A detailed glimpse at Project Horizon: an internal code factory at WorkOS.
Grant agents time-limited access to OAuth connections using Pipes and MCP.
Develop with WorkOS entirely from your terminal, with agent-ready tooling built in.
Honeypots are traps you can set up at your website to catch bots. Read how you can implement one and what are the best practices to follow.
This article examines five leading feature toggle providers in 2025—LaunchDarkly, Optimizely, Unleash, Bucket, Split.io, and Eppo—each offering unique benefits for different technical and organizational requirements.
Interest in AI agents is exploding, and they're already transforming how we work and perform research. Learn how.
Keeping data safe, especially sensitive data like PII, is an increasingly difficult project. Read about Data Vaults and EKM and how enterprises can use them to ensure data integrity and confidentiality.
Radix and shadcn-ui are both component libraries for React, but which should you choose?
If you think you’re done when you authenticate a user, think again. Proper session management can make or break your app, both security and UX-wise. We gathered some industry best practices to help you get started.
Authorization rules can be expressed as policies, relationships, or both. Read how each one works, their pros and cons, and find the best for your case.
Keeping your data safe by encrypting them is crucial, but how do you keep the encryption keys safe? Read what EKM and KMS are and how they work together to do exactly that.
AI agent frameworks and platforms empower developers to build software that can reason, remember, and act independently. Which should you choose?
Large Language Models (LLMs) excel at producing text, but many applications need them to do more: raise GitHub issues, star a repository, or send Twilio messages in real time.
Ensure the right people have the right access. Check out our RBAC best practices guide and avoid common pitfalls.
Step-by-step tutorial that walks you through the necessary steps to add role-based access control (RBAC) to your app using WorkOS and Node.
Bots are everywhere. How can you distinguish the bad from the good, and how can you stop them? Read our guide for practical steps on how to stop bots and protect your app.
When your goal is selling to enterprises, sooner or later, you will have to leave RBAC for a fine-grained authorization model. Read more about why that is and how you can make the move.
Custom Logout URIs, Session Inactivity Timeouts, and AuthKit Next.js SDK v1.0
Please try a different search
Our global team is growing and we’re hiring all types of roles.
WorkOS builds developer tools for quickly adding enterprise features to applications.
This site uses cookies to improve your experience. Please accept the use of cookies on this site. You can review our cookie policy here and our privacy policy here. If you choose to refuse, functionality of this site will be limited.
.webp)
.jpg){kind=avatar}
.webp)
.webp)
.webp)
.webp)
.webp)
