A technical guide on implementing end-to-end user authorization for MCP servers using Entra ID, OAuth 2.0, and on-behalf-of flows.
A guide to automating LinkedIn posts using the LinkedIn API, covering app creation, token generation, and API calls.
A technical guide on how to programmatically handle Google Sign-In (OAuth 2.0) in Cypress tests, bypassing multi-domain limitations.
Monthly update on FOSS projects including SourceHut API 2.0 progress, mkproof anti-spam tool, Gemini protocol improvements, and BARE spec development.
A technical guide on setting up Domain-Wide Delegation of Authority between GSuite and GCP for security tools to access GSuite APIs.
A developer's monthly update on progress with SourceHut's GraphQL APIs, OAuth 2.0, and other free software projects.
Explains how to use the OAuth 2.0 device authorization grant for secure user authentication in desktop applications.
A technical guide on implementing Apple's Sign In service for ASP.NET Core applications, including prototyping and integration steps.
Analysis of a session fixation vulnerability in Auth0's ASP.NET and OWIN SDKs, its impact, and the migration path to a secure alternative.
Announcing the RTM release of aspnet-contrib OAuth 2.0/OpenID 2.0 social providers for ASP.NET Core 1.x and 2.x, with a list of available packages.
A technical guide on implementing Azure AD's On-Behalf-Of token flow in an ASP.NET Core 2.0 API to securely call downstream services like Microsoft Graph.
Explains OAuth 2.0 flow and discusses building a hybrid identity solution using Azure AD and Azure AD B2C for modern applications.
A guide to using Git Credential Manager (GCM) for seamless authentication with Visual Studio Team Services (VSTS) Git repositories on multiple platforms.
A developer shares the process of building 'Payback', a web app using Instagram's API to find users you follow who don't follow you back.
Google is retiring OpenID for OAuth 2.0, requiring Azure ACS users to update their Google identity configuration by June 2015.
