Blog

New this month: Strengthened SSO Security with Sign-in Consent, CIMD Support for MCP Auth, AuthKit SDK for TanStack Start, & more

‍AWS’s new “open training” approach could fundamentally reshape who gets to build frontier-grade AI models—and what they can do with their proprietary data.

What MCP Tasks are, why they matter, and the full technical guide to implementing them.

A practical, end-to-end deep dive into data isolation, tenant-aware auth, scaling, and compliance for B2B SaaS.

A technical guide to MCP client registration: Dynamic Client Registration (DCR) vs Client ID Metadata Documents (CIMD).

How modern apps get access to your data without your password.

WorkOS FGA introduces a new approach to SaaS authorization that extends familiar RBAC into a flexible, hierarchical model designed for real product evolution. Learn why traditional RBAC and schema-driven FGA systems break down as applications grow, how WorkOS’ resource-scoped model avoids rewrites and role explosion, and how it supports enterprise identity mapping, high-cardinality architectures, and emerging AI agent workflows.

Keep tenants isolated, roles sane, and your auth layer out of incident reviews.

The checklist that makes authorization boring, predictable, and surprisingly hard to break.

Year two starts with fewer hacks and more infrastructure.

Read how the agent connector boom turned into the internet’s newest security liability and how to fix it before the next CVE.

A practical guide to the best OAuth/OIDC platforms for securing autonomous AI agents.

Everything you need to know about choosing a SAML provider for enterprise SSO in modern B2B platforms.

Everything you need to know about OTPs, from HOTP and TOTP internals to real-world pros and cons, plus how WorkOS can help you implement them cleanly.

WorkOS is a proud partner in the Microsoft Entra Agent ID partner ecosystem.