Blog

A practical guide to SSO platforms for engineering teams selling to enterprise, evaluated on the features that actually close deals.

Bearer tokens prove nothing about who holds them. mTLS and DPoP fix that. Token Binding tried and failed, and the reason why matters more than the failure itself.

SSO, SCIM, and admin portals: which platform actually gets you to enterprise-ready without the six-month detour?

A recap of the MCP Night 4 panel with WorkOS, Cloudflare, Sentry, and Chat PRD on how agents are reshaping products, users, and commercialization.

Recap of Rhys Sullivan's MCP Night 4 lightning demo: shipping generative UI from agents into products like PostHog using Executor and code mode.

Evan Bacon's MCP Night 4 lightning demo: npx servesim puts the iOS simulator inside the browser so coding agents can build mobile apps in a loop.

Adi Singh's MCP Night 4 lightning demo: how AgentMail turned its signup flow into a single prompt and why email is the identity layer for agents.

Karen Serfaty, founder of AgentCard, showed how agents can buy things with one-time cards at MCP Night 4. Here's a recap of the lightning demo.

Recap of MCP Night 4 at the Regency Loom: the case for agentic registration, a live demo of Auth.md, and why agent-ready is the new enterprise-ready.

How audience-bound tokens work, and why they're required for secure MCP authorization

A step-by-step guide to migrating homegrown SAML and OAuth/OIDC connections to WorkOS with zero customer downtime

What engineers and founders need to know about designing APIs, tools, and interfaces for agent-driven workflows

Google enforces exact-match redirect URIs with no wildcards and no exceptions. Here's how to handle that cleanly when every customer has their own domain.

Introducing auth.md — an open protocol that lets agents register for your service.

A recap of the WorkOS Applied AI showcase: the team, the tools (WOW, Horizon, Case, Wallaby), and what we've learned shipping AI internally.