Blog

A practical guide to OAuth’s original MCP onboarding method: how DCR works, where it breaks at scale, and why it still matters alongside CIMD.

Scalable, stateless client registration for AI agents: using a URL as your OAuth client ID to access MCP servers.

OAuth 2.0 and OIDC are no longer just for SSO or integrations; they’re the trust layer that makes AI agents safe, scoped, and governable.

Strengthened SSO Security with Sign-in Consent, CIMD Support for MCP Auth, AuthKit SDK for TanStack Start, & more

‍AWS’s new “open training” approach could fundamentally reshape who gets to build frontier-grade AI models—and what they can do with their proprietary data.

What MCP Tasks are, why they matter, and the full technical guide to implementing them.

A practical, end-to-end deep dive into data isolation, tenant-aware auth, scaling, and compliance for B2B SaaS.

A technical guide to MCP client registration: Dynamic Client Registration (DCR) vs Client ID Metadata Documents (CIMD).

How modern apps get access to your data without your password.

WorkOS FGA introduces a new approach to SaaS authorization that extends familiar RBAC into a flexible, hierarchical model designed for real product evolution. Learn why traditional RBAC and schema-driven FGA systems break down as applications grow, how WorkOS’ resource-scoped model avoids rewrites and role explosion, and how it supports enterprise identity mapping, high-cardinality architectures, and emerging AI agent workflows.

Keep tenants isolated, roles sane, and your auth layer out of incident reviews.

The checklist that makes authorization boring, predictable, and surprisingly hard to break.

Year two starts with fewer hacks and more infrastructure.

Read how the agent connector boom turned into the internet’s newest security liability and how to fix it before the next CVE.

A practical guide to the best OAuth/OIDC platforms for securing autonomous AI agents.