WorkOS

User deprovisioning is a critical use case for SCIM — ensuring that when employment status changes in the identity provider, access to apps and sensitive resources is automatically updated. But SCIM is a lot more versatile and can support these additional use cases: ▶ Pre-provisioning, which is more efficient than JIT provisioning ▶ User onboarding emails to solve discoverability issues for new employees ▶ Automated roles and permissions assignment using data that pre-exists in the IdP Read the full guide: https://lnkd.in/eAGuV4vZ

Laravel is one of the many SDKs WorkOS supports - letting you pick the framework of choice as you integrate SSO, SCIM, user management, and more. Here's a tutorial that shows you how to build a Laravel Socialite adapter to integrate with AuthKit and add SSO using the Test Identity Provider. Full tutorial: https://lnkd.in/ectvmZ-Z

July Updates: ▶ RBAC for AuthKit ▶ Fine-Grained Authorization early access ▶ SCIM role assignment ▶ new Log Streams destination ▶ updated Node SDK https://lnkd.in/gvDWHrvq

Warp is a modern, Rust-based terminal with built-in AI to help developers build great software, faster. With incredible user growth and enterprise traction, they needed a reliable and modular SSO solution that could easily plug into their current auth setup with Firebase. Using WorkOS, Jeff's team was able to ship SSO in less than a day, requiring minimal maintenance since. https://lnkd.in/eENXb6Zt

Early access for Fine-Grained Authorization (FGA) is now available. FGA is a more granular form of access control that allows applications to grant users certain behaviors per resource. It's the most scalable and foolproof way to handle authorization for enterprise customers. https://lnkd.in/gj9Bn8QZ

The Node SDK now has improved AuthKit session handling. You can use it to manage signing, encrypting session data, and handling JWTs to simplify your application code. https://lnkd.in/gkFQh3_U

In this episode of Crossing the Enterprise Chasm, Adam Gross, former CEO at Vimeo, shares the following insights: 1) Platform marketing at Salesforce: creating a compelling story around the potential of Cloud and SaaS was effective in winning over the industry, even overcoming Gartner's recommendation to only consider SaaS as a temporary solution. 2) Poets vs. Librarians: poets are creatives who look for originality in their thinking, and librarians are process-oriented people focused on efficiency. When building an organization, it is important to balance the two, similar to how Steve Jobs (poet) and Tim Cook (librarian) complemented each other. 3) Marketing to developers: much of Heroku's success can be attributed to product creativity and obsession over detail, defining how developer experience is perceived today.

PlanetScale chose WorkOS because they needed an all-in-one solution for both SSO and SCIM provisioning. They knew that maintaining SSO alone could require "teams of up to seven engineers." With WorkOS, they were able to seamlessly integrate with an existing auth layer and support enterprise features in days instead of months. https://lnkd.in/ey5rAfnf

Introducing Role-Based Access Control (RBAC) for AuthKit. RBAC is crucial for authorization, which defines what the user can do in your app once their identity is verified. With roles and permissions, you can offer your enterprise customers a more precise and flexible way to manage user access.

Part 2 of our RBAC series explains the benefits of supporting Directory Sync (SCIM) with your authorization system. Most authorization solutions require your customer’s admin to generate the data source for roles, resources, and permissions inside your app. With identity provider-based authorization systems via SCIM, the admin can use data that already exists in their IdP. This is important for enterprises that want to manage their users’ roles and permissions from a single source of truth instead of managing hundreds of different SaaS tools and their unique permissions schemes. https://lnkd.in/eJr_eE53