A detailed glimpse at Project Horizon: an internal code factory at WorkOS.
Grant agents time-limited access to OAuth connections using Pipes and MCP.
Develop with WorkOS entirely from your terminal, with agent-ready tooling built in.
How SSO eliminates the manual work of enterprise user onboarding.
What happens to a user's session when they switch organizations, how to scope tokens to prevent cross-tenant leaks, and where most implementations still go wrong.
I tried to reverse-engineer how SSO works from three angles: as the employee logging in, the IT admin managing access, and the developer who needs to support it. Here is what I learned.
Inside Claude Day at WorkOS: 39 teams, a one-day hackathon, and one rule — the non-engineer drives. Here's what we built and what we learned.
Build an authorization model your B2B app won't outgrow: how to go from flat roles to fine-grained, resource-scoped access control without a rewrite.
A developer's guide to Client-Initiated Backchannel Authentication (CIBA) for agentic systems.
User-scoped keys, org-scoped keys, and M2M applications cover most agent scenarios in B2B products, but the right choice depends on who the agent acts for, and how it runs.
How to give AI agents their own identity, scope what they can do, and defend your systems when they act autonomously.
How an AI operational finance startup went from founding to Vercel AI Accelerator winner without slowing down for enterprise auth.
Everything you need to know to implement and validate JWTs securely in PHP: from signing to verifying with JWKS, with code examples and best practices for both vanilla PHP and Laravel.
Seven errors that break Entra ID SAML SSO, and how to resolve them.
WorkOS designers use AI to prototype in production, explore wider solution spaces, and design for agents. Here's how our craft is changing.
A practical, security-first comparison of the two browser-delegated OAuth flows that CLIs use, with recommendations for laptops, headless servers, containers, and CI runners.
Implement OAuth 2.0 Device Code and PKCE flows in TypeScript, route users through Okta SSO, and pick the right pattern for headless and local environments, with WorkOS AuthKit.
How WorkOS uses AI-powered code generation to build and maintain SDKs across multiple languages from a single OpenAPI spec.
Please try a different search
Our global team is growing and we’re hiring all types of roles.
WorkOS builds developer tools for quickly adding enterprise features to applications.
We use cookies for analytics and advertising. See our cookie policy for details.
.webp)
.jpg){kind=avatar}
.webp)
.webp)
