Blog

Product

Jun 27, 2025

Authenticate CLI tools seamlessly with OAuth Device Flow

Allow users to sign in via CLIs and on TVs and other non-traditional devices

Eric Roberts

Product

Jun 30, 2025

June Updates

New this month: Custom CSS for AuthKit, WorkOS Feature Flags, CLI Auth, & more

Introducing AuthKit Add-ons

Connect AuthKit to the tools you already use.

Security risks of iframes: Protecting your app from potential attacks

Iframes might seem convenient, but they come with serious security risks like XSS, session hijacking, and phishing. This article breaks down why iframes can put your site at risk and how to protect it.

Smithery AI: A central hub for MCP servers

Smithery AI is a registry and management platform for Model Context Protocol (MCP) servers.

HMAC vs. RSA vs. ECDSA: Which algorithm should you use to sign JWTs?

Confused about which algorithm to use for signing JWTs? We analyze everything about HMAC, RSA, and ECDSA—so you can choose the perfect algorithm for your security needs.

Generative AI at the edge with Cloudflare Workers

Large language models are reshaping how we build apps—but is your infrastructure ready for them?

Securing your app with Risk-Based Authentication and AI

Learn how Risk-Based Authentication (RBA) and AI can transform your app’s security, with best practices and insights to protect against evolving threats.

How to build a game-building agent system with CrewAI

A hands-on guide with patterns, agents, and executable examples

Top Ruby gems for authentication & authorization

Looking to secure your Ruby on Rails app? Discover the top gems for authentication and authorization that will protect your users. From seamless sign-ins to granular user permissions, these gems have got you covered.

How to build Login with LinkedIn using Python and WorkOS

Step-by-step tutorial that walks you through the necessary steps to add Login with LinkedIn to your app using Python and WorkOS.

March Updates

Spring Launch Week: WorkOS Vault, Connect, and more new features

How to build Login with Slack using Node and WorkOS

Step-by-step tutorial that walks you through the necessary steps to add Login with Slack to your app using Node and WorkOS.

How to build Login with GitLab using Node and WorkOS

Step-by-step tutorial that walks you through the necessary steps to add Login with GitLab to your app using Node and WorkOS.

Credential stuffing vs. brute force attacks: Key differences and how to stop them

Learn how credential stuffing and brute force attacks work and how you can defend your systems with advanced protection tools like WorkOS Radar.

How to build Login with LinkedIn using Node and WorkOS

Step-by-step tutorial that walks you through the necessary steps to add Login with LinkedIn to your app using Node and WorkOS.

How to choose the right authorization model for your SaaS

Not sure which authorization model is best for your SaaS app? Our latest article breaks down the top approaches—from simple roles to Fine-Grained Authorization—helping you choose the right fit for your app's security and user management.

Zod for TypeScript: A must-know library for AI development

Ever wondered why one TypeScript validation library keeps appearing in every major AI platform's documentation?

Zack Proser

Mar 26, 2025

We’re hiring

Our global team is growing and we’re hiring all types of roles.

View open roles

About us

WorkOS builds developer tools for quickly adding enterprise features to applications.

Learn more