hydra
hydra copied to clipboard
ory
OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security...
### Preflight checklist - [X] I could not find a solution in the existing issues, docs, nor discussions. - [X] I agree to follow this project's [Code of Conduct](https://github.com/ory/hydra/blob/master/CODE_OF_CONDUCT.md). -...
### Preflight checklist - [X] I could not find a solution in the existing issues, docs, nor discussions. - [X] I agree to follow this project's [Code of Conduct](https://github.com/ory/hydra/blob/master/CODE_OF_CONDUCT.md). -...
Asking about this since the NSA recently published guidance advising the public and private sectors to transition to cryptographic algorithms that are no less than sha384 & ec384 (elliptic curves)....
### Preflight checklist - [X] I could not find a solution in the existing issues, docs, nor discussions. - [X] I agree to follow this project's [Code of Conduct](https://github.com/ory/hydra/blob/master/CODE_OF_CONDUCT.md). -...
Hello ! **Is your feature request related to a problem? Please describe.** I work on a multi-account system and I must let user select the account they want to log...
**Do you want to request a *feature* or report a *bug*?** Feature **What is the current behavior?** Unable to use x.509 certificates for OAuth Client Authentication. **What is the expected...
**Is your feature request related to a problem? Please describe.** First, thanks for hydra. In our evaluation, we've found it to be a great tool. One thing I'm having difficulties...
**Do you want to request a *feature* or report a *bug*?** Feature **What is the current behavior?** Hydra doesn't handle custom claims param in /oauth2/auth request. All additional custom claims...
In a zero trust microservices architecture, it is extremely useful to have an ability to generate "on behalf of" access tokens with shorter lifespan and narrower scope when performing service...
### Discussed in https://github.com/ory/hydra/discussions/2675 **Describe the bug** When using private_key_jwt using a client's public keys url, the approach for validating signature should be the same for following both options 1....
