each Does and How To Use Them Together	--	2023-12-22	2,390	--
SCIM 2.0 vs SCIM 1.0 - What’s The Difference Between The Two …	--	2024-03-26	1,832	--
What is Seamless SSO by Microsoft? Everything You Need To Know	--	2023-12-05	1,377	--
September Product Updates	Min Kim	2023-09-29	221	--
WorkOS raises $80m in Series B financing, acquires Modulz	Michael Grinich	2022-06-01	852	6
SFTP Integrations vs. Native APIs for User Provisioning	Ameesha Isaac	2023-10-30	1,157	--
Special offer for all WorkOS customers: Perplexity Enterprise Pro	Michael Grinich	2024-04-30	215	--
Single Sign-On: Acronyms Demystified	Ash Godfrey	2023-06-01	1,672	--
SSO vs Federation: Key Differences + How They Work Together	--	2023-12-26	1,484	--
SSO vs SSL: Does SSO work over SSL?	--	2024-02-02	1,546	--
The Best 5 SSO Providers to power your SaaS app in 2024	--	2023-11-16	2,070	--
The Developer’s Guide to Directory Sync / SCIM	--	2024-01-25	1,902	1
The Developer's Guide to Domain Verification	--	2023-11-15	742	--
The Developer’s Guide to SSO	--	2023-10-27	1,943	3
The Developer's Guide to User Management	--	2024-03-25	3,729	--
The Founder's Guide to Developer-led Growth	Zeno Rocha	2022-11-23	1,129	4
The Guide to Becoming Enterprise Ready for SaaS Product Managers	--	2023-11-06	4,525	--
The Top 3 SCIM Providers for 2024	--	2024-01-19	1,848	--
Understanding CSRF Attacks	Ash Godfrey	2023-10-04	672	--
What is a SCIM Connector and Which One Should You Use?	--	2024-01-30	1,534	--
What is an Identity Provider?	--	2023-10-05	1,017	--
What Is Just-In-Time Provisioning and How Do You Use It?	--	2023-11-30	1,542	--
What is MFA, and why does your app need it?	--	2023-12-13	1,955	--
What is SAML and How Does it Work?	--	2023-12-20	1,695	--
What is SCIM Provisioning? Everything You Need to Know in 5 Minutes	--	2023-10-10	1,830	--
WorkOS 2022 Fall Release	Zeno Rocha	2022-12-08	431	--
WorkOS 2022 Spring Release Recap	Mahmoud Abdelwahab	2022-07-11	439	--
WorkOS 2022 Winter Release Recap	Mahmoud Abdelwahab	2022-03-23	678	--
WorkOS acquires Warrant	Michael Grinich	2024-04-23	275	9
WorkOS is Carbon Neutral	Michael Grinich	2022-05-13	416	--
The Guide to Becoming Enterprise Ready for SaaS Product Managers	--	2023-11-06	4,525	--
How AI Companies Can Quickly Become Enterprise Ready	--	2023-12-11	1,668	--
SCIM Security: Is the User Provisioning Protocol Secure?	--	2024-02-23	1,270	--
SCIM for ADFS	--	2024-02-21	1,022	--
May Updates	Min Kim	2024-05-31	332	--
ADFS vs SSO: Choosing the Right Authentication Solution	--	2024-04-22	1,373	--
Top 5 open source SSO solutions: pros, cons, and key tips	--	2024-05-01	2,246	--
What does deprovisioning mean? Top benefits and IdP strategies	--	2024-04-05	1,275	--
SAML vs SSO: Are They The Same Thing?	--	2024-02-02	1,518	--
LDAP vs Active Directory: Differences + What You Need to Know	--	2024-01-08	1,698	--
What is identity provisioning and how does it work?	--	2024-05-03	1,558	--
SaaS authentication: the best method(s) to use for your app	--	2024-05-14	2,292	--
What is Automated Provisioning?	--	2024-02-07	1,789	--
What is IDaaS and What is it Used For?	--	2024-05-28	1,612	--
LDAP vs. SSO explained: key differences and use cases	--	2024-03-07	1,299	--
You Need a SCIM Server — Here’s the Easiest Way to Create …	--	2024-05-30	1,641	--
4 Types of Access Control: What you Need to Know + How …	--	2024-04-24	2,854	--
OAuth vs OpenID: Understanding the Key Differences	--	2024-03-18	1,449	--
What is a Directory Service?	--	2024-01-12	1,338	--
SAML 2.0 vs SAML 1.1 - What’s the difference between the SAML …	--	2023-12-22	2,005	--
Migrating to Next.js App Router with zero downtime	Lucas Motta	2024-06-24	1,483	2
Auth in Middleware, Or How I Learned to Stop Worrying and Love …	Paul Asjes	2024-06-25	1,390	--
Why you should rethink your webhook strategy	Pantera Arzhintar	2024-06-26	2,261	--
From four to five 9s of uptime by migrating to Kubernetes	Matheus Lichtnow	2024-06-27	1,738	3
Lessons in safe identity linking	Alex Southgate	2024-06-28	1,669	--
June Updates	Min Kim	2024-07-01	318	--
The Developer's Guide to RBAC: Part I	--	2024-07-11	2,487	--
What is Multi-tenancy? Pros, Cons & Best Practices	--	2024-05-08	1,885	--
What is ReBAC? (Relationship-Based Access Control)	--	2024-05-10	1,566	--
What is Authentication (AuthN)?	--	2024-05-17	1,859	--
The Developer’s Guide to RBAC and IdPs: Part II	--	2024-07-18	1,910	--
Use cases and benefits of supporting SCIM	--	2024-07-16	2,029	--
Introducing Role-Based Access Control (RBAC) for AuthKit	Min Kim	2024-07-23	560	--
Unlocking the power of SCIM: streamlining enterprise user management	--	2024-07-16	2,034	--
Single-tenant vs multi-tenant: which is best for your SaaS app?	--	2024-06-18	1,792	--
SSO vs OAuth: Key Differences You Must Know	--	2024-06-18	1,320	--
The 3 best alternatives to SAML SSO	--	2024-06-18	1,475	--
Implementation challenges of a homegrown SCIM solution	--	2024-07-30	2,047	--
July Updates	Min Kim	2024-08-01	222	--
Build vs buy part I: complexities of building SSO and SCIM in-house	Min Kim	2024-07-30	1,703	--
Build vs. buy part II: ROI comparison between homegrown and pre-built solutions	Min Kim	2024-08-22	2,624	--
Managing SAML X.509 Certificates	Sheheryar Ali	2024-08-26	1,236	--
August Updates	Min Kim	2024-09-04	200	--
Auth Glossary	--	2024-08-26	1,053	--
What is RBAC? How it works and when to use it.	--	2024-07-17	1,356	--
What is Attribute Based Access Control (ABAC)?	--	2024-09-03	1,638	--
What is Authorization (AuthZ)?	--	2024-08-28	1,097	--
Secure authentication for frontend apps with PKCE	Maria Paktiti	2024-09-20	887	--
The Developer’s Guide to Auth Sessions	--	2024-09-27	1,443	--
Session management for frontend apps with AuthKit	Maria Paktiti	2024-09-27	1,003	--
The five different types of authentication	--	2024-09-16	2,244	--
What is fine-grained access control?	--	2024-09-12	1,530	--
OAuth vs. OAuth 2: Differences + What you need to know	--	2024-09-18	1,787	--
What are fine-grained permissions?	--	2024-09-19	1,493	--
Coarse-grained vs. fine-grained access control: which should you use?	--	2024-09-13	1,375	--
September Updates	Min Kim	2024-10-01	262	--
What is OpenID Connect (OIDC)?	--	2024-10-14	1,871	--
SCIM vs SSO: What's the difference and how do they work together?	--	2024-08-20	1,099	--
What is Enterprise SSO and why does it matter?	--	2024-10-15	1,347	--
From RBAC to Fine-Grained Authorization part II: integrate with your app	Maria Paktiti	2024-10-18	2,736	--
From RBAC to Fine-Grained Authorization part I: design your model	Maria Paktiti	2024-10-17	3,322	--
What is Single Logout and why is there such limited support for …	--	2024-09-30	1,964	--
How SCIM provisioning works - tutorial with API calls	--	2024-10-24	1,463	--
The Developer’s Guide to Fine-Grained Authorization	--	2024-10-24	1,896	--
Ruby SAML CVE-2024-45409: As bad as it gets and hiding in plain …	Zack Proser	2024-10-23	1,094	--
X.509 certificates: what they are & how to get one	--	2024-10-22	1,478	--
What is data access control?	--	2024-08-21	1,848	--
The easiest way to implement SAML in any app	--	2024-10-30	1,235	--
What is the Azure AD or Entra ID app gallery and why …	--	2024-10-31	1,221	--
Model your B2B SaaS with organizations	Maria Paktiti	2024-11-01	3,440	--
How to secure RAG applications with Fine-Grained Authorization: tutorial with code	Zack Proser	2024-11-05	1,797	--
Launch Week Day 4: Cloudflare Workers & Edge support	Paul Asjes	2024-03-21	474	--
Launch Week Day 2: Roles	Paul Asjes	2024-03-19	779	--
Launch Week Day 5: Impersonation	Paul Asjes	2024-03-22	581	--
OTP bots explained: what they are and how to stop them	--	2024-11-04	1,640	--
What is the Okta Integration Network?	--	2024-11-07	1,306	--
How to add SSO to your app with WorkOS	--	2024-11-06	1,774	--
Launch Week Day 1: Sessions	Paul Asjes	2024-03-18	652	--
Launch Week Day 3: Stream WorkOS events to Datadog	Amy Hanlon	2024-03-20	391	--
How to add social logins in your app with WorkOS	--	2024-11-11	1,393	--
What is an Authentication token?	--	2024-11-07	1,046	--
Top 5 Google Zanzibar open-source implementations in 2024	--	2024-11-08	1,456	--
How SCIM deprovisioning works	Maria Paktiti	2024-11-08	1,056	--
What is user provisioning?	--	2024-11-08	722	--
What is Universal Login and how does it work?	--	2024-11-08	1,179	--
JWT validation: how-to and best libraries to use	Maria Paktiti	2024-11-11	1,871	--
ReBAC vs RBAC: What's the difference and which should you choose?	--	2024-11-08	792	--
Best practices for CLI authentication: a technical guide	Zack Proser	2024-11-14	2,258	--
What is SCIM? The ultimate guide	--	2024-11-13	4,868	--
How SAML certificate renewal works - and what happens when it fails	Drew Emery	2024-11-14	934	--
SCIM challenges: navigating the idiosyncrasies of different providers	Maria Paktiti	2024-11-15	2,017	--
Radar	Ryan Cooke	2024-11-19	1,048	--
Passkeys, a safer and simpler alternative to passwords	Maria Paktiti	2024-11-18	572	--
How to build browser-based OAuth into your CLI with WorkOS	Zack Proser	2024-11-19	1,610	--
Widgets — ready-made components for complete enterprise features	Maria Paktiti	2024-11-21	442	--
Fine-Grained Authorization is now generally available	Aditya Kajla	2024-11-20	750	--
Actions — customize AuthKit behavior in real-time	Pantera Arzhintar	2024-11-21	681	--
Understanding cross-site scripting (XSS) attacks	Maria Paktiti	2024-11-15	1,310	--
Next.js B2B Starter Kit — fast-track your SaaS app from 0 to …	Paul Asjes	2024-11-22	675	3
Entitlements sync between Stripe and your app	Dan Dorman	2024-11-22	856	--
RBAC vs. FGA: What's the difference and how do they work together?	--	2024-11-22	807	--
How to map role data from identity providers to roles in your …	Maria Paktiti	2024-11-25	1,323	--
The Ultimate Guide to OIDC providers (or building your own)	--	2024-11-22	1,517	--
RBAC vs IAM: what's the difference and how do they work together?	--	2024-08-15	1,193	--
Top 7 API authentication methods and how to use them	--	2024-08-16	2,657	--
What is entitlement management? A guide to secure access	--	2024-11-26	1,768	--
The 5 access control models: benefits + which to choose	--	2024-08-20	2,416	--
8 Role-Based Access Control (RBAC) examples in action	--	2024-12-02	1,789	--
The complete guide to OAuth 2.0	Maria Paktiti	2024-12-05	3,852	--
The 5 best Clerk alternatives in 2024	--	2024-08-21	1,640	--
Failed authentication events: use cases and how-to	Maria Paktiti	2024-12-06	1,817	--
Common SAML security vulnerabilities and how to defend against them	Maria Paktiti	2024-12-04	1,514	--
What is granular control? Benefits + examples	--	2024-08-27	1,344	--
How to implement access control: step by step	--	2024-08-19	1,236	--
7 Attribute-Based Access Control (ABAC) examples	--	2024-08-29	1,862	--
How to build document access control with S3, WorkOS FGA, and Lambda …	Zack Proser	2024-12-05	1,553	--
Top user management features for SaaS + implementation tips	--	2024-08-30	2,164	--
Access management: What it is and how it works	--	2024-12-10	3,532	--
The 5 best Clerk alternatives in 2024	--	2024-12-11	1,707	--
4 WorkOS alternatives + which to choose	--	2024-12-11	1,875	--
RBAC vs. ACL: what's the difference and how do they work together?	--	2024-12-11	1,200	--
The ultimate guide to user management in 2024	--	2024-12-11	1,975	--
The 5 best Frontegg alternatives in 2024	--	2024-12-11	1,736	--
5 best Auth0 alternatives in 2024: head-to-head	--	2024-12-11	1,945	--
6 best user management services for 2024	--	2024-12-11	1,883	--
Why Google Zanzibar shines at building authorization	Karan Kajla	2024-12-10	1,322	--
SSO best practices	Maria Paktiti	2024-12-10	2,735	--
The 5 best user management software tools in 2024	--	2024-12-12	2,351	--
Auth0 SSO: Is it worth the high cost?	--	2024-12-12	1,065	--
Auth0 vs. Cognito vs. WorkOS: Which is best in 2024?	--	2024-12-12	2,031	--
Clerk pricing: How it works and compares to WorkOS	--	2024-12-12	737	--
Stytch vs. Auth0 vs. WorkOS: Which is best?	--	2024-12-12	1,430	--
Frontegg vs. Auth0 vs. WorkOS: which is best in 2024?	--	2024-12-12	1,306	--
Clerk vs. Auth0 vs. WorkOS: which should you choose?	--	2024-12-12	1,284	--
November Updates	Min Kim	2024-12-12	328	--
FGA’s meaning: definition, benefits, and real-world examples	--	2024-12-12	1,104	--
Seamless onboarding with the WorkOS Admin Portal	Drew Emery	2024-12-13	1,900	--
SCIM best practices	Maria Paktiti	2024-12-16	1,893	--
The 10 best RBAC open-source solutions in 2024	--	2024-12-20	1,281	--
The 5 best ABAC solutions for your SaaS in 2024	--	2024-12-23	1,465	--
How to build SAML SSO with WorkOS, Okta, and Node	Maria Paktiti	2024-12-31	2,525	--
How to implement Login with GitHub using Go and WorkOS	Maria Paktiti	2025-01-02	1,485	--
How to build SAML SSO with WorkOS, Entra ID, and Node	Maria Paktiti	2025-01-03	2,732	--
How to implement Log in with Google using Go and WorkOS	Maria Paktiti	2025-01-07	1,784	--
We shipped our auth server to your browser with WASM. Here's how …	Aaron Tainter	2025-01-03	1,480	1
What is multitenant authentication?	Zack Proser	2025-01-03	1,268	--
AuthQuake: Microsoft's MFA system vulnerable to TOTP brute force attack	Zack Proser	2025-01-03	787	--
Everything you need to know about the nOAuth Microsoft Azure AD vulnerability	Maria Paktiti	2024-09-16	986	--
How to implement row-level security with WorkOS FGA and Postgres: tutorial and …	Zack Proser	2025-01-10	1,294	--
Best practices for secrets management	Zack Proser	2025-01-10	1,434	--
How to build a user management dashboard with WorkOS and Node	Maria Paktiti	2025-01-13	1,808	--
How to build SAML SSO with WorkOS, Okta, and Go	Maria Paktiti	2025-01-09	2,079	--
How to build SAML SSO with WorkOS, Okta, and Ruby	Maria Paktiti	2025-01-14	2,139	--
What is device fingerprinting and how does it work?	Zack Proser	2025-01-16	1,517	--
How do you know when you’ve hit product-market fit?	Michael Grinich	2025-01-16	962	1
How WorkOS Radar does rate limiting with device fingerprinting	Zack Proser	2025-01-17	595	--
Understanding Zero Trust security	Maria Paktiti	2025-01-20	1,961	--
How WorkOS Radar really works	Zack Proser	2025-01-16	721	--
How WorkOS Radar's bot detection works	--	2025-01-16	498	--
How to run DeepSeek locally	Zack Proser	2025-01-29	867	84
How to build SAML SSO with WorkOS, JumpCloud, and Node	Maria Paktiti	2025-01-21	2,473	--
Breaking the AI Mold: China's DeepSeek-R1 pushes local and open AI forward	Zack Proser	2025-01-23	839	--
Email deliverability and spam prevention: why your emails aren’t getting delivered and …	Maria Paktiti	2025-01-30	1,499	--
What does it mean to distill a machine learning model or LLM?	--	2025-01-31	1,016	--
What is Ente Auth?	Zack Proser	2025-01-23	627	--
How to build SAML SSO with WorkOS, Okta, and Python	Maria Paktiti	2025-01-15	2,579	--
What is Authentik?	Zack Proser	2025-01-28	513	--
Google OAuth vulnerability can expose sensitive data of failed startups	Maria Paktiti	2025-01-22	575	--
Shadcn-ui: What is it, and why do you care?	Zack Proser	2025-01-23	497	--
Passwordless authentication: your options explained	Maria Paktiti	2025-01-31	2,772	--
Defending against bad actors: WorkOS Radar vs Castle vs Auth0 vs Stytch …	Maria Paktiti	2025-01-27	2,248	--
Which auth providers support SCIM?	Maria Paktiti	2025-02-06	2,278	--
Top AI Agent frameworks and platforms in 2025	Zack Proser	2025-02-14	773	--
How to build RBAC with WorkOS and Node	Maria Paktiti	2025-02-12	1,522	--
Understanding the OAuth 2.0 Client Credentials flow	Maria Paktiti	2025-02-14	1,375	--
The battle against bots: How to detect and stop them	Maria Paktiti	2025-02-11	2,878	--
What is federated identity?	Maria Paktiti	2025-02-07	991	--
Scaling up: Why Fine-Grained Authorization is key as your product moves upmarket	Maria Paktiti	2025-02-10	1,448	--
How to build secure AI agents that are Enterprise Ready	Zack Proser	2025-02-05	1,103	--
What is Arcade.dev? An LLM tool calling platform	Zack Proser	2025-02-13	972	--
RBAC best practices	Maria Paktiti	2025-02-13	1,492	--
EKM vs KMS: An introduction to key management	Maria Paktiti	2025-02-17	1,714	--
Session management best practices	Maria Paktiti	2025-02-19	1,928	--
The best feature flag providers for apps in 2025	Zack Proser	2025-02-20	1,969	--
Identity federation vs identity delegation	Maria Paktiti	2025-02-24	1,182	--
How encryption works in a Data Vault using EKM	Maria Paktiti	2025-02-20	1,153	--
How to stop bots with honeypots	Maria Paktiti	2025-02-21	1,174	--
What is the difference between Radix and shadcn-ui?	Zack Proser	2025-02-20	800	--
Relationship-based vs policy-based authorization: what's the difference and how do they work …	Maria Paktiti	2025-02-18	2,952	--
AI agents are taking over: How autonomous software changes research and work	Zack Proser	2025-02-20	1,548	--
What Is API Authentication? A guide to OAuth 2.0, JWT, and key …	Zack Proser	2025-02-26	1,450	--
Tenant isolation in multi-tenant systems: What you need to know	Maria Paktiti	2025-02-27	1,879	--
OAuth 2.0 and OpenID Connect: The evolution from authorization to identity	Zack Proser	2025-02-26	963	--
Context is king: tools for feeding your code and website to LLMs	Zack Proser	2025-02-26	1,265	--
Securing AI agents: authentication patterns for Operator and computer using models	Zack Proser	2025-02-26	1,434	--
What is the aud claim in identity, authentication, and authorization?	Zack Proser	2025-02-27	477	--
How to add custom claims to JWTs	Zack Proser	2025-02-27	406	--
How to add granular permissions to your API using OAuth scopes	Maria Paktiti	2025-02-28	2,529	--
How it felt to reach Product-market fit (PMF) at WorkOS—and what no …	Michael Grinich	2025-03-03	998	--
JWT storage 101: How to keep your tokens secure	Maria Paktiti	2025-03-04	2,603	--
Identity tokens vs Access tokens: understanding the key differences	Zack Proser	2025-03-07	803	--
What is Claude Code? An agentic developer tool	Zack Proser	2025-03-07	695	--
FGA vs ABAC: Understanding the differences	Maria Paktiti	2025-03-05	1,271	--
What is the Model Context Protocol (MCP)?	Zack Proser	2025-03-07	1,373	--
OAuth best practices: We read RFC 9700 so you don’t have to	Maria Paktiti	2025-03-06	1,975	--
When database security is not enough: How the cloud makes application-level encryption …	Maria Paktiti	2025-03-07	1,433	--
Introducing Manus: The general AI agent	Zack Proser	2025-03-13	731	--
Defending OAuth: Common attacks and how to prevent them	Maria Paktiti	2025-03-12	3,923	--
Spot the bots: How to track malicious activity with JavaScript tagging	Maria Paktiti	2025-03-10	1,797	--
SAMLStorm: Critical Authentication Bypass in xml-crypto and Node.js libraries	Mark Tran	2025-03-14	2,153	10
GAIA Benchmark: evaluating intelligent agents	Zack Proser	2025-03-13	665	--
What are Cursor Rules?	Zack Proser	2025-03-11	432	--
Composio.dev overview	Zack Proser	2025-03-11	659	--
The ABCs of token security: JWS, JWE, JWK, and JWKS explained	Maria Paktiti	2025-03-13	2,197	--
How to deploy Laravel apps with enterprise-ready authentication	Conner Simmons	2025-03-18	680	--
WorkOS Vault: Advanced Encryption for Sensitive Data	Ryan Cooke	2025-03-18	1,654	--
WorkOS Connect	Michael Hadley	2025-03-17	918	--
Getting Started with Claude Desktop and custom MCP servers using the TypeScript …	Zack Proser	2025-03-17	1,059	--
Custom Metadata, External ID, and JWT Templates	Maxwell Hammad	2025-03-19	873	--
New enterprise login integrations in AuthKit	Cameron Matheson	2025-03-20	1,073	--
New widgets available for user profiles and organization switching	Lucas Motta	2025-03-21	789	--
How to build Login with LinkedIn using Node and WorkOS	Maria Paktiti	2025-03-27	1,286	--
Beyond the basics: Why device fingerprinting is mission-critical in 2025	Zack Proser	2025-03-25	976	--
How AI Agents authenticate and access systems	Zack Proser	2025-03-25	1,244	--
How to choose the right authorization model for your SaaS	Maria Paktiti	2025-03-26	2,447	--
Advice for coding with AI	Zack Proser	2025-03-25	484	--
n8n: The workflow automation tool for the AI age	Zack Proser	2025-03-24	1,104	--
Zod for TypeScript: A must-know library for AI development	Zack Proser	2025-03-26	1,104	--
WorkOS, Next.js, and CVE-2025-29927	Nick Nisi	2025-03-25	447	--
How to build Login with Slack using Node and WorkOS	Maria Paktiti	2025-03-31	1,446	--
How to build Login with GitLab using Node and WorkOS	Maria Paktiti	2025-03-28	1,545	--
An introduction to WebAuthn	Maria Paktiti	2025-03-24	2,295	--
Credential stuffing vs. brute force attacks: Key differences and how to stop …	Maria Paktiti	2025-03-28	1,700	--
How to build Login with LinkedIn using Python and WorkOS	Maria Paktiti	2025-04-01	1,277	--
Top Ruby gems for authentication & authorization	Maria Paktiti	2025-04-02	4,267	--
Securing your app with Risk-Based Authentication and AI	Maria Paktiti	2025-04-04	3,044	--
How to build a game-building agent system with CrewAI	Zack Proser	2025-04-03	1,609	--
Smithery AI: A central hub for MCP servers	Zack Proser	2025-04-08	795	--
HMAC vs. RSA vs. ECDSA: Which algorithm should you use to sign …	Maria Paktiti	2025-04-08	4,616	--
Generative AI at the edge with Cloudflare Workers	Zack Proser	2025-04-07	1,362	--
Security risks of iframes: Protecting your app from potential attacks	Maria Paktiti	2025-04-10	2,086	--
Prisma ORM for TypeScript - A technical primer	Zack Proser	2025-04-10	882	--
ArkType: A high-performance runtime type validation for TypeScript	Zack Proser	2025-04-14	580	--
How to handle JWT in Python	Maria Paktiti	2025-04-14	2,459	--
MCP, ACP, A2A, Oh my!	Zack Proser	2025-04-16	1,151	--
From 1.0.0 to 2025.4: Making sense of software versioning	Maria Paktiti	2025-04-17	4,887	--
Agent to agent, not tool to tool: an engineer’s guide to Google’s …	Zack Proser	2025-04-18	807	--
WorkOS + Cloudflare MCP: Plug and Play Auth for Agentic AI Builders	Zack Proser	2025-04-16	636	--
IBM’s Agent Communication Protocol (ACP): A technical overview for software engineers	Zack Proser	2025-04-22	1,137	--
SAML's signature problem: It’s not you, it’s XML	Maria Paktiti	2025-04-22	1,246	8
Why your app needs refresh tokens—and how they work	Maria Paktiti	2025-04-23	1,782	--
Best practices for MCP secrets management	Zack Proser	2025-04-28	897	--
DBConnection pooling deep dive	William Huba	2025-04-28	1,867	--
In-Memory Distributed State with Delta CRDTs	William Huba	2025-04-28	2,555	--
oRPC: OpenAPI Remote Procedure Call for Type-Safe APIs	Zack Proser	2025-04-28	862	--
Mastra.ai Quickstart - How to build a TypeScript agent in 5 minutes …	Zack Proser	2025-04-29	1,008	--
WorkOS vs. Auth0 vs. Stytch: Which is best?	--	2024-12-12	1,555	--
On-premises and hybrid authentication: Challenges and best practices	Maria Paktiti	2025-05-01	1,740	--
Diagnosing SAML assertion failures: A step-by-step debugging guide	Maria Paktiti	2025-05-02	4,604	--
The hidden pitfalls of SAML metadata: How to avoid downtime	Maria Paktiti	2025-04-30	2,755	--
WorkOS vs. Auth0 vs. Clerk: Which should you choose?	--	2024-12-12	1,686	--
Introducing RFC 9728: Say hello to standardized OAuth 2.0 resource metadata	Maria Paktiti	2025-05-08	1,304	--
December Updates	Garrett Galow	2024-12-31	308	--
January Updates	Garrett Galow	2025-02-06	212	--
March Updates	Garrett Galow	2025-03-31	465	--
April Updates	Conner Simmons	2025-04-30	353	--
What is NIST and why should developers care?	Maria Paktiti	2025-05-12	1,268	--
Secure by design: How engineers should build and consume APIs	Maria Paktiti	2025-05-13	2,581	--
How to sync users from Entra ID to your app using Node …	Maria Paktiti	2025-05-15	2,922	--
Email deliverability troubleshooting guide	Maria Paktiti	2025-05-22	5,312	--
Why building your own BYOK is a trap	Maria Paktiti	2025-05-22	2,354	--
Why implementing SAML from scratch is a terrible idea	Maria Paktiti	2025-05-20	2,080	--
Your codebase is now addressable: Codex, Jules, and the Rise of agentic …	Zack Proser	2025-05-20	502	--
Security threats in SPAs and how to defend against them	Maria Paktiti	2025-05-19	1,782	--
Agno: The agent framework for Python teams	Zack Proser	2025-05-20	593	--
MCPNight 2025: When the AI infra community overflowed the Exploratorium in San …	Zack Proser	2025-05-21	650	--
February Updates	Garrett Galow	2025-03-06	312	--
OAuth 2.1: What’s new, what’s gone, and how to migrate securely	Maria Paktiti	2025-05-14	1,450	--
Flipping the flow: How MCP sampling lets servers ask the AI for …	Maria Paktiti	2025-05-23	1,626	--
What is free trial abuse -- and how can you stop it?	Zack Proser	2025-05-29	899	--
Device Authorization Grant: Solving OAuth for screens without keyboards	Maria Paktiti	2025-05-28	916	--
How MCP servers work: Components, logic, and architecture	Maria Paktiti	2025-05-30	2,290	--
OpenAI's Codex wants to become your AI coworker	Zack Proser	2025-05-29	585	--
WorkOS vs. Auth0 vs. Frontegg: Which is best?	--	2024-12-12	1,597	--
Securing AI agents: A guide to authentication, authorization, and defense	Maria Paktiti	2025-06-02	2,299	--
May Updates	Conner Simmons	2025-06-02	389	--
Understanding bearer tokens: What are they and how to use them securely	Maria Paktiti	2025-06-03	1,303	--
How AI agents connect to systems: A technical guide	Maria Paktiti	2025-06-05	1,910	--
Why AI still needs you: Exploring Human-in-the-Loop systems	Maria Paktiti	2025-06-06	2,629	--
How to implement an organization switcher with WorkOS and React	Maria Paktiti	2025-06-04	1,715	--
SCIM: The hidden growth engine behind tools like Slack and Figma	Maria Paktiti	2025-06-11	1,872	--
AI isn't magic. Context chaining is.	Zack Proser	2025-06-10	1,813	--
MCP elicitation: Request user input at runtime	Maria Paktiti	2025-06-20	1,145	--
Taylor Otwell built Laravel for himself. Millions of developers followed.	Noelle Festa	2026-01-14	549	--
Guardrails AI for AI agent security: Features, pricing, and alternatives	--	2025-11-04	2,134	--
How to add MFA to your homegrown auth using WorkOS	Maria Paktiti	2025-07-16	938	--
The Feature You'll Rebuild Three Times: Authorization at Scale: Pavan Kulkarni at …	Zack Proser	2025-10-31	1,496	--
SCIM for AI: Inside the new IETF draft for agent and agentic …	Maria Paktiti	2025-10-30	1,805	--
Latacora is security for startups without the unicorn hire	Noelle Festa	2026-01-14	440	--
Anthropic’s Computer Use versus OpenAI’s Computer Using Agent (CUA)	Zack Proser	2025-07-30	3,723	--
Scaling user provisioning with SCIM bulk operations and filtering	Maria Paktiti	2025-11-05	1,071	--
Incident.io is redefining what an incident can be	Noelle Festa	2026-01-14	547	--
Engineering leadership at WorkOS: Product, people, and impact	Randall Tombaugh	2026-01-15	1,390	--
WorkOS API Keys: Let Your Customers Build Integrations Without Building the Infrastructure	Michael Hadley	2025-10-30	844	--
MCP auth: The difference between a bridge and a backdoor	Maria Paktiti	2025-11-25	1,740	--
How to support any SAML or OIDC identity provider with only one …	Maria Paktiti	2025-08-13	1,324	--
Tumult Labs: Differential Privacy for AI Agents	--	2025-11-10	1,216	--
MCP Night 2.0 Panel Discussion: The Future of AI Integration	Zack Proser	2025-09-03	1,485	--
First-Class WorkOS Auth Support Comes to Convex	Zack Proser	2025-07-31	298	--
Understanding URL-mode elicitation in MCP	Maria Paktiti	2026-01-09	1,969	--
WorkOS MCP Night: The Holiday Special	Zack Proser	2025-12-10	2,103	--
How to implement “Sign out everywhere”	Maria Paktiti	2025-08-29	1,618	--
The best 5 SSO providers to power your SaaS app in 2025	Maria Paktiti	2025-08-15	2,088	--
Stedi is making EDI less terrible	Noelle Festa	2026-01-14	381	--
UX best practices for MFA	Maria Paktiti	2025-07-23	597	--
Intercom went from skeptics to believers on AI	Noelle Festa	2026-01-14	389	--
WorkOS Pipes: Third-party integrations without the headache	Zack Proser	2026-01-15	1,037	--
Enterprise Ready authentication for Supabase, powered by WorkOS	Cameron Matheson	2025-06-25	546	--
PlanetScale is riding the Postgres wave (while still loving MySQL)	Noelle Festa	2026-01-14	469	--
Understanding SAML Request Signing and Response Encryption	Maria Paktiti	2025-10-31	1,510	--
Datadog: SQL Is the New Bash for AI Agents	Zack Proser	2025-12-12	665	--
How to sync users from Okta to your Laravel app	Maria Paktiti	2026-01-16	2,690	--
MFA best practices	Maria Paktiti	2025-09-08	2,867	--
AI agent access control: How to manage permissions safely	Maria Paktiti	2025-09-30	2,094	--
How to add auth to your Go CLI using WorkOS	Maria Paktiti	2025-07-30	780	--
Astrix Security vs. WorkOS: Non-Human Identity Meets Enterprise Authentication	--	2025-11-03	1,174	--
Protect AI for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-04	1,879	--
Beyond the Hype: What Actually Works for Production AI Systems	Zack Proser	2025-10-30	1,478	--
Tiger Data sees agents as the new developer	Noelle Festa	2026-01-14	521	--
How to add OAuth to your MCP server	Maria Paktiti	2025-10-29	2,123	--
OAuth 2.0 vs OAuth 2.1: What changed, why it matters, and how …	Maria Paktiti	2025-08-27	2,201	--
How to design an RBAC model for multi-tenant SaaS	Maria Paktiti	2025-11-28	3,253	--
WorkOS MCP Night 2.0 Recap	Michael Grinich	2025-08-11	1,309	--
Scaling B2B SaaS with SCIM: Automating user provisioning for enterprise growth	Maria Paktiti	2025-07-31	695	--
Dynamic Client Registration (DCR) in MCP: What it is, why it exists, …	Maria Paktiti	2025-12-09	3,087	--
Identity & SSO compliance: Why it matters and how to get it …	Maria Paktiti	2025-07-17	1,370	--
Vercel is watching developers become 10x more productive	Noelle Festa	2026-01-14	466	--
Implementing a generic SCIM client: A practical guide	Pavan Kulkarni	2025-09-09	2,261	--
MCP Registry Architecture: A Technical Overview	Zack Proser	2025-10-15	849	--
From blocking bots to optimizing for LLMs: How the web flipped its …	Maria Paktiti	2025-07-10	1,245	--
The complete guide to user management for B2B SaaS	Maria Paktiti	2025-07-25	3,007	--
Identity for AI: Who Are Your Agents and What Can They Do?	Michael Grinich	2025-06-13	1,464	--
How to sync users from Okta to your Python app	Maria Paktiti	2025-11-03	2,703	--
How WorkOS solved enterprise auth for MCP servers	Zack Proser	2025-08-21	997	--
MCP Async Tasks: Building long-running workflows for AI Agents	Maria Paktiti	2025-12-04	2,837	--
Haize Labs: AI Safety Testing	--	2025-11-07	1,776	--
A developer’s guide to MCP auth	Maria Paktiti	2025-10-07	3,185	--
The Vercel MCP + WorkOS AuthKit template: deploy secure MCP servers globally …	Zack Proser	2025-07-08	722	--
How to secure your AI app from fraud	Maria Paktiti	2025-08-07	1,589	--
October Updates	Conner Simmons	2025-11-03	381	--
Why SMS is not a secure Multi-Factor Authentication (MFA) method	Maria Paktiti	2025-07-09	802	--
Introducing AuthKit Add-ons	Nick Holden	2025-06-26	809	--
10 takeaways from AWS re:Invent 2025	Noelle Festa	2026-01-14	856	--
Depot is making builds fast enough for the AI era	Noelle Festa	2026-01-14	463	--
MCP-UI: Breaking the Text Wall in AI Interactions	Zack Proser	2025-08-27	716	--
OIDC vs SAML: How a two-decade-old protocol still dominates identity federation	Maria Paktiti	2025-08-04	1,920	--
Feature Flags as a Change Management Strategy for B2B Apps	Zack Proser	2026-01-06	1,121	--
Introducing Feature Flags: Enterprise Ready feature management for B2B apps	Stanley Phu	2025-06-24	708	--
The Productivity Paradox: When AI Tools Make Things Worse Before They Make …	Zack Proser	2025-10-28	2,471	--
Service disruption on October 20, 2025	--	2025-10-23	955	--
Augment Code: Context Is the New Compiler	Zack Proser	2025-10-29	619	--
Bring your own email provider to WorkOS	Matt Dzwonczyk	2025-09-25	655	--
Keycard for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-04	1,772	--
Snyk for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-03	1,948	--
Fetch GitHub repo data without OAuth using WorkOS Pipes	Maria Paktiti	2026-01-20	1,393	--
Why most enterprise AI projects fail — and the patterns that actually …	Zack Proser	2025-07-22	1,271	--
Why OAuth is the right fit for the MCP Registry	Zack Proser	2025-09-09	955	--
Top 5 authentication solutions for secure Next.js apps in 2026	Maria Paktiti	2026-01-21	1,845	--
Modal is building AI infrastructure that doesn't get in the way	Noelle Festa	2026-01-14	437	--
How to add SSO to your homegrown auth in a day	Maria Paktiti	2026-01-15	1,663	--
Fetch Linear issue data without OAuth using WorkOS Pipes	Maria Paktiti	2026-01-22	1,488	--
CTO Panel: AI is Transforming Engineering Teams Faster Than Expected	Zack Proser	2025-10-30	1,619	--
Supabase: Natural Language to SQL, Holiday Edition	Zack Proser	2025-12-12	623	--
How to build agent-friendly products	Maria Paktiti	2025-07-03	2,034	--
What does Enterprise Ready mean for AI?	Maria Paktiti	2025-06-13	1,580	--
Noma Security vs WorkOS: Choosing the Right Platform for Agentic Security	--	2025-11-11	1,063	--
Aim Security vs WorkOS: Choosing the Right Agentic Security Platform	--	2025-11-11	904	--
AuthKit for Convex: Zero-configuration authentication for real-time applications	Nick Holden	2025-09-23	804	--
Introducing custom CSS for AuthKit: Unlock full styling flexibility	Lucas Motta	2025-06-23	704	--
Duality AI: Building Reality-Grade Digital Twins for AI and Robotics	--	2025-12-01	870	--
Product Engineering at WorkOS	Alex Southgate	2025-09-08	1,243	--
The Linux Foundation Launches the Agentic AI Foundation—MCP Finds Its Permanent Home	Zack Proser	2025-12-10	569	--
Skyflow for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-10	1,149	--
Amazon Nova Forge: Custom foundation models are no longer just for tech …	Zack Proser	2025-12-04	1,072	--
Duality for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-10	950	--
What is OAuth 2.0?	Maria Paktiti	2025-12-01	1,960	--
Straiker for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-04	1,536	--
The developer’s guide to HTTP error codes	Maria Paktiti	2025-11-12	2,244	--
Cleric is building an AI that actually understands your production outages	Noelle Festa	2026-01-14	869	--
How to handle JWT in Go	Maria Paktiti	2025-11-18	3,710	--
Oso for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-04	1,090	--
Fireworks.ai: The PyTorch Team's Bet on Inference as the New Runtime	Zack Proser	2026-01-08	1,380	--
From PRD to Prototype in One Prompt: How Notion's MCP Server Transforms …	Zack Proser	2025-09-03	1,289	--
What is an AI agent?	--	2025-07-14	956	--
What is the difference between causal, predictive, generative, and agentic AI?	--	2025-07-02	519	--
MCP auth for AI agents: How to register a Python OAuth client …	Maria Paktiti	2025-12-15	4,393	--
How B2B auth is different than Consumer auth	Maria Paktiti	2025-07-07	1,271	--
Michael Grinich's ERC 2025 Opening Keynote: Crossing the Enterprise Chasm in the …	Zack Proser	2025-10-27	1,955	--
Microsoft: MCP Auth Without the Configuration Nightmare	Zack Proser	2025-12-12	711	--
The enterprise infrastructure layer behind successful AI applications	Maria Paktiti	2026-01-07	3,490	--
Zenity for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-11	1,692	--
Scaling up: How to launch your product with an Enterprise Plan	Maria Paktiti	2025-06-19	2,126	--
SAML explained simply: What is it and how it works	Maria Paktiti	2025-07-21	2,455	--
What is Private Key JWT: Deep dive into asymmetric client authentication	Maria Paktiti	2026-01-12	2,243	--
Best practices for securing MCP model-agent interactions	Maria Paktiti	2025-09-19	3,611	--
Air-gapping and authentication: How WorkOS supports secure & isolated environments	Maria Paktiti	2025-09-17	1,198	--
How to handle JWT in JavaScript	Maria Paktiti	2026-01-14	2,346	--
Enterprise ready MCP servers: How to secure, scale, and deploy for real-world …	Maria Paktiti	2025-07-22	1,201	--
Google Vertex AI vs. WorkOS: ML Platform Meets Enterprise Authentication	--	2025-11-03	1,545	--
XMCP + AuthKit: The Fastest Way to Secure MCP Tools and Servers	Zack Proser	2025-07-21	986	--
Clerk vs WorkOS: Agent Identity Meets Enterprise Authentication	--	2025-11-03	1,383	--
The hidden costs of open source SSO: Why enterprise readiness requires more …	Maria Paktiti	2025-11-11	1,214	--
From Pain Points to Solutions: How VSCode Solved MCP's Biggest Developer Challenges	Zack Proser	2025-09-02	1,072	--
How to sync users from Google Workspace to a Ruby on Rails …	Maria Paktiti	2025-08-01	2,480	--
OAuth 2.0 Authorization Code Grant: What it is & how it works	Maria Paktiti	2025-07-16	1,529	--
Session revocation explained: Protect your users, systems, and AI agents	Maria Paktiti	2025-11-04	1,524	--
WorkOS Launch Week Recap: Fall 2025	Maria Paktiti	2025-09-29	478	--
Query caching using Nest.js and Typeorm	Ryan Cooke	2025-06-13	2,015	--
WorkOS Slack App: Real-time visibility into your feature flag changes	Stanley Phu	2025-09-26	855	--
MCP Night The Holiday Edition Keynote: MCP Turns One, Joins the Linux …	Zack Proser	2025-12-12	1,338	--
How to add auth to your Apple app in order to be …	Maria Paktiti	2025-08-19	1,652	--
SAML certificates explained: How they work and how to manage them	Maria Paktiti	2025-10-03	2,668	--
The best providers for authenticating AI agents via OAuth and OIDC in …	Maria Paktiti	2025-11-24	1,894	--
Metronome's Lightning Demo: Building Enterprise-Ready Monetization in Real Time	Zack Proser	2025-10-29	878	--
The hidden cost of password sharing and how to prevent it	Maria Paktiti	2025-11-06	712	--
Top 5 authentication solutions for secure TanStack Start apps in 2026	Maria Paktiti	2026-01-23	2,563	--
Sync Google Calendar events without OAuth using WorkOS Pipes	Maria Paktiti	2026-01-26	1,481	--
Client ID Metadata Documents (CIMD): How OAuth client registration works in MCP	Maria Paktiti	2025-12-08	3,417	--
Inside WorkOS	Anna Meyer	2025-10-27	1,041	--
Okta for AI Agent Security: Features, Pricing, and WorkOS Alternatives	--	2025-11-03	1,621	--
Baseten is betting big on open source models	Noelle Festa	2026-01-14	540	--
Authorization for RAG at Scale: Why You Shouldn't Sync Every Document	Zack Proser	2026-01-08	569	--
WorkOS Enterprise MCP Hackathon Debrief	Zack Proser	2025-09-17	629	--
Security in the Age of AI: Old Problems Meet New Risks	Zack Proser	2025-10-28	2,463	--
Immuta for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-10	1,863	--
How AI makes OAuth 2.0 and OIDC non-negotiable for SaaS apps	Maria Paktiti	2025-12-05	1,785	--
Customer and user onboarding for real-world B2B SaaS	Maria Paktiti	2026-01-08	1,059	--
Beyond request-response: How MCP servers are learning to collaborate	Maria Paktiti	2026-01-13	2,041	--
Browserbase is deleting hundreds of years of busy work	Noelle Festa	2026-01-14	726	--
Bedrock Data for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-11	1,327	--
One-Time Passwords (OTPs) explained: What they are, how they work, and when …	Maria Paktiti	2025-11-19	1,889	--
Are CA-signed certificates necessary for SAML security?	Maria Paktiti	2025-09-18	559	--
Obsidian Security for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-12	1,726	--
How to make your site LLM-friendly without inviting abuse	Maria Paktiti	2025-07-01	672	--
Cloudflare: Code Mode Cuts Token Usage by 81%	Zack Proser	2025-12-11	875	--
HiddenLayer vs WorkOS for agentic security: Choosing the right foundation	--	2025-11-10	1,066	--
MCP Night 2.0 Demo Recap: Block's Goose - The Layered Tool Pattern	Zack Proser	2025-08-29	796	--
MCP Night 2.0 Demo Recap: XMCP Framework - The Fastest Way to …	Zack Proser	2025-08-29	933	--
Ciroos is building AI SREs that can actually fix things	Noelle Festa	2026-01-14	517	--
CIMD vs DCR: The new default for MCP Client Registration in 2025	Maria Paktiti	2025-12-02	1,808	--
How to integrate Okta SAML SSO and SCIM in one day	Maria Paktiti	2025-08-14	4,216	--
Jazz Security for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-10	2,059	--
MCP Night 2.0 Demo Recap: Mux	Zack Proser	2025-08-28	1,212	--
Top RBAC providers for multi-tenant SaaS in 2025	Maria Paktiti	2025-12-11	1,310	--
Cross App Access (XAA): The enterprise way to govern AI app integrations	Maria Paktiti	2025-12-10	2,531	--
What are SAML assertions?	Maria Paktiti	2025-07-30	2,093	--
Why building SCIM is hard	Maria Paktiti	2025-11-10	1,841	--
Private Key JWT vs Client Secret: Choosing the right OAuth authentication for …	Maria Paktiti	2025-12-22	1,762	--
September Updates	Conner Simmons	2025-09-30	579	--
The top 3 SCIM providers for 2025	Maria Paktiti	2025-09-02	1,578	--
The Future of Agent Identity Is Already Here: Tobin South at ERC	Zack Proser	2025-10-31	931	--
Pomerium for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-04	2,190	--
MFA vs. Passwordless authentication	Maria Paktiti	2025-07-28	900	--
How backup MFA codes work: Your safety net for Two-Factor Authentication	Maria Paktiti	2025-07-24	841	--
How Single Sign-On (SSO) works – and how to add it to …	Maria Paktiti	2025-07-08	1,561	--
Nightfall AI vs WorkOS: Data Protection vs Access Control for Agentic Security	--	2025-11-10	1,268	--
Agentic AI Examples	Zack Proser	2025-07-10	1,800	--
Stripe Seat Sync: A simpler way to build seat-based billing with WorkOS	Maria Paktiti	2025-11-03	905	--
Semgrep for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-03	1,055	--
How to build AI agents	Maria Paktiti	2025-06-30	2,913	--
Authorization in Python: Best practices and patterns that won’t bite you later	Maria Paktiti	2025-11-27	2,866	--
Designing the AI-Proof Interview	Anna Meyer	2025-08-11	514	--
Descope for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-03	1,656	--
MCP Night 2.0 Demo Recap: How Cursor Users Are Embracing the Model …	Zack Proser	2025-08-29	854	--
What is Agnost AI? An MCP server analytics platform	Zack Proser	2025-11-10	961	--
How to revoke sessions and sign users out everywhere with the WorkOS …	Maria Paktiti	2025-08-12	910	--
The developer’s guide to SAML authentication	Maria Paktiti	2025-11-17	3,344	--
MCP.shop Demo: How WorkOS Powers Identity and Auth for AI Agents	Zack Proser	2025-10-27	1,070	--
Top 5 Auth0 alternatives in 2025	Maria Paktiti	2025-09-16	2,192	--
MCP Apps are here: Rendering interactive UIs in AI clients	Maria Paktiti	2026-01-27	1,398	--
API Keys vs M2M Applications: Differences, use cases, and how to decide	Maria Paktiti	2025-11-14	966	--
The hidden cost of bad sign-ups (and how to stop them)	Maria Paktiti	2025-08-20	930	--
WorkOS partners with Entra Agent ID	Tobin South	2025-11-19	318	--
FGA : How WorkOS is rethinking authorization for the next generation of …	Pavan Kulkarni	2025-12-01	2,135	--
MCP-UI: A Technical Overview of Interactive Agent Interfaces	Zack Proser	2025-09-08	1,647	--
Understanding MCP features: Tools, Resources, Prompts, Sampling, Roots, and Elicitation	Maria Paktiti	2025-08-06	2,664	--
November Updates	Conner Simmons	2025-12-04	387	--
What is PKCE and why every OAuth app should use it	Maria Paktiti	2025-09-11	1,332	--
Generative AI and enterprise identity fraud: How to defend against AI-powered impersonation …	Maria Paktiti	2025-07-29	1,122	--
Relyance AI for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-10	1,736	--
MCP vs. A2A: Which AI agent protocol should you use?	Maria Paktiti	2025-08-18	1,394	--
How to add auth to your Python CLI using WorkOS	Maria Paktiti	2025-07-25	702	--
When PLG Meets Enterprise: Drew Houston on Building Dropbox from Viral Growth …	Zack Proser	2025-10-29	1,974	--
Promptfoo vs. WorkOS: Security Testing Meets Enterprise Authentication	--	2025-11-03	1,741	--
Understanding MFA fatigue attacks: How they work and how to defend against …	Maria Paktiti	2025-10-09	939	--
How to add auth to your Node.js CLI using WorkOS	Maria Paktiti	2025-07-11	821	--
Localization: AuthKit in 90 Languages	Jason Barry	2025-09-24	805	--
December Updates	Conner Simmons	2026-01-07	429	--
How to Make Your Lovable App Enterprise Ready	Zack Proser	2025-07-24	1,951	--
The Bring Your Own Cloud Movement: Nuon's Solution for Enterprise AI Deployment	Zack Proser	2025-10-29	859	--
How MCP Clients Find Your Auth Server (Without You Telling Them)	Zack Proser	2026-01-07	773	--
Understanding Roots in Model Context Protocol (MCP)	Maria Paktiti	2025-07-14	647	--
The complete guide to MCP security: How to secure MCP servers & …	Maria Paktiti	2025-08-22	3,360	--
Authenticate CLI tools seamlessly with OAuth Device Flow	Eric Roberts	2025-06-27	496	--
Ben Gilbert and David Rosenthal from Acquired on what makes companies last	Noelle Festa	2026-01-14	546	--
Introduction to MCP authentication	Maria Paktiti	2025-08-08	2,227	--
Introducing the WorkOS MCP Documentation Server	Zack Proser	2025-06-12	349	--
How to migrate from Auth0 to WorkOS	Maria Paktiti	2025-10-01	2,059	--
OpenAI vs. WorkOS: Securing the AI Platform Layer vs. Securing Your Application	--	2025-11-03	745	--
Concentric AI vs WorkOS: Data Governance vs Identity for Agentic Security	--	2025-11-10	1,355	--
You can vibe code features. You cannot vibe trust.	Noelle Festa	2026-01-14	477	--
LLMs are très bien at localization	Jason Barry	2025-10-13	3,443	--
Chrome DevTools: Bringing Browser State to Your Coding Agent	Zack Proser	2025-12-12	610	--
How to add SSO, MFA, and Passwordless authentication to your .NET app	Maria Paktiti	2025-09-12	1,440	--
How well are reasoning LLMs performing? A look at o1, Claude 3.7, …	Zack Proser	2025-08-04	1,784	--
AuthKit adds support for multiple roles	Kendall Swarthout	2025-09-22	727	--
MFA vs SSO: Why enterprises need both for stronger security	Maria Paktiti	2025-08-05	863	--
The best SAML providers for B2B SaaS in 2025	Maria Paktiti	2025-11-20	1,963	--
Enterprise AI Agent Playbook: What Anthropic and OpenAI Reveal About Building Production-Ready …	Zack Proser	2025-07-23	2,391	--
Secure MCP Servers in Minutes with XMCP and WorkOS AuthKit	Zack Proser	2026-01-29	541	--
How to enable B2B SaaS features for specific customers	Maria Paktiti	2025-08-12	1,341	--
What are MITM attacks & how to prevent them	Maria Paktiti	2025-07-15	2,806	--
Credo AI for Agentic Security: Features, Governance, and Alternatives	--	2025-11-11	1,202	--
MCP 2025-11-25 is here: async Tasks, better OAuth, extensions, and a smoother …	Maria Paktiti	2025-11-26	2,071	--
Cerbos for AI Agent Security: Features, Pricing, and Alternatives	--	2025-11-04	2,218	--
Sentry's Lightning Demo: When AI Meets Error Resolution	Zack Proser	2025-10-29	615	--
Tailscale is building the AI gateway for a world where agents need …	Noelle Festa	2026-01-27	861	--
Why authentication doesn't need to stay local: The new data residency pattern	Maria Paktiti	2026-01-29	1,574	--
Integrate Google Drive in your app without OAuth using WorkOS Pipes	Maria Paktiti	2026-01-27	1,495	--
Top 5 authentication solutions for secure React apps in 2026	Maria Paktiti	2026-01-27	2,277	--
Top 5 authentication solutions for secure Rails apps in 2026	Maria Paktiti	2026-01-30	1,923	--
The shift from apps with AI to AI with apps: Why your …	Maria Paktiti	2026-02-10	2,561	--
January Updates	Conner Simmons	2026-01-30	424	--
Protecting against Login CSRF attacks: How WorkOS keeps your users secure	Jônatas Santos	2026-02-13	765	--
Top 5 authentication solutions for secure Flask apps in 2026	Maria Paktiti	2026-02-12	2,260	--
Top 5 authentication solutions for secure Go apps in 2026	Maria Paktiti	2026-02-16	2,434	--
WorkOS vs. BetterAuth vs. Clerk: Which should you choose?	Maria Paktiti	2026-02-13	3,419	--
Top 5 authentication solutions for secure FastAPI apps in 2026	Maria Paktiti	2026-02-12	2,297	--
Building authentication in Next.js App Router: The complete guide for 2026	Maria Paktiti	2026-02-17	7,260	--
Agents need Authorization, not just Authentication	Pavan Kulkarni	2026-02-17	3,582	--
Building authentication in Python web applications: The complete guide for 2026	Maria Paktiti	2026-02-20	8,536	--
Top 5 authentication solutions for secure .NET apps in 2026	Maria Paktiti	2026-02-19	2,506	--
The best authorization platforms for managing AI agent permissions in 2026	Maria Paktiti	2026-02-24	2,657	--
How to add Sign in with Vercel to your app using WorkOS	Maria Paktiti	2026-02-23	1,278	--
Top 5 NextAuth alternatives for secure authentication in 2026	Maria Paktiti	2026-02-25	2,395	--
Top 5 authentication solutions for secure Java apps in 2026	Maria Paktiti	2026-02-26	2,523	--
Top 5 authentication solutions for secure Laravel apps in 2026	Maria Paktiti	2026-02-11	2,315	--
Building authentication in Rails web applications: The complete guide for 2026	Maria Paktiti	2026-02-27	11,045	--
WorkOS raises $100M Series C, hits $2B valuation	Michael Grinich	2026-03-02	350	--
Can an AI agent set up your product?	Maria Paktiti	2026-03-03	1,340	--
The developer's guide to strong passwords	Maria Paktiti	2026-03-03	3,270	--
Writing my first evals	Nick Nisi	2026-03-04	3,365	--
Send Slack notifications from your app without building OAuth	Maria Paktiti	2026-03-04	1,984	--
How to add auth to your Lovable app	Maria Paktiti	2026-03-05	1,303	--
Top 5 Better Auth alternatives for secure authentication in 2026	Maria Paktiti	2026-03-02	2,205	--
Claude Cowork workshop with Anthropic: Building a complete GTM pipeline in one …	Zack Proser	2026-03-05	1,936	--
How to add Sign in with Apple to your app using WorkOS	Maria Paktiti	2026-03-06	2,677	--
Create Salesforce leads from your app without building OAuth	Maria Paktiti	2026-03-09	2,163	--
The developer’s guide to JWKS	Maria Paktiti	2026-03-10	5,558	--
How to add auth to your Replit app with WorkOS	Maria Paktiti	2026-03-10	1,437	--
API security best practices for the age of AI agents	Maria Paktiti	2026-03-11	2,309	--
Best SCIM providers for automated user provisioning in 2026	Maria Paktiti	2026-03-12	3,177	--
Multiple apps, one shared authentication layer	Cameron Matheson	2026-03-16	651	--
MCP vs. REST: What's the right way to connect AI agents to …	Maria Paktiti	2026-03-13	3,103	--
Using Cursor Bugbot to Autoreview and Fix Claude Code PRs	Zack Proser	2026-03-16	1,618	--
Use Excalidraw Skills So Your Agents Can Describe Themselves	Zack Proser	2026-03-16	1,108	--
Compression is one of the core patterns of this era of LLMs	Zack Proser	2026-03-16	1,673	--
The best thing about using OpenClaw: Constant improvement via ChatOps	Zack Proser	2026-03-16	1,168	--
Prompt injection attacks: What are they and how to defend against them	Maria Paktiti	2026-03-17	2,273	--
How to preserve your AI context across devices, outages, and model providers	Zack Proser	2026-03-17	2,001	--
AuthKit Analytics: Understand user growth at a glance	Stacy Curry	2026-03-17	567	--
How I dropped my OpenClaw cost of ownership 17x with OpenRouter	Zack Proser	2026-03-16	1,031	--
Why MiniMax M2.5 is the most popular model on OpenRouter right now	Zack Proser	2026-03-17	1,088	--
How to validate the JWT iss claim and why it matters	Maria Paktiti	2026-03-18	1,295	--
Agent Experience: Build without leaving your terminal	Nick Nisi	2026-03-18	1,221	--
Model Routing vs Tool Routing: How to give your AI agents superpowers	Zack Proser	2026-03-18	1,124	--
Common CORS errors and how to fix them	Maria Paktiti	2026-03-19	2,316	--
Pipes MCP: Session-scoped authorization for AI agents	Ryan Cooke	2026-03-19	663	--
Securing a FastAPI Server with WorkOS AuthKit	Maria Paktiti	2026-03-20	2,218	--
Widget Skills: WorkOS-powered UIs, generated for your stack	Randall Tombaugh	2026-03-20	606	--
Azure Entra nested groups and Directory Sync: Limitations and workarounds	--	2026-03-20	1,756	--
Top 5 authentication solutions for secure React Router apps in 2026	Maria Paktiti	2026-03-23	3,144	--
MCP's 2026 roadmap makes enterprise readiness a top priority	--	2026-03-23	1,636	--
Debug JWTs in your browser with the WorkOS JWT Debugger	Nick Nisi	2026-03-24	530	--
x402 vs. Stripe MPP: How to choose payment infrastructure for AI agents …	Maria Paktiti	2026-03-23	3,294	--
The developer's guide to authentication security	Maria Paktiti	2026-03-24	6,732	--
How to add Sign in with Slack to your app using WorkOS	Maria Paktiti	2026-03-24	1,765	--
Everything your team needs to know about MCP in 2026	Maria Paktiti	2026-03-26	3,266	--
How to validate the JWT aud claim and why it matters	Maria Paktiti	2026-03-25	1,742	--
Token replay attacks: What they are, why MFA won't save you, and …	Maria Paktiti	2026-03-27	1,715	--
Scopes vs. claims: What they are, how they differ, and when to …	Maria Paktiti	2026-03-27	1,191	--
Redirect URIs for local, staging, and production: Secure patterns and anti-patterns	Maria Paktiti	2026-03-27	2,106	--
Connect your app to GitLab without building OAuth	Maria Paktiti	2026-03-30	1,509	--
The OWASP Top 10 for agentic applications: What developers building with AI …	Maria Paktiti	2026-03-30	3,435	--
Impossible travel: What it is, how it works, and how to defend …	Maria Paktiti	2026-03-30	1,732	--
Rainbow table attacks: What they are and how to prevent them	Maria Paktiti	2026-04-01	1,868	--
Logging AI agents into web apps: From cookie hacks to proper OAuth	Maria Paktiti	2026-03-31	2,029	--
The architecture of governable AI agents: Constrain first, observe always	Maria Paktiti	2026-03-31	3,273	--
Top 5 MFA providers for securing your app in 2026	Maria Paktiti	2026-04-01	4,295	--
MFA for AI agents: Why traditional authentication falls short	Maria Paktiti	2026-04-01	1,772	--
How attackers are bypassing MFA using AI in 2026	Maria Paktiti	2026-04-02	1,654	--
The developer's guide to CLI authentication	Maria Paktiti	2026-04-02	3,979	--
Passkeys stop phishing. Your MFA fallbacks undo it.	Maria Paktiti	2026-04-02	2,179	--
Building authentication in Laravel applications: The complete guide for 2026	Maria Paktiti	2026-04-03	2,779	--
The Axios npm supply chain attack: What every developer needs to know	Maria Paktiti	2026-04-01	1,248	--
Securing agentic apps: Give your AI agents their own credentials	Maria Paktiti	2026-04-06	2,932	--
Adversary-in-the-middle attacks: The threat that makes your MFA useless	Maria Paktiti	2026-04-07	4,472	--
Impossible travel: What it is, how it works, and how to defend …	Maria Paktiti	2026-03-30	1,732	--
SAML's rough quarter: Five critical vulnerabilities in four months	Maria Paktiti	2026-04-06	1,945	--
RS256 vs HS256: A deep dive into JWT signing algorithms	Maria Paktiti	2026-04-07	1,648	--
The 5 best identity and access management providers to power your SaaS …	Maria Paktiti	2026-04-07	3,400	--
Top 5 PropelAuth alternatives for secure authentication in 2026	Maria Paktiti	2026-04-08	2,483	--
JWT algorithm confusion attacks: How they work and how to prevent them	Maria Paktiti	2026-04-08	1,664	--
Securing agentic apps: How to vet the tools your AI agents depend …	Maria Paktiti	2026-04-08	2,715	--
Cryptographic origin binding: How passkeys make phishing structurally impossible	Maria Paktiti	2026-04-09	4,251	--
OAuth governance and consent phishing: What engineers need to know	Maria Paktiti	2026-04-09	2,113	--
Multi-tenant permissions done right: What Slack, Notion, and Linear can teach us	Maria Paktiti	2026-04-09	2,041	--
Building authentication in Node.js applications: The complete guide for 2026	Maria Paktiti	2026-04-09	4,695	--
Understanding state, nonce, and PKCE	Maria Paktiti	2026-04-14	1,864	--
The 5 best AWS Cognito alternatives for B2B SaaS in 2026	Maria Paktiti	2026-04-14	2,861	--
Homer Wang on building TinyFish and the future of AI agents	Conner Simmons	2026-04-15	748	--
The AI factory for open models: Rob Ferguson on Fireworks AI at …	Conner Simmons	2026-04-15	632	--
Self-driving production: Autonomous agents for incident response	Conner Simmons	2026-04-15	773	--
Maxim Fateev on why durable execution matters for AI agents	Conner Simmons	2026-04-15	744	--
Ojus Save on how render is rethinking cloud for AI workloads	Conner Simmons	2026-04-15	666	--
Mazy Dar on building the future of video understanding at here	Conner Simmons	2026-04-15	580	--
Linda Tong on how Webflow is bringing AI to web development	Conner Simmons	2026-04-15	495	--
Jyoti Bansal on how harness is rethinking AI for software delivery	Conner Simmons	2026-04-15	660	--
How AppsFlyer built AI into their platform	Conner Simmons	2026-04-15	544	--
GraphQL meets the agent era: Matt Debergalis on APIs, MCP, and enterprise …	Conner Simmons	2026-04-15	827	--
Andrew McLeod on how Certn uses AI for background checks	Conner Simmons	2026-04-15	528	--
Abhi Aiyer on building mastra and the future of AI agent frameworks	Conner Simmons	2026-04-15	492	--
Modern analytics in the age of agents	Conner Simmons	2026-04-15	695	--
Paul Dhaliwal on building Code Conductor and the future of AI-assisted development	Conner Simmons	2026-04-15	452	--
Ameya Bhatawdekar on building AI evaluations at Braintrust	Conner Simmons	2026-04-15	513	--
How to handle JWT in Java	Maria Paktiti	2026-04-16	4,168	--
Building authentication in Go applications: The complete guide for 2026	Maria Paktiti	2026-04-16	4,829	--
Gadget chains: How low-severity bugs combine across dependencies to become critical	Maria Paktiti	2026-04-16	1,825	--
Securing agentic apps: How to stop your AI agents from misusing their …	Maria Paktiti	2026-04-16	1,727	--

Plushcap, by Matt Makai. 2021-2026.