Explores how OAuth delegation and 'On Behalf Of' flows apply to AI agents, discussing authorization challenges in agentic systems.
Explains methods to restrict access to action methods in ASP.NET Core MVC using filters and the Authorize attribute.
A guide to securing Azure Logic Apps HTTP triggers by replacing SAS tokens with OAuth authorization policies and Azure AD authentication.
Explores five authorization patterns for MCP servers to securely call external APIs like GitHub or Slack on behalf of users across different trust domains.
Kubernetes 1.34 focuses on security enhancements, including short-lived registry tokens, scoped anonymous API access, and improved mTLS for pods.
A technical guide on implementing end-to-end user authorization for MCP servers using Entra ID, OAuth 2.0, and on-behalf-of flows.
Analyzes key enterprise challenges in adopting MCP servers for AI agents, focusing on security, governance, and authorization complexities.
Final part of a series on implementing MCP Authorization, focusing on integrating a production Identity Provider (Keycloak) for OAuth.
A technical guide implementing OAuth 2.1 authorization for an MCP server, part two of a three-part series with practical code examples.
A technical guide to implementing the latest MCP Authorization specification for securing HTTP-based MCP servers, starting with building a compliant server using FastAPI.
Explores the challenges of delegating authority to AI agents due to fragmented user identities and ungoverned authorization systems in enterprises.
A guide to implementing authorization in Next.js applications using React Server Components, Server Actions, and the App Router.
A tutorial on implementing private/protected routes in React Router 7 to control user access based on authentication and authorization.
A developer shares lessons learned and pitfalls to avoid when implementing policy-based authorization in .NET applications.
A Django SaaS development update covering the debug toolbar, authorization, and email verification signals.
The author updates core pages like About, FAQ, and Home for the JourneyInbox SaaS app, focusing on UI layout and content.
Explores a multi-tenancy security design pattern: external authentication with local authorization, using IDP tokens and SAGA for signup.
A tutorial on implementing API Key authentication in ASP.NET Core for server-to-server communication, including code examples.
A talk on implementing flexible, permission-based authorization in ASP.NET Core to overcome limitations of traditional role/claim-based systems.
A developer's perspective on the challenges of implementing authorization (authz) in software, balancing minimal effort with security needs.
