Sambego

I’ve created an overview of my past and future talks. If you run an event and want me to come and talk, shout! talks.sambego.be

From writing code to advocating for developers worldwide. Carla Stabile chats with Sam Bellen about DevRel, building trust with engineers, and turning community feedback into better products. New episode of Making Software is live. Tune in here: bit.ly/4tRywyU

Broken Access Control tops 2025 OWASP lists for web apps and APIs. It persists despite modern tools. Why is it still so hard to fix? I have some thoughts: auth0.com/blog/why-broke…

Policy-Based Access Control (#PBAC) is commonly considered an authorization model, but I disagree and explain why in this article published on the @idpro_org blog. What's your take on this? idpro.org/is-pbac-an-aut…

Sam Bellen (@sambego), Principal Developer Advocate for @auth0, joins us on stage to share insights. Don't miss their session "Paradigm Shift!" at #AllThingsOpen! 2025.allthingsopen.org/sessions/parad…

With #DPoP being adopted more widely recently, I thought it was time for a re-make of dpop.info If you want to learn more about Demonstrating Proof of Possession when working with #OAuth or #OIDC Access Tokens, click through and let me know what you think!

If you’re at the London Gartner IAM summit today, let’s meet!

🔐 Want to build a RAG application without risking sensitive data? This step-by-step guide by @auth0 shows you how to use Python, LangChain, and OpenFGA to keep your AI pipeline secure. Read more 👉 #Proposed-Solution--Secure-Retrieval-with-LangChain--OpenAI--and-OpenFGA" target="_blank" rel="nofollow noopener">auth0.com/blog/building-…

CIBA is a standard that enables your application to authenticate users on a different device. Learn how it works and how to add it to an ASPNET Core app using @auth0 #ciba #dotnet #aspnetcore #authentication auth0.com/blog/use-ciba-…

Pushed Authorization Requests in .NET 9: Why and How to Use Them by @andychiare dev.to/oktadev/pushed… #aspnetcore

Let’s go! 🏁🏁🏎️

In this month's Fine-Grained newsletter, we look back at everything we accomplished with OpenFGA last year. We could not have done this without the help of our community, so we thought it'd be the perfect opportunity to thank all contributors! openfga.dev/blog/fine-grai…

For today's #ModelingMondays, we'd like to ask our community what you want us to cover in future chapters of our modeling guide. A specific type of access, a special entity, a condition you deal with when making access control decisions, ...

@NDC_Conferences Security is in full swing!😍 It’s so exciting to be here, talking and learning all things security. Do you recognize this small spoiler of my talk? Please join me tomorrow 10:20am in room 3 to find out, or at the @auth0 booth! 💚🌿 #ndcsecurity

We want community members to demonstrate how they use OpenFGA during our upcoming Community calls. If you're using our authorization solution or have explored it now or in the future, contact us, and we'll reserve your spot in one of the upcoming calls! #monthly-community-meetings" target="_blank" rel="nofollow noopener">openfga.dev/docs/community…

Application access allows applications to interact with resources. This is essential for tools, like data AI models, that need access to our data. In today's #ModelingMondays video, we'll explore how to expand our permission to include applications. youtu.be/YkM2k3c4-iE?si…

Tomorrow, Thursday, January 9th, at 4PM UTC (8AM PT/11AM ET), we're hosting our monthly community call. Join us for updates from the OpenFGA team, and some cool demos. #monthly-community-meetings" target="_blank" rel="nofollow noopener">openfga.dev/docs/community…

Welcome to the first Monday of the new year. In 2025 we'll continue our #ModelingMondays series. Custom roles can have users assigned to them and can be assigned themselves to permissions within our model. This introduces another level of hierarchy. youtu.be/Iz7R5dXhpg0

Conditional relationships allow permissions to change based on contextual rules like time conditions. This set-up is especially valuable for temporary access needs. In today's #ModelingMondays video, we'll explore how to take context consideration. youtu.be/UePW0uk1E7E

Did you miss our last community meeting, or do you want to re-watch it? It's now available on our YouTube channel. youtube.com/watch?v=zmUUY3…

Public access allows some resources to be visible to anyone, without requiring specific permissions. This is valuable for content intended for a broad audience, such as announcements or documentation. Check out today's #ModelingMondays video. youtu.be/eAsewErDx2Y