A developer explains why they are giving up on building apps that rely on external APIs due to access issues, ethical concerns, and platform risks.
A guide to securing enterprise MCP servers using Microsoft Entra ID for Single Sign-On (SSO) via the Agentgateway open-source gateway.
Explores how OAuth delegation and 'On Behalf Of' flows apply to AI agents, discussing authorization challenges in agentic systems.
Analysis of MCP's advantages over OpenAPI, focusing on secure authentication and OAuth dynamic client registration for AI agents.
A technical guide on implementing OAuth authentication for SAP SuccessFactors OData APIs in .NET using the SAML 2.0 Bearer Assertion flow.
A guide to securing Azure Logic Apps HTTP triggers by replacing SAS tokens with OAuth authorization policies and Azure AD authentication.
Explores five authorization patterns for MCP servers to securely call external APIs like GitHub or Slack on behalf of users across different trust domains.
Explains the security risks of community-developed MCP servers and how to centrally manage and secure them using an MCP Gateway.
Explains how to use SPIFFE and Keycloak for secure, non-anonymous dynamic client registration in MCP authorization, addressing enterprise security concerns.
A technical guide on configuring OAuth 2.0 token delegation for an A2A (Agent-to-Agent) system using Python, FastAPI, and security schemes.
Announcing a new YouTube channel, Ravgeek, offering 60-second animated explainers for technical concepts like REST APIs, Git, and OAuth.
Final part of a series on implementing MCP Authorization, focusing on integrating a production Identity Provider (Keycloak) for OAuth.
A technical guide to implementing the latest MCP Authorization specification for securing HTTP-based MCP servers, starting with building a compliant server using FastAPI.
Explores using SPIFFE workload identity for AI agents, highlighting technical gaps in current Kubernetes implementations for non-deterministic agent behavior.
Explores the challenges of delegating authority to AI agents due to fragmented user identities and ungoverned authorization systems in enterprises.
Designing Google CalDAV support for pimsync, focusing on Google's unique calendar paths and OAuth authentication flow.
Explains the shift from embedded WebViews to system browsers for OAuth flows, as defined in RFC 8252, focusing on security and usability.
A guide to implementing a Backend for Frontend (BFF) architecture with .NET, Duende, and Auth0 to enhance SPA security by moving token handling server-side.
A comprehensive guide to all OAuth 2.0 grant types, explaining their flows and use cases for secure application authorization.
Announcing the new OpenIddict client library for .NET, designed to provide a unified OAuth 2.0/OpenID Connect experience across different application types.
