Behind every secure MCP integration is a stack of OAuth standards working in harmony. Learn how they combine to deliver seamless authorization for LLMs.
Professional knowledge workers use AI tools more efficiently, because they understand how to manage context. Learn the best tactics to uplevel your entire organization.
New this month: MCP Authorization, update user emails, SAML custom attributes, & more
Give Codex a bug report and it will spend the next 30 minutes debugging, writing tests, and submitting a pull request—while you grab coffee. What does it mean for developers?
What would you do if every new “user” signing up for your app cost you money?
A practical guide for developers implementing secure, user-friendly login flows on smart TVs, IoT devices, and CLIs.
Explore how MCP transforms server logic with AI-powered completions, human approvals, and transparent workflows.
A step-by-step guide to diagnose, fix, and prevent email delivery issues.
Enterprise customers want to bring their own keys. You don’t want to build the infrastructure to support it. WorkOS Vault bridges the gap with the fastest way to ship BYOK.
On May 14, 2025, we threw the first-ever MCP Night, at the Exploratorium in San Francisco, dedicated to one of the most exciting developments in applied AI: the Model Context Protocol (MCP).
SAML might look simple, but under the hood, it’s a legacy minefield of XML signatures, IdP quirks, and security pitfalls. Here’s why building it yourself is a guaranteed regret.
Platforms like OpenAI Codex and Google Jules are taking a swing at distributed cognition for software teams. What does this mean?
Agno is an open-source framework that helps you build clean, composable and Pythonic agentic applications with tools, memory and reasoning capabilities.
A developer’s guide to identifying and fixing the most common security flaws in Single-page applications.
Step-by-step tutorial that walks you through the necessary steps to add automated user provisioning to your app using SCIM, Entra ID, Node, and WorkOS, with just a few lines of code.
Learn what’s changed in OAuth 2.1, including the removal of implicit flow, mandatory PKCE, and modern refresh token strategies. This guide walks you through the security upgrades and offers a clear migration checklist to help you stay compliant and secure.
A practical guide to avoiding common pitfalls and implementing security best practices across both internal and third-party API integrations.
What if the most practical security guidance didn’t come from a startup, but from a government agency? Read how NIST’s peer-reviewed frameworks are powering real-world security.
Our global team is growing and we’re hiring all types of roles.
WorkOS builds developer tools for quickly adding enterprise features to applications.
This site uses cookies to improve your experience. Please accept the use of cookies on this site. You can review our cookie policy here and our privacy policy here. If you choose to refuse, functionality of this site will be limited.
.webp)
.webp)
.webp)
.webp)
