WorkOS Blog - Plushcap

Blog URL

workos.com/blog

Posts YTD

0 ↓ vs 29 last year

Avg Posts/Month

6.0 since 2022

Monthly Post Volume

Start year:

Post Details

Search:

Title	Author	Published	Words	HN Pts
2023 Product Updates Recap	Min Kim	2023-12-29	322	--
A guide to organization modeling	--	2024-02-16	1,537	--
Active Directory SCIM - Can you sync Active Directory users and groups …	--	2024-03-06	1,080	--
April Updates	Min Kim	2024-05-01	303	--
August Product Updates	Min Kim	2023-08-31	328	--
Auth0 pricing: how it works and compares to WorkOS	Min Kim	2024-01-30	595	--
Creating stronger passwords with AuthKit	Paul Asjes	2024-02-08	1,505	--
Deciphering SCIM Complexity: Navigating Group Fragmentation	Ash Godfrey	2023-09-14	1,120	--
Decoding and Solving the Five Most Common SAML Errors	Jônatas Santos	2023-06-09	2,253	--
Directory Sync - How to Provision Users onto Your SaaS App From …	--	2024-01-03	1,767	--
Every SCIM Attribute Explained	--	2023-12-20	1,663	--
February Updates	Min Kim	2024-02-29	209	--
Frictionless Enterprise Customer Onboarding Using the WorkOS Admin Portal	Mahmoud Abdelwahab	2022-02-28	725	--
Getting Started with the WorkOS Multi-Factor Authentication API	Mahmoud Abdelwahab	2022-04-04	935	--
How AI Companies Can Quickly Become Enterprise Ready	--	2023-12-11	1,668	--
How to use SCIM with SSO: A Developer's Guide	--	2023-10-31	1,398	--
IdP vs SP: What is a Service Provider and an Identity Provider?	--	2023-11-06	1,117	--
Introducing AuthKit and User Management APIs	--	2023-11-28	643	--
Introducing Test SSO, an easier way to integrate SSO into your app	Amy Hanlon	2024-02-26	322	--
January Product Updates	Min Kim	2024-01-31	291	--
What are JSON Web Tokens (JWT) used for?	--	2024-01-23	2,072	--
Launch Week Day 1: Sessions	Paul Asjes	2024-03-18	652	--
Launch Week Day 2: Roles	Paul Asjes	2024-03-19	635	--
Launch Week Day 3: Stream WorkOS events to Datadog	Amy Hanlon	2024-03-20	420	--
Launch Week Day 4: Cloudflare Workers & Edge support	Paul Asjes	2024-03-21	474	--
Launch Week Day 5: Impersonation	Paul Asjes	2024-03-22	479	--
March Updates	Min Kim	2024-03-25	238	--
November Product Updates	Min Kim	2023-12-05	253	--
OAuth and JWT: How To Use Together + Best Practices	--	2023-12-18	1,947	--
October Product Updates	Min Kim	2023-10-31	217	--
OIDC vs SAML: Key Differences and Which to Use	--	2023-12-14	1,781	--
Passport.js to WorkOS Migration Guide	Michael Hadley	2023-10-25	708	--
SAML vs. LDAP: How to Choose The Right Protocol	--	2023-11-08	1,621	--
SAML vs OAuth: What's the Difference + Which should you use?	--	2024-03-07	1,770	--
What are SCIM Groups?	--	2024-01-03	1,613	--
5 Examples of SCIM Implementation	--	2024-01-24	1,543	--
SCIM Integrations For Your SaaS	--	2023-11-16	1,923	--
SCIM Protocol Explained	--	2024-02-01	2,179	--
SCIM vs JIT: What’s the Difference	--	2024-02-09	1,946	--
SCIM vs. LDAP: Key Differences + Which To Use	--	2023-11-13	1,887	--
SCIM vs SAML: What Each Does and How To Use Them Together	--	2023-12-22	2,390	--
SCIM 2.0 vs SCIM 1.0 - What’s The Difference Between The Two …	--	2024-03-26	1,832	--
What is Seamless SSO by Microsoft? Everything You Need To Know	--	2023-12-05	1,377	--
September Product Updates	Min Kim	2023-09-29	242	--
WorkOS raises $80m in Series B financing, acquires Modulz	Michael Grinich	2022-06-01	840	6
SFTP Integrations vs. Native APIs for User Provisioning	Ameesha Isaac	2023-10-30	1,157	--
Special offer for all WorkOS customers: Perplexity Enterprise Pro	Michael Grinich	2024-04-30	215	--
Single Sign-On: Acronyms Demystified	Ash Godfrey	2023-06-01	1,672	--
SSO vs Federation: Key Differences + How They Work Together	--	2023-12-26	1,515	--
SSO vs SSL: Does SSO work over SSL?	--	2024-02-02	1,546	--
The Best 5 SSO Providers to power your SaaS app in 2024	--	2023-11-16	2,070	--
The Developer’s Guide to Directory Sync / SCIM	--	2024-01-25	1,902	1
The Developer's Guide to Domain Verification	--	2023-11-15	742	--
The Developer’s Guide to SSO	--	2023-10-27	1,943	3
The Developer's Guide to User Management	--	2024-03-25	3,729	--
The Founder's Guide to Developer-led Growth	Zeno Rocha	2022-11-23	1,152	4
The Guide to Becoming Enterprise Ready for SaaS Product Managers	--	2023-11-06	4,525	--
The Top 3 SCIM Providers for 2024	--	2024-01-19	1,848	--
Understanding CSRF Attacks	Ash Godfrey	2023-10-04	672	--
What is a SCIM Connector and Which One Should You Use?	--	2024-01-30	1,568	--
What is an Identity Provider?	--	2023-10-05	1,017	--
What Is Just-In-Time Provisioning and How Do You Use It?	--	2023-11-30	1,542	--
What is MFA, and why does your app need it?	--	2023-12-13	1,955	--
What is SAML and How Does it Work?	--	2023-12-20	1,695	--
What is SCIM Provisioning? Everything You Need to Know in 5 Minutes	--	2023-10-10	1,848	--
WorkOS 2022 Fall Release	Zeno Rocha	2022-12-08	453	--
WorkOS 2022 Spring Release Recap	Mahmoud Abdelwahab	2022-07-11	464	--
WorkOS 2022 Winter Release Recap	Mahmoud Abdelwahab	2022-03-23	678	--
WorkOS acquires Warrant	Michael Grinich	2024-04-23	309	9
WorkOS is Carbon Neutral	Michael Grinich	2022-05-13	416	--
The Guide to Becoming Enterprise Ready for SaaS Product Managers	--	2023-11-06	4,525	--
How AI Companies Can Quickly Become Enterprise Ready	--	2023-12-11	1,668	--
SCIM Security: Is the User Provisioning Protocol Secure?	--	2024-02-23	1,270	--
SCIM for ADFS	--	2024-02-21	1,060	--
May Updates	Min Kim	2024-05-31	348	--
ADFS vs SSO: Choosing the Right Authentication Solution	--	2024-04-22	1,373	--
Top 5 Open Source SSO Solutions (Pros, Cons And What to Watch …	--	2024-05-01	2,331	--
What does Deprovisioning Mean?	--	2024-04-05	1,320	--
SAML vs SSO: Are they the same thing?	--	2024-02-02	1,548	--
LDAP vs Active Directory: Differences + What You Need to Know	--	2024-01-08	1,698	--
What is Identity Provisioning?	--	2024-05-03	1,550	--
SaaS Authentication: The Best Method(s) to Use For Your App	--	2024-05-14	2,352	--
What is Automated Provisioning?	--	2024-02-07	1,810	--
What is IDaaS and What is it Used For?	--	2024-05-28	1,612	--
LDAP vs SSO	--	2024-03-07	1,774	--
You Need a SCIM Server — Here’s the Easiest Way to Create …	--	2024-05-30	1,656	--
4 Types of Access Control: What you Need to Know + How …	--	2024-04-24	2,854	--
OAuth vs OpenID: Understanding the Key Differences	--	2024-03-18	1,449	--
What is a Directory Service?	--	2024-01-12	1,368	--
SAML 2.0 vs SAML 1.1 - What’s the difference between the SAML …	--	2023-12-22	2,005	--
Migrating to Next.js App Router with zero downtime	Lucas Motta	2024-06-24	1,184	2
Auth in Middleware, Or How I Learned to Stop Worrying and Love …	Paul Asjes	2024-06-25	1,390	--
Why you should rethink your webhook strategy	Pantera Arzhintar	2024-06-26	2,261	--
From four to five 9s of uptime by migrating to Kubernetes	Matheus Lichtnow	2024-06-27	1,738	3
Lessons in safe identity linking	Alex Southgate	2024-06-28	1,669	--
June Updates	Min Kim	2024-07-01	318	--
The Developer's Guide to RBAC: Part I	--	2024-07-11	2,487	--
What is Multi-tenancy? Pros, Cons & Best Practices	--	2024-05-08	1,885	--
What is ReBAC? (Relationship-Based Access Control)	--	2024-05-10	1,566	--
What is Authentication (AuthN)?	--	2024-05-17	1,859	--
The Developer’s Guide to RBAC and IdPs: Part II	--	2024-07-18	1,910	--
Use cases and benefits of supporting SCIM	--	2024-07-16	2,029	--
Introducing Role-Based Access Control (RBAC) for AuthKit	Min Kim	2024-07-23	560	--
Unlocking the power of SCIM: streamlining enterprise user management	--	2024-07-16	2,034	--
Single-Tenant vs Multi-Tenant: Which Option is Right for Your SaaS App?	--	2024-06-18	1,644	--
SSO vs OAuth: Key Differences You Must Know	--	2024-06-18	1,337	--
The 3 Best Alternatives to SAML SSO	--	2024-06-18	1,530	--
Implementation challenges of a homegrown SCIM solution	--	2024-07-30	2,108	--
July Updates	Min Kim	2024-08-01	241	--
Build vs buy part I: complexities of building SSO and SCIM in-house	Min Kim	2024-07-30	1,770	--
Build vs. buy part II: ROI comparison between homegrown and pre-built solutions	Min Kim	2024-08-22	2,595	--
Managing SAML X.509 Certificates	Sheheryar Ali	2024-08-26	1,236	--
August Updates	Min Kim	2024-09-04	174	--
Auth Glossary	--	2024-08-26	1,053	--
What is RBAC? How it works and when to use it.	--	2024-07-17	1,356	--
What is Attribute Based Access Control (ABAC)?	--	2024-09-03	1,638	--
What is Authorization (AuthZ)?	--	2024-08-28	1,100	--
Secure authentication for frontend apps with PKCE	Maria Paktiti	2024-09-20	887	--
The Developer’s Guide to Auth Sessions	--	2024-09-27	1,443	--
Session management for frontend apps with AuthKit	Maria Paktiti	2024-09-27	1,003	--
The five different types of authentication	--	2024-09-16	2,288	--
What is Fine-Grained Access Control?	--	2024-09-12	1,537	--
OAuth vs. OAuth 2: Differences + What you need to know	--	2024-09-18	1,787	--
What are fine-grained permissions?	--	2024-09-19	1,513	--
Coarse-grained vs. fine-grained access control: which should you use?	--	2024-09-13	1,375	--
September Updates	Min Kim	2024-10-01	262	--
What is OpenID Connect (OIDC)?	--	2024-10-14	1,871	--
SCIM vs SSO: What's the difference and how do they work together?	--	2024-08-20	1,099	--
What is Enterprise SSO and why does it matter?	--	2024-10-15	1,371	--
From RBAC to Fine-Grained Authorization part II: integrate with your app	Maria Paktiti	2024-10-18	2,134	--
From RBAC to Fine-Grained Authorization part I: design your model	Maria Paktiti	2024-10-17	2,554	--
What is Single Logout and why is there such limited support for …	--	2024-09-30	2,010	--
How SCIM provisioning works - tutorial with API calls	--	2024-10-24	1,463	--
The Developer’s Guide to Fine-Grained Authorization	--	2024-10-24	1,896	--
Ruby SAML CVE-2024-45409: As bad as it gets and hiding in plain …	Zack Proser	2024-10-23	1,140	--
X.509 certificates: what they are & how to get one	--	2024-10-22	1,478	--
What is data access control?	--	2024-08-21	1,848	--
The easiest way to implement SAML in any app	--	2024-10-30	1,239	--
What is the Azure AD or Entra ID app gallery and why …	--	2024-10-31	1,221	--
Model your B2B SaaS with organizations	Maria Paktiti	2024-11-01	3,384	--
How to secure RAG applications with Fine-Grained Authorization: tutorial with code	--	2024-11-05	1,090	--
Launch Week Day 4: Cloudflare Workers & Edge support	Paul Asjes	2024-03-21	474	--
Launch Week Day 2: Roles	Paul Asjes	2024-03-19	635	--
Launch Week Day 5: Impersonation	Paul Asjes	2024-03-22	481	--
OTP bots explained: what they are and how to stop them	--	2024-11-04	1,640	--
What is the Okta Integration Network?	--	2024-11-07	1,306	--
How to add SSO to your app with WorkOS	--	2024-11-06	1,476	--
Launch Week Day 1: Sessions	Paul Asjes	2024-03-18	652	--
Launch Week Day 3: Stream WorkOS events to Datadog	Amy Hanlon	2024-03-20	420	--
How to add social logins in your app with WorkOS	--	2024-11-11	1,393	--
What is an Authentication token?	--	2024-11-07	1,046	--
Top 5 Google Zanzibar open-source implementations in 2024	--	2024-11-08	1,368	--
How SCIM deprovisioning works	Maria Paktiti	2024-11-08	1,056	--
What is user provisioning?	--	2024-11-08	744	--
What is Universal Login and how does it work?	--	2024-11-08	1,179	--
JWT validation: how-to and best libraries to use	Maria Paktiti	2024-11-11	1,871	--
ReBAC vs RBAC: What's the difference and which should you choose?	--	2024-11-08	792	--
Best practices for CLI authentication: a technical guide	Zack Proser	2024-11-14	2,258	--
What is SCIM? The ultimate guide	--	2024-11-13	4,868	--
How SAML certificate renewal works - and what happens when it fails	Drew Emery	2024-11-14	985	--
SCIM challenges: navigating the idiosyncrasies of different providers	Maria Paktiti	2024-11-15	2,017	--
Radar	Ryan Cooke	2024-11-19	1,048	--
Passkeys, a safer and simpler alternative to passwords	Maria Paktiti	2024-11-18	600	--
How to build browser-based OAuth into your CLI with WorkOS	Zack Proser	2024-11-19	1,610	--
Widgets — ready-made components for complete enterprise features	Maria Paktiti	2024-11-21	482	--
Fine-Grained Authorization is now generally available	Aditya Kajla	2024-11-20	750	--
Actions — customize AuthKit behavior in real-time	Pantera Arzhintar	2024-11-21	727	--
Understanding cross-site scripting (XSS) attacks	Maria Paktiti	2024-11-15	1,310	--
Next.js B2B Starter Kit — fast-track your SaaS app from 0 to …	Paul Asjes	2024-11-22	749	3
Entitlements sync between Stripe and your app	Dan Dorman	2024-11-22	896	--
RBAC vs. FGA: What's the difference and how do they work together?	--	2024-11-22	807	--
How to map role data from identity providers to roles in your …	Maria Paktiti	2024-11-25	1,323	--
The Ultimate Guide to OIDC providers (or building your own)	--	2024-11-22	1,517	--
RBAC vs IAM: what's the difference and how do they work together?	--	2024-11-26	1,228	--
Top 7 API authentication methods and how to use them	--	2024-11-27	2,729	--
What is entitlement management? A guide to secure access	--	2024-11-26	1,768	--
The 5 access control models: benefits + which to choose	--	2024-11-29	2,645	--
8 Role-Based Access Control (RBAC) examples in action	--	2024-12-02	1,789	--
The complete guide to OAuth 2.0	Maria Paktiti	2024-12-05	3,852	--
The 5 best Clerk alternatives in 2024	--	2024-08-21	1,716	--
Failed authentication events: use cases and how-to	Maria Paktiti	2024-12-06	1,623	--
Common SAML security vulnerabilities and how to defend against them	Maria Paktiti	2024-12-04	1,514	--
What is granular control? Benefits + examples	--	2024-08-27	1,362	--
How to implement access control: step by step	--	2024-08-19	1,263	--
7 Attribute-Based Access Control (ABAC) examples	--	2024-08-29	1,915	--
How to build document access control with S3, WorkOS FGA, and Lambda …	Zack Proser	2024-12-05	1,553	--
Top user management features for SaaS + implementation tips	--	2024-08-30	2,203	--
Access management: What it is and how it works	--	2024-12-10	3,532	--
The 5 best Clerk alternatives in 2024	--	2024-12-11	1,707	--
4 WorkOS alternatives + which to choose	--	2024-12-11	1,875	--
RBAC vs. ACL: what's the difference and how do they work together?	--	2024-12-11	1,232	--
The ultimate guide to user management in 2024	--	2024-12-11	1,975	--
The 5 best Frontegg alternatives in 2024	--	2024-12-11	1,818	--
5 best Auth0 alternatives in 2024: head-to-head	--	2024-12-11	1,945	--
6 best user management services for 2024	--	2024-12-11	1,941	--
Why Google Zanzibar shines at building authorization	Karan Kajla	2024-12-10	1,344	--
SSO best practices	Maria Paktiti	2024-12-10	2,735	--
The 5 best user management software tools in 2024	--	2024-12-12	2,351	--
Auth0 SSO: Is it worth the high cost?	--	2024-12-12	1,094	--
Auth0 vs. Cognito vs. WorkOS: Which is best in 2024?	--	2024-12-12	1,994	--
Clerk pricing: How it works and compares to WorkOS	--	2024-12-12	788	--
Stytch vs. Auth0 vs. WorkOS: Which is best?	--	2024-12-12	1,430	--
Frontegg vs. Auth0 vs. WorkOS: which is best in 2024?	--	2024-12-12	1,306	--
Clerk vs. Auth0 vs. WorkOS: which should you choose?	--	2024-12-12	1,284	--
November Updates	Min Kim	2024-12-12	328	--
FGA’s meaning: definition, benefits, and real-world examples	--	2024-12-12	1,104	--
Seamless onboarding with the WorkOS Admin Portal	Drew Emery	2024-12-13	1,900	--
SCIM best practices	Maria Paktiti	2024-12-16	1,893	--
The 10 best RBAC open-source solutions in 2024	--	2024-12-20	1,281	--
The 5 best ABAC solutions for your SaaS in 2024	--	2024-12-23	1,465	--
How to implement SAML SSO with WorkOS, Okta, and Node	Maria Paktiti	2024-12-31	2,131	--
How to implement Login with GitHub using Go and WorkOS	Maria Paktiti	2025-01-02	1,485	--
How to implement SAML SSO with WorkOS, Entra ID, and Node	Maria Paktiti	2025-01-03	2,334	--
How to implement Log in with Google using Go and WorkOS	Maria Paktiti	2025-01-07	1,784	--
We shipped our auth server to your browser with WASM. Here's how …	Aaron Tainter	2025-01-03	1,480	1
What is multitenant authentication?	--	2025-01-03	1,356	--
AuthQuake: Microsoft's MFA system vulnerable to TOTP brute force attack	Zack Proser	2025-01-03	787	--
Everything you need to know about the nOAuth Microsoft Azure AD vulnerability	Maria Paktiti	2024-09-16	1,005	--
How to implement row-level security with WorkOS FGA and Postgres: tutorial and …	Zack Proser	2025-01-10	1,259	--
Best practices for secrets management	Zack Proser	2025-01-10	1,434	--
How to build a user management dashboard with WorkOS and Node	Maria Paktiti	2025-01-13	1,808	--
How to build SAML SSO with WorkOS, Okta, and Go	Maria Paktiti	2025-01-09	2,079	--
How to build SAML SSO with WorkOS, Okta, and Ruby	Maria Paktiti	2025-01-14	2,139	--
What is device fingerprinting and how does it work?	Zack Proser	2025-01-16	1,517	--
How do you know when you’ve hit product-market fit?	Michael Grinich	2025-01-16	1,021	1
How WorkOS Radar does rate limiting with device fingerprinting	Zack Proser	2025-01-17	595	--
Understanding Zero Trust security	Maria Paktiti	2025-01-20	1,961	--
How WorkOS Radar really works	--	2025-01-16	757	--
How WorkOS Radar's bot detection works	--	2025-01-16	498	--
How to run DeepSeek locally	Zack Proser	2025-01-29	867	84
How to build SAML SSO with WorkOS, JumpCloud, and Node	Maria Paktiti	2025-01-21	2,081	--
Breaking the AI Mold: China's DeepSeek-R1 pushes local and open AI forward	Zack Proser	2025-01-23	886	--
Email deliverability and spam prevention: why your emails aren’t getting delivered and …	Maria Paktiti	2025-01-30	1,499	--
What does it mean to distill a machine learning model or LLM?	--	2025-01-31	1,016	--
What is Ente Auth?	Zack Proser	2025-01-23	665	--
How to build SAML SSO with WorkOS, Okta, and Python	Maria Paktiti	2025-01-15	2,200	--
What is Authentik?	Zack Proser	2025-01-28	513	--
Google OAuth vulnerability can expose sensitive data of failed startups	Maria Paktiti	2025-01-22	596	--
Shadcn-ui: What is it, and why do you care?	Zack Proser	2025-01-23	497	--
Passwordless authentication: your options explained	Maria Paktiti	2025-01-31	2,772	--
Defending against bad actors: WorkOS Radar vs Castle vs Auth0 vs Stytch …	Maria Paktiti	2025-01-27	2,294	--
Which auth providers support SCIM?	Maria Paktiti	2025-02-06	2,278	--
Top AI Agent frameworks and platforms in 2025	Zack Proser	2025-02-14	857	--
How to build RBAC with WorkOS and Node	Maria Paktiti	2025-02-12	1,316	--
Understanding the OAuth 2.0 Client Credentials flow	Maria Paktiti	2025-02-14	1,296	--
The battle against bots: How to detect and stop them	Maria Paktiti	2025-02-11	2,884	--
What is federated identity?	Maria Paktiti	2025-02-07	923	--
Scaling up: Why Fine-Grained Authorization is key as your product moves upmarket	Maria Paktiti	2025-02-10	1,448	--
How to build secure AI agents that are Enterprise Ready	Zack Proser	2025-02-05	1,103	--
What is Arcade.dev? An LLM tool calling platform	Zack Proser	2025-02-13	972	--
RBAC best practices	Maria Paktiti	2025-02-13	1,492	--
EKM vs KMS: An introduction to key management	Maria Paktiti	2025-02-17	1,750	--
Session management best practices	Maria Paktiti	2025-02-19	1,928	--
The best feature flag providers for apps in 2025	Zack Proser	2025-02-20	1,668	--
Identity federation vs identity delegation	Maria Paktiti	2025-02-24	1,137	--
How encryption works in a Data Vault using EKM	Maria Paktiti	2025-02-20	1,153	--
How to stop bots with honeypots	Maria Paktiti	2025-02-21	1,049	--
What is the difference between Radix and shadcn-ui?	Zack Proser	2025-02-20	817	--
Relationship-based vs policy-based authorization: what's the difference and how do they work …	Maria Paktiti	2025-02-18	2,765	--
AI agents are taking over: How autonomous software changes research and work	Zack Proser	2025-02-20	1,415	--
What Is API Authentication? A guide to OAuth 2.0, JWT, and key …	Zack Proser	2025-02-26	1,450	--
Tenant isolation in multi-tenant systems: What you need to know	Maria Paktiti	2025-02-27	1,924	--
OAuth 2.0 and OpenID Connect: The evolution from authorization to identity	Zack Proser	2025-02-26	1,022	--
Context is king: tools for feeding your code and website to LLMs	Zack Proser	2025-02-26	1,326	--
Securing AI agents: authentication patterns for Operator and computer using models	Zack Proser	2025-02-26	1,500	--
What is the aud claim in identity, authentication, and authorization?	Zack Proser	2025-02-27	477	--
How to add custom claims to JWTs	Zack Proser	2025-02-27	402	--
How to add granular permissions to your API using OAuth scopes	Maria Paktiti	2025-02-28	2,124	--
How it felt to reach Product-market fit (PMF) at WorkOS—and what no …	Michael Grinich	2025-03-03	998	--
JWT storage 101: How to keep your tokens secure	Maria Paktiti	2025-03-04	2,603	--
Identity tokens vs Access tokens: understanding the key differences	Zack Proser	2025-03-07	848	--
What is Claude Code? An agentic developer tool	Zack Proser	2025-03-07	695	--
FGA vs ABAC: Understanding the differences	Maria Paktiti	2025-03-05	1,326	--
What is the Model Context Protocol (MCP)?	Zack Proser	2025-03-07	1,373	--
OAuth best practices: We read RFC 9700 so you don’t have to	Maria Paktiti	2025-03-06	2,028	--
When database security is not enough: How the cloud makes application-level encryption …	Maria Paktiti	2025-03-07	1,433	--
Introducing Manus: The general AI agent	Zack Proser	2025-03-13	767	--
Defending OAuth: Common attacks and how to prevent them	Maria Paktiti	2025-03-12	3,923	--
Spot the bots: How to track malicious activity with JavaScript tagging	Maria Paktiti	2025-03-10	1,797	--
SAMLStorm: Critical Authentication Bypass in xml-crypto and Node.js libraries	Mark Tran	2025-03-14	2,153	10
GAIA Benchmark: evaluating intelligent agents	Zack Proser	2025-03-13	665	--
What are Cursor Rules?	Zack Proser	2025-03-11	484	--
Composio.dev overview	Zack Proser	2025-03-11	672	--
The ABCs of token security: JWS, JWE, JWK, and JWKS explained	Maria Paktiti	2025-03-13	2,197	--
How to deploy Laravel apps with enterprise-ready authentication	Conner Simmons	2025-03-18	738	--
WorkOS Vault: Advanced Encryption for Sensitive Data	Ryan Cooke	2025-03-18	1,721	--
WorkOS Connect	Michael Hadley	2025-03-17	949	--
Getting Started with Claude Desktop and custom MCP servers using the TypeScript …	Zack Proser	2025-03-17	1,055	--
Custom Metadata, External ID, and JWT Templates	Maxwell Hammad	2025-03-19	873	--
New enterprise login integrations in AuthKit	Cameron Matheson	2025-03-20	1,073	--
New widgets available for user profiles and organization switching	Lucas Motta	2025-03-21	739	--
How to build Login with LinkedIn using Node and WorkOS	Maria Paktiti	2025-03-27	1,286	--
Beyond the basics: Why device fingerprinting is mission-critical in 2025	Zack Proser	2025-03-25	1,031	--
How AI Agents authenticate and access systems	Zack Proser	2025-03-25	1,346	--
How to choose the right authorization model for your SaaS	Maria Paktiti	2025-03-26	2,411	--
Advice for coding with AI	Zack Proser	2025-03-25	538	--
n8n: The workflow automation tool for the AI age	Zack Proser	2025-03-24	1,161	--
Zod for TypeScript: A must-know library for AI development	Zack Proser	2025-03-26	1,027	--
WorkOS, Next.js, and CVE-2025-29927	Nick Nisi	2025-03-25	473	--
How to build Login with Slack using Node and WorkOS	Maria Paktiti	2025-03-31	1,240	--
How to build Login with GitLab using Node and WorkOS	Maria Paktiti	2025-03-28	1,338	--
An introduction to WebAuthn	Maria Paktiti	2025-03-24	2,295	--
Credential stuffing vs. brute force attacks: Key differences and how to stop …	Maria Paktiti	2025-03-28	1,610	--
How to build Login with LinkedIn using Python and WorkOS	Maria Paktiti	2025-04-01	1,277	--
Top Ruby gems for authentication & authorization	Maria Paktiti	2025-04-02	4,267	--
Securing your app with Risk-Based Authentication and AI	Maria Paktiti	2025-04-04	3,099	--
How to build a game-building agent system with CrewAI	Zack Proser	2025-04-03	1,578	--
Smithery AI: A central hub for MCP servers	Zack Proser	2025-04-08	832	--
HMAC vs. RSA vs. ECDSA: Which algorithm should you use to sign …	Maria Paktiti	2025-04-08	4,053	--
Generative AI at the edge with Cloudflare Workers	Zack Proser	2025-04-07	1,401	--
Security risks of iframes: Protecting your app from potential attacks	Maria Paktiti	2025-04-10	2,114	--
Prisma ORM for TypeScript - A technical primer	Zack Proser	2025-04-10	913	--
ArkType: A high-performance runtime type validation for TypeScript	Zack Proser	2025-04-14	560	--
How to handle JWT in Python	Maria Paktiti	2025-04-14	2,459	--
MCP, ACP, A2A, Oh my!	Zack Proser	2025-04-16	1,151	--
From 1.0.0 to 2025.4: Making sense of software versioning	Maria Paktiti	2025-04-17	4,738	--
Agent to agent, not tool to tool: an engineer’s guide to Google’s …	Zack Proser	2025-04-18	881	--
WorkOS + Cloudflare MCP: Plug and Play Auth for Agentic AI Builders	Zack Proser	2025-04-16	636	--
IBM’s Agent Communication Protocol (ACP): A technical overview for software engineers	Zack Proser	2025-04-22	1,149	--
SAML's signature problem: It’s not you, it’s XML	Maria Paktiti	2025-04-22	1,246	8
Why your app needs refresh tokens—and how they work	Maria Paktiti	2025-04-23	1,782	--
Best practices for MCP secrets management	Zack Proser	2025-04-28	897	--
DBConnection pooling deep dive	William Huba	2025-04-28	1,867	--
In-Memory Distributed State with Delta CRDTs	William Huba	2025-04-28	2,517	--
oRPC: OpenAPI Remote Procedure Call for Type-Safe APIs	Zack Proser	2025-04-28	862	--
Mastra.ai Quickstart - How to build a TypeScript agent in 5 minutes …	Zack Proser	2025-04-29	896	--
WorkOS vs. Auth0 vs. Stytch: Which is best?	--	2024-12-12	1,584	--
On-premises and hybrid authentication: Challenges and best practices	Maria Paktiti	2025-05-01	1,750	--
Diagnosing SAML assertion failures: A step-by-step debugging guide	Maria Paktiti	2025-05-02	4,468	--
The hidden pitfalls of SAML metadata: How to avoid downtime	Maria Paktiti	2025-04-30	2,642	--
WorkOS vs. Auth0 vs. Clerk: Which should you choose?	--	2024-12-12	1,707	--
Introducing RFC 9728: Say hello to standardized OAuth 2.0 resource metadata	Maria Paktiti	2025-05-08	1,304	--
December Updates	Garrett Galow	2024-12-31	337	--
January Updates	Garrett Galow	2025-02-06	191	--
March Updates	Garrett Galow	2025-03-31	465	--
April Updates	Conner Simmons	2025-04-30	313	--
What is NIST and why should developers care?	Maria Paktiti	2025-05-12	1,268	--
Secure by design: How engineers should build and consume APIs	Maria Paktiti	2025-05-13	2,581	--
How to sync users from Entra ID to your app using Node …	Maria Paktiti	2025-05-15	1,778	--
Email deliverability troubleshooting guide	Maria Paktiti	2025-05-22	5,317	--
Why building your own BYOK is a trap	Maria Paktiti	2025-05-22	2,300	--
Why implementing SAML from scratch is a terrible idea	Maria Paktiti	2025-05-20	2,080	--
Your codebase is now addressable: Codex, Jules, and the Rise of agentic …	Zack Proser	2025-05-20	550	--
Security threats in SPAs and how to defend against them	Maria Paktiti	2025-05-19	1,666	--
Agno: The agent framework for Python teams	Zack Proser	2025-05-20	593	--
MCPNight 2025: When the AI infra community overflowed the Exploratorium in San …	Zack Proser	2025-05-21	650	--
February Updates	Garrett Galow	2025-03-06	312	--
OAuth 2.1: What’s new, what’s gone, and how to migrate securely	Maria Paktiti	2025-05-14	1,384	--
Flipping the flow: How MCP sampling lets servers ask the AI for …	Maria Paktiti	2025-05-23	1,626	--
What is free trial abuse -- and how can you stop it?	Zack Proser	2025-05-29	899	--
Device Authorization Grant: Solving OAuth for screens without keyboards	Maria Paktiti	2025-05-28	885	--
How MCP servers work: Components, logic, and architecture	Maria Paktiti	2025-05-30	2,290	--
OpenAI's Codex wants to become your AI coworker	Zack Proser	2025-05-29	642	--
WorkOS vs. Auth0 vs. Frontegg: Which is best?	--	2024-12-12	1,632	--
Securing AI agents: A guide to authentication, authorization, and defense	Maria Paktiti	2025-06-02	2,299	--
May Updates	Conner Simmons	2025-06-02	389	--
Understanding bearer tokens: What are they and how to use them securely	Maria Paktiti	2025-06-03	1,058	--
How AI agents connect to systems: A technical guide	Maria Paktiti	2025-06-05	1,565	--
Why AI still needs you: Exploring Human-in-the-Loop systems	Maria Paktiti	2025-06-06	2,629	--
How to implement an organization switcher with WorkOS and React	Maria Paktiti	2025-06-04	1,392	--
SCIM: The hidden growth engine behind tools like Slack and Figma	Maria Paktiti	2025-06-11	1,872	--
AI Isn't Magic. Context Chaining Is.	Zack Proser	2025-06-10	1,122	--

Plushcap, by Matt Makai. 2021-2026.