Existing solutions lack flexibility and granular control, limiting adaptability to specific business needs. Ory Hydra integrates with your infrastructure, giving you complete control over authentication workflows.
Millions of users. Unlimited scale.
Ory Hydra powers systems with millions of customers and serving thousands of users per second.
Integrate everywhere
Ory Hydra is written in Go and we provide SDKs for almost every language including Dart, .NET, Go, Java, PHP, Python, Ruby, Rust and Typescript. It works with any login system and it is easy to customize the login experience. Follow our step by step documentation and integrate Hydra in a snap.
Interface the web securely
Ory Hydra is the most advanced OAuth 2.0 and OIDC Certified® Server, and the only one that is open source. It integrates with any login system and allows you to interface with any application, anywhere.
Powered by Open Source
Ory Hydra is open source and evolves with every pull-request.
Benjamin Billings
Engineering Manager, Identity Platforms
OpenAI wanted a partner that could help enable our vision for owning our identity processes, data, and success. We have a lot of partners, and Ory is one of our best.
Ory Hydra features at a glance
Integrates Everywhere
Implement the full Open Authorization 2.0 standard in your technology stack. Ory Hydra integrates with any open source (e.g. Ory Kratos) or proprietary IAM system.
OpenID Certified®
Rely on an OpenID Certified® OIDC Provider. Ory Hydra implements all flows specified by the IETF and OpenID Foundation.
Bring your own UX
Use your branding and user interfaces for all OAuth2.0 and OpenID Connect flows. Your own styles and flows powered by a robust API and intuitive CLI.
Compatible with MITREid
Migrate from MITREid Connect to Ory Hydra. Migration documentation is provided.
Cryptographic Key Storage
Encrypt cryptographic keys for e.g. signing JWTs, store them securely and manage OAuth 2.0 clients directly from the CLI.
Security First and High Performance
Sleep easy, knowing that Ory Hydra is designed to reduce security incidents and scales as required. Ory Hydra serves tokens to millions of users weekly and just works.
Deploy Ory Hydra on your preferred infrastructure
Deploy on any infrastructure and take full control over authentication and user workflows of your application.
const express = require('express');
const app = express();
const { AuthorizationCode } = require("simple-oauth2")
const client = new AuthorizationCode({
client: {
id: process.env.CLIENT_ID,
secret: process.env.CLIENT_SECRET,
},
auth: {
tokenHost: "https://<your-project>.projects.oryapis.com",
tokenPath: "/oauth2/token",
authorizePath: "/oauth2/auth",
},
})
app.get("/", (req, res) => {
const authorizationUri = client.authorizeURL({
redirect_uri: REDIRECT_URI,
scope: "openid offline",
})
res.redirect(authorizationUri)
})
app.get("/callback", async (req, res) => {
const { code } = req.query
try {
const accessToken = await client.getToken({
code,
redirect_uri: process.env.REDIRECT_URI,
scope: "openid offline",
})
res.json(accessToken.token)
} catch (error) {
res.status(500).json({ error: error.message })
}
})
More on Ory Hydra
OpenAI uses open source Ory to authenticate over 400M weekly active users
Powering OpenAI's OAuth2 infrastructure - discover how Ory Hydra scaled to web-scale with reliable, straightforward technology.
Scaling Ory Hydra to ~2bn monthly OAuth2 flows on a single PostgreSQL DB
Performing over 1000 OAuth2 Authorization Code Grants per second on a single PostgreSQL database
