Olivia
Online
Sambego
@sambego
🔑 Building fine-grained authorization @ Okta | | Principal Developer Advocate at Auth0 by Okta
🇧🇪🐱🏃🎸
Belgium
Joined March 2008
402 Following
1.7K Followers
3.7K Posts
Pinned Tweet
I’ve created an overview of my past and future talks. If you run an event and want me to come and talk, shout! https://t.co/6doofvvv0f
@focusotter @auth0 @ClaudeDevs We've always supported a ton of languages and frameworks with our SDKs, and now your Claude Code, knows exactly how to use them!
PKCE and BFF aren't alternatives. They solve different problems.
If you've been assuming PKCE is enough for SPA security, this is worth reading: https://t.co/WnQeTWqCa3
Who to follow
Shai Reznik (Qwik) 
@shai_reznik
👵 @QwikDev Core Team Lead
👵 Founder at @hirez_io & https://t.co/QtrNqdii8g
👵 @Google Developer Expert @Angular
👵 JS Israel Founder
👵 Entertainer
Emma Twersky
@twerske
(she/her)
staff developer relations @ google
currently leading @flutterdev, formerly @angular, always open source
Younes Jaaidi
@yjaaidi
👨🏻🍳 Software Cook, Teacher & Coach ✨ Google Developer Expert for #Angular 🌊 Nx Champion 👉 Pragmatic Angular Testing Course https://t.co/OU6bzFDKrT
The @Auth0 plugin is now available on the @cursor_ai Marketplace. Access 22 AI skills for quickstarts, migration, and MFA with SDK support for all major frameworks, and more.
Add it now 👇 https://t.co/8awJG0HLi8.
Most AI benchmarks test reasoning. Almost none test whether the agent can wire up authentication securely. 🧐
We built the @auth0 Agent Experience Score to actually measure it. Check it out! https://t.co/C9ccqYvMap
Fine-grained authorization for RAG is one of the most underestimated problems in production AI.
If your agent can retrieve documents, it needs to enforce who's allowed to see them, not just at the role level. With @auth0 FGA and LlamaIndex Workflows, authorization is structural: baked into the retrieval step, not bolted on at the API layer.
Great collaboration with @jerryjliu0 and the @llama_index team showing exactly how this works in production → https://t.co/nWXN7T7fn2
One thing that keeps coming up when teams add AI to their stack: auth gets way more complicated than the standard "who is logged in"
You start asking questions like
⚪️ who's agent did this?
⚪️ what docs can my agent go read?
⚪️ who do i blame when things go wrong?
@itsclelia and @sambego wrote on fine-grained RAG pipelines so AI only sees what it's allowed to see
worth a read if you're working on this problem:
https://t.co/oXME0KdXjE
Last month we updated our free and self-service B2B plans to help you ship at a lower cost. Today we are making our pricing more accessible to agents 🤖 → https://t.co/JiZ6H1nimo
From writing code to advocating for developers worldwide.
Carla Stabile chats with Sam Bellen about DevRel, building trust with engineers, and turning community feedback into better products.
New episode of Making Software is live. Tune in here: https://t.co/wMR8GfP6uY
Broken Access Control tops 2025 OWASP lists for web apps and APIs. It persists despite modern tools.
Why is it still so hard to fix?
I have some thoughts: https://t.co/iZhbwhyuVH
Policy-Based Access Control (#PBAC) is commonly considered an authorization model, but I disagree and explain why in this article published on the @idpro_org blog.
What's your take on this?
https://t.co/70ahL5TF4Z
Sam Bellen (@sambego), Principal Developer Advocate for @auth0, joins us on stage to share insights. Don't miss their session "Paradigm Shift!" at #AllThingsOpen! https://t.co/SMwaR5JTHz
If you’re at the London Gartner IAM summit today, let’s meet!
We'll be at the @Gartner_inc IAM Summit in London this afternoon, participating in the @openid AuthZEN Working Group Interop Drop-In Demos.
Drop on by at 02:45 PM to learn more about how we're working towards implementing AuthZEN in our product.
https://t.co/xcIyPdHerd
🔐 Want to build a RAG application without risking sensitive data? This step-by-step guide by @auth0 shows you how to use Python, LangChain, and OpenFGA to keep your AI pipeline secure.
Read more 👉 https://t.co/uK8xVrmpVh
CIBA is a standard that enables your application to authenticate users on a different device. Learn how it works and how to add it to an ASPNET Core app using @auth0
#ciba #dotnet #aspnetcore #authentication
https://t.co/vKS9hGLXax
Pushed Authorization Requests in .NET 9: Why and How to Use Them by @andychiare https://t.co/dZnJeP49zY #aspnetcore
Let’s go! 🏁🏁🏎️
In this month's Fine-Grained newsletter, we look back at everything we accomplished with OpenFGA last year.
We could not have done this without the help of our community, so we thought it'd be the perfect opportunity to thank all contributors!
https://t.co/lwrJOpQSS4
For today's #ModelingMondays, we'd like to ask our community what you want us to cover in future chapters of our modeling guide.
A specific type of access, a special entity, a condition you deal with when making access control decisions, ...
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers