#access management
Securing ChatGPT apps with OAuth 2.0 and CIBA
How to secure a ChatGPT app with Ping Identity, OAuth, PingOne Authorize, OAuth Token Exchange, and CIBA.
Securing the PingOne DaVinci Widget with the Backend-for-Frontend (BFF) Pattern
Securing the PingOne DaVinci Widget with the Backend-for-Frontend (BFF) Pattern
A walkthrough of how to embed the DaVinci widget in an SPA while keeping OAuth tokens and DaVinci API credentials safely on a Node.js BFF backend.
App-to-web session transfer: the security perspective
App-to-web session transfer: the security perspective
Exploring the security implications and enhancements of app-to-web session transfer patterns — examining OAuth risks, device binding strategies, and layered security controls for mobile-to-web SSO.
Hardening the handoff: a pattern for app-to-web single sign-on
Hardening the handoff: a pattern for app-to-web single sign-on
A walkthrough of a standards-based pattern for securely transferring an OAuth session from a native mobile app to a web browser using Pushed Authorization Requests (PAR).
Securing MCP Servers with Ping’s MCP Gateway
Securing MCP Servers with Ping’s MCP Gateway
Building MCP servers that expose your business logic to AI agents? Discover how PingGateway can act as your security bouncer, handling OAuth validation, auditing, rate limiting, and policy enforcement without adding a single line of security code to your servers.
Securing High-Risk Actions: Transactional Authorization over REST
Securing High-Risk Actions: Transactional Authorization over REST
A practical guide to securing high-risk actions with REST-based Transactional Authorization.
Smarter “Remember Me” with PingOne Protect
Smarter “Remember Me” with PingOne Protect
Smarter “Remember Me” with PingOne Protect: seamless, secure logins that adapt to risk without disrupting the user experience.