Blog

    Notes from shipping auth.

    Engineering posts, product updates, and the thinking behind Authaz's auth-as-code approach.

    MAY 5, 2026jwt · jwe · security

    JWT vs JWE: when signed is not enough

    Most engineers ship signed JWTs and call it auth. Sometimes the right answer is JWE — encrypted, not just signed. Here's the difference, when each one matters, and what Authaz uses by default.

    Read post
    APR 28, 2026cli · yaml · config-as-code

    Auth as code: one YAML, every environment

    How authaz.yaml + authaz apply replace dashboard clicking with version-controlled config — same shape as Kubernetes manifests, ETag-guarded so two engineers can't trample each other.

    Read post