November Updates

WorkOS Connect has introduced Client ID Metadata Document (CIMD) support for MCP authentication, allowing clients to identify themselves to authorization servers securely without pre-registration by providing an HTTPS URL as a client_id. This new feature complements the existing dynamic client registration (DCR) method. Additionally, a consent screen has been added to Single Sign-On (SSO) for enhanced security against CSRF and phishing attacks, prompting users to confirm their profile information. The release of the AuthKit SDK for TanStack Start offers a comprehensive suite of tools for implementing secure, server-first authentication in Start apps, including middleware and utilities for handling sessions and redirects. Furthermore, WorkOS now supports SSO connections through the Clever identity platform using OIDC, with simplified setup instructions available in the Admin Portal. Other updates include collaboration with Microsoft on the Entra Agent ID development and an updated Developer’s Guide to SAML authentication, providing detailed guidance on various aspects of SAML.