Writing

Learn how to authenticate local Model Context Protocol servers with Entra ID using Windows Web Account Manager (WAM). This practical guide shows how to implement interactive user authentication in local MCP servers without complex OAuth flows.

The Model Context Protocol introduces familiar security challenges we’ve seen before. Let’s not ignore them and step on the same rakes millions stepped on before.

A proposed RFC for MCP authorization that lets developers leverage existing identity providers instead of implementing OAuth from scratch, making secure MCP servers easier to build without security expertise.

Introducing OpenSpartan Forerunner: an MCP server that connects Halo Infinite game data to AI tools. Access your stats, gear, and more directly in VS Code, Claude Desktop, and other MCP-compatible LLM clients.

Learn how to configure Azure Functions with Easy Auth to acquire tokens for Azure Resource Manager instead of Microsoft Graph, allowing secure API access with proper audience and scopes.

Learn how to implement secure authentication for MCP servers using Microsoft Entra ID with session-based tokens. This improved approach uses confidential clients and JWT session tokens for better security than public client methods.

Learn how to integrate Microsoft Entra ID authentication with Model Context Protocol (MCP) servers. This step-by-step guide explores the challenges and solutions for implementing OAuth-based flows between AI tools and MCP servers, with practical code examples.

Learn how Microsoft Entra ID’s flexible Federated Identity Credentials eliminate the need for secrets when connecting services across platforms. This practical guide shows you how to securely authenticate GitHub Actions workflows to Azure resources without storing credentials.

Tired of spending hours manually creating podcast transcripts? Learn how I built a local AI solution that transforms messy, raw audio transcriptions into clean, readable content for my podcast, The Work Item - cutting my production time from many hours to just an hour and a few minutes.

DeckSurf, my open-source SDK that covers the reverse-engineered protocol for interacting with Stream Deck devices, is now more-or-less complete in terms of devices it can identity and run against.