Tag: oauth2

All the articles with the tag "oauth2".

• Unwrapping MCP Security: A Walkthrough with the PayPal MCP Server

  12 May, 2025

  • 11 min read

  A walkthrough of connecting Claude Desktop to PayPal’s remote MCP server over HTTP, highlighting the full OAuth 2.0 flow with Postman from discovery to authorization

• Unwrapping MCP: A Walkthrough with the GitHub MCP Server

  7 May, 2025

  • 10 min read

  MCP explained from the inside out, starting with a real developer workflow then unwrapping the protocol layer by layer: roles, messages, connection lifecycle, and STDIO transport.

• Protected Resource Metadata Is the Missing Piece in OAuth 2.0 Discovery

  4 May, 2025

  • 9 min read

  OAuth 2.0 could automate client registration and AS discovery, but clients still had to hardcode which authorization server protects a given resource. Protected Resource Metadata fixes that. Here's how PRM completes the dynamic integration story, and why AI agents made it urgent.

• mTLS for OAuth2 Client Authentication: A Stronger Alternative to Shared Secrets

  25 Apr, 2025

  • 13 min read

  Shared secrets can be stolen, leaked, or brute-forced. mTLS-based client authentication uses certificates to prove private key possession. Learn how to apply TLS handshake–based authentication to meet OAuth 2.0 client authentication requirements.