Blog

Mar 21, 2025

New widgets available for user profiles and organization switching

We just released four new widgets to make your life easier: user profile, user sessions, user security, and organization switcher. They are now available for free to all AuthKit customers.

Lucas Motta

Product

Mar 20, 2025

New enterprise login integrations in AuthKit

With AuthKit enterprise logins are now easier than ever. We are announcing the addition of key B2B login providers, like LinkedIn, Slack, Xero, and more, giving your users seamless access to your platform with the credentials they already use.

Custom Metadata, External ID, and JWT Templates

Expand your WorkOS integration by customizing attributes on users, orgs, and session tokens.

Agent to agent, not tool to tool: an engineer’s guide to Google’s A2A protocol

Think of MCP as “plug this model into my data” and A2A as “now let several specialised models talk to each other.”

From 1.0.0 to 2025.4: Making sense of software versioning

Confused by versioning? This guide breaks down the top strategies to help you pick the right one, keeping your project organized and your users in the loop.

MCP, ACP, A2A, Oh my!

Let’s explore the MCP, ACP and A2A protocols, understand what they do, and highlight how they differ and complement one another.

WorkOS + Cloudflare MCP: Plug and Play Auth for Agentic AI Builders

Until now, plugging your existing user authentication system into MCP servers was tricky. That’s where WorkOS and Cloudflare step in.

ArkType: A high-performance runtime type validation for TypeScript

ArkType is a TypeScript-first runtime validation library built to erase the boundary between static type safety and runtime enforcement.

How to handle JWT in Python

Everything you need to know to implement and validate JWTs securely in Python — from signing to verifying with JWKS, with code examples and best practices throughout.

Prisma ORM for TypeScript - A technical primer

Prisma is one of the most popular Object-Relational Mappers (ORMs) in the TypeScript/JavaScript ecosystem due to its robust type-safety guarantees and seamless integration with frameworks like Next.js.

Security risks of iframes: Protecting your app from potential attacks

Iframes might seem convenient, but they come with serious security risks like XSS, session hijacking, and phishing. This article breaks down why iframes can put your site at risk and how to protect it.

Smithery AI: A central hub for MCP servers

Smithery AI is a registry and management platform for Model Context Protocol (MCP) servers.

HMAC vs. RSA vs. ECDSA: Which algorithm should you use to sign JWTs?

Confused about which algorithm to use for signing JWTs? We analyze everything about HMAC, RSA, and ECDSA—so you can choose the perfect algorithm for your security needs.

Generative AI at the edge with Cloudflare Workers

Large language models are reshaping how we build apps—but is your infrastructure ready for them?

Securing your app with Risk-Based Authentication and AI

Learn how Risk-Based Authentication (RBA) and AI can transform your app’s security, with best practices and insights to protect against evolving threats.

How to build a game-building agent system with CrewAI

A hands-on guide with patterns, agents, and executable examples

Top Ruby gems for authentication & authorization

Looking to secure your Ruby on Rails app? Discover the top gems for authentication and authorization that will protect your users. From seamless sign-ins to granular user permissions, these gems have got you covered.

How to build Login with LinkedIn using Python and WorkOS

Step-by-step tutorial that walks you through the necessary steps to add Login with LinkedIn to your app using Python and WorkOS.

Maria Paktiti

Apr 1, 2025

We’re hiring

Our global team is growing and we’re hiring all types of roles.

View open roles

About us

WorkOS builds developer tools for quickly adding enterprise features to applications.

Learn more