The ngrok blog
Subscribe to our newsletter or follow our RSS feed for the latest news about unified ingress for development and production.
There and Back Again: An OAuth Story
I've worked with OAuth 2.0 for over 6 years. It's always been a complex and challenging beast to fight until now.
Announcing our SOC 2 Type 2 Report
We’re excited to announce that we have successfully completed the System and Organizational Controls (SOC) 2 Type 2 testing with no findings. Read more for more information.
ngrok: Defense in Depth
Securing your environment is challenging. With ngrok, you can centralize management to ensure policies are applied consistently, no matter the stack.
Fighting Abuse on the ngrok Platform
While ngrok has made it easy to launch your fantastic new app online in one line, bad actors have also used this capability to launch their own attacks. Blocking and eliminating this malicious behavior is key to what we do and we've taken another step to protect users without breaking legitimate applications.
Authentication with ngrok
In this post, we cover the different methods you can use for authenticating traffic with ngrok, including OAuth and OpenID Connect using Traffic Policy.
Announcing the ngrok security and trust portal
The ngrok security and trust portal shares how we secure the ngrok service, our shared security model, how we handle data, and the steps we take to protect it.
ngrok Security Disclosure, May 2022
Last week, we fixed a multi-tenancy bug in the ngrok dashboard’s caching layer. We have contacted all accounts affected by the bug directly.
How Aero uses ngrok to keep communities safe
In this guest post, the maintainer of the Aero project shares how she's using ngrok as a key component in their spam fighting and community moderation approach.
Deploying ngrok in Production
In this post, we navigate some of the best practices, key considerations, and features provided by ngrok for production scenarios
Securing your Apps with Cloud Edge
Use ngrok Cloud Edge for app observability, load balancing, compression, and security – without the burden of running and maintaining middleware infrastructure.
Securing your Applications with OAuth 2.0 in seconds
ngrok Secure Tunnels. With one command share your apps, APIs, and systems with the world, without complex network configuration, reliability issues, and NAT.
Announcing the Next Generation of ngrok
ngrok Cloud Edge and Secure Tunnels are huge advancements but they aren't all we've been working on. ngrok is fully programmable, observable, and observable.
Announcing our SOC 2 Type 1 Report
We have successfully completed the System and Organizational Controls (SOC) 2 Type 1 examination establishing controls and safeguards within ngrok.
Getting Started with Webhooks
From the earliest webhooks at Twilio to every major SaaS platform, webhooks have become a defacto standard in web development. But before we can use them well, we have to use them correctly. Let's look at what that takes.
Automating Remote Systems with ngrok and Zapier
We can be "Happier with Zapier" and get rid of repetitive tasks like updating spreadsheets. Check out what we can automate by adding ngrok and a remote API.
Integrating VSCode and ngrok
Learn how to set up and manage ngrok tunnels straight from VS Code. If you want to do the same, grab your VS Code and follow along.
Logging, Inspecting & Replaying traffic with ngrok
Easily test code – i.e. trigger a webhook or API request from a service or load certain pages as a user.
Everything you can tunnel with ngrok
What can you tunnel with ngrok? More and more, a better question is: What can't you tunnel with ngrok?
