Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/ory/hydra

The most scalable and customizable OpenID Certified™ OpenID Connect and OAuth Provider on the market. Become an OpenID Connect and OAuth2 Provider over night. Broad support for related RFCs. Written in Go, cloud native, headless, API-first. Available as a service on Ory Network and for self-hosters.
https://github.com/ory/hydra

Health probes not being filtered from logs even though they are disabled via configuration

MrWolfZ opened this issue over 1 year ago
chore: bump ory/x

alnr opened this pull request over 1 year ago
OIDC4VC - novel standards for

jruizaranguren opened this issue over 1 year ago
fix: add index on requested_at for refresh tokens and use it in janitor

sgal opened this pull request over 1 year ago
feat: encode flow in cookie + URL params

hperl opened this pull request over 1 year ago
chore(deps): bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible

dependabot[bot] opened this pull request over 1 year ago
Difference in behavior when user denied consent for HTTPS and non-HTTPS redirect URI

viralsavaniIM opened this issue over 1 year ago
Janitor does not correctly handle expiry for dynamic token TTLs

Class-public opened this issue over 1 year ago
PATCH /admin/clients/{id} doesn't support clearing token lifespans

apexskier opened this issue over 1 year ago
Refresh Token revocation imposes high DB load

jgraeger opened this issue over 1 year ago
rough first pass

jordans-openai opened this pull request over 1 year ago
hperl/bench-hydra-auth-code-flow

hperl opened this pull request over 1 year ago
chore: bump deps

alnr opened this pull request over 1 year ago
Login sessions that are invalidated through headless logout (by sid) are incorrectly handled on the next login

sgal opened this issue over 1 year ago
fix: update nodemon version for oauth2 client

mkoziy opened this pull request over 1 year ago
fix: proper SameSite=None in dev mode

hperl opened this pull request over 1 year ago
fix: fixing persister_grant_jwk having an OR statement without bracket leading to not using the last part of the query

StarAurryon opened this pull request over 1 year ago
[JWT Bearer Grant Type Issuers] Scopes are validated against first valid issuer for a specified subject in v2.X.X

StarAurryon opened this issue over 1 year ago
fix: oauth2-client get client: fix example --json option

kangaechu opened this pull request over 1 year ago
fix: disable health check request logs (admin)

project0 opened this pull request over 1 year ago
Hydra versions 2.x showing memory leak behavior

gou-fi opened this issue over 1 year ago
chore: remove unneeded dependency

aeneasr opened this pull request over 1 year ago
chore(deps): bump @nestjs/core and @openapitools/openapi-generator-cli

dependabot[bot] opened this pull request over 1 year ago
feat: add --skip-consent flag to hydra cli

matt-potter opened this pull request over 1 year ago
Configuration documentation inconsistencies

RazerM opened this issue over 1 year ago
fix: sqa config values unified across projects

misamu opened this pull request over 1 year ago
Documentation on how to setup Hydra with Google SSO

mitar opened this issue over 1 year ago
fix: double hashing of access token signature

hperl opened this pull request over 1 year ago
Access token signature lookup bug

rauanmayemir opened this issue over 1 year ago
how to use backchannel to revoke token?

bulolo opened this issue over 1 year ago
authorization code has already been used,then my token disabled?

bulolo opened this issue over 1 year ago
chore(deps): bump github.com/docker/docker from 20.10.21+incompatible to 20.10.24+incompatible

dependabot[bot] opened this pull request almost 2 years ago
fix: reduce SQL tracing noise

alnr opened this pull request almost 2 years ago
chore: update ory/x

aeneasr opened this pull request almost 2 years ago
Support statically defined OAuth2 clients

andremarianiello opened this issue almost 2 years ago
Passwordless Login integration to an web application

anil-intelops opened this issue almost 2 years ago
chore(deps): bump github.com/opencontainers/runc from 1.1.4 to 1.1.5

dependabot[bot] opened this pull request almost 2 years ago
feat: add session cookie path configuration

sgal opened this pull request almost 2 years ago
Configuration of the session cookie path for more granular security

sgal opened this issue almost 2 years ago
upstream reference closed: github.com/gobuffalo/fizz/issues/104

github-actions[bot] opened this issue almost 2 years ago
fix: use correct default value

aeneasr opened this pull request almost 2 years ago
Metrics endpoint is not available in v2

project0 opened this issue almost 2 years ago
upstream reference closed: github.com/ory/hydra/pull/3450

github-actions[bot] opened this issue almost 2 years ago
docs: update security email

vinckr opened this pull request almost 2 years ago
feat: extend session lifespan on session refresh (skip=true)

sgal opened this pull request almost 2 years ago
feat: allow configuring TTL in days

apexskier opened this pull request almost 2 years ago
Can't configure TTL with "days" syntax

apexskier opened this issue almost 2 years ago
CORS problem on /admin/oauth2/auth/requests/login

wcobalt opened this issue almost 2 years ago
chore(deps): bump minimist from 1.2.5 to 1.2.6 in /test/e2e/oauth2-client

dependabot[bot] opened this pull request almost 2 years ago
fix: support allowed_cors_origins with client_secret_post

apexskier opened this pull request almost 2 years ago
`allowed_cors_origins` doesn't work for `client_secret_post`

apexskier opened this issue almost 2 years ago
chore: update TLS certs

hperl opened this pull request almost 2 years ago
feat: allow skipping the consent flow

hperl opened this pull request almost 2 years ago
feat: add ability to revoke login sessions by SessionID

sgal opened this pull request almost 2 years ago
Add support for login session revocation by session ID

sgal opened this issue almost 2 years ago
Add filter by list of clients_id to /clients endpoint

ilaleksin opened this issue almost 2 years ago
hperl/per-client-token-types

hperl opened this pull request almost 2 years ago
Support multiple client secrets and secret rotation

sagarshah1983 opened this issue almost 2 years ago
client_credentials grant type accepts audience at creation, but doesn't return them in access token

hpylypets-ua opened this issue almost 2 years ago
Go related CVEs raised during Twistlock scanning resolution timeline by upgrading go version

guyibm opened this issue almost 2 years ago
chore(deps): bump cacheable-request and openid-client in /test/e2e/oauth2-client

dependabot[bot] opened this pull request almost 2 years ago
SQL errors when the connection used is no longer valid (pgx driver version)

chacmool opened this issue almost 2 years ago
Issuer based discovery endpoint

scthi opened this issue almost 2 years ago
feat: add token request hooks for all grant types

sgal opened this pull request almost 2 years ago
Logout flow does not redirect to client specific logout url when not passing id_token_hint

sagarshah1983 opened this issue almost 2 years ago
docs: client_secret_post is marked as default token_endpoint_auth_method

aarmam opened this issue almost 2 years ago
SQL Migration error: Updating from v1.11.10 to v2.0.1

hugobarzano opened this issue almost 2 years ago
Could not apply migrations: Error 3098: The table does not comply with the requirements by an external plugin.

xilu0 opened this issue almost 2 years ago
Add min/max and supported cypher suite TLS configuration in admin/public interfaces

aarmam opened this issue almost 2 years ago
mTLS for admin/public interfaces

aarmam opened this issue almost 2 years ago
Add key rotation policy for JSON Web Token Signing Keys

aarmam opened this issue almost 2 years ago
Support for RP-initiated logout ui_locales parameter

aarmam opened this issue about 2 years ago
Using JWTs to exchange with access tokens

nryissuu opened this issue about 2 years ago
fix: ensure RSA key length fullfills 4096bit requirement (#2905)

aarmam opened this pull request about 2 years ago
fix: no longer use separate `public` and `private` keys in HSM key manager

aarmam opened this pull request about 2 years ago
Add Hardware Security Module health check

aarmam opened this issue about 2 years ago
Option to disable access log for /.well-known/openid-configuration and /.well-known/jwks.json endpoints

aarmam opened this issue about 2 years ago
Replace ory/instrumentedsql in favor of XSAM/otelsql

glerchundi opened this issue about 2 years ago
Support per-client configuration of token type (opaque/jwt)

sgal opened this issue about 2 years ago
SQL Migration error

FlamingPaw opened this issue about 2 years ago
upstream reference closed: github.com/ory/hydra/issues/3227

github-actions[bot] opened this issue about 2 years ago
chore: use strfmt in `x.NullDuration`

jonas-jonas opened this pull request about 2 years ago
feat: add config flag to allow specifying clientId on client creation

tinolazreg opened this pull request about 2 years ago
Make it possible to disable mirroring of custom claims in JWT

tlyng opened this issue about 2 years ago
upstream reference closed: github.com/ory/hydra/issues/425

github-actions[bot] opened this issue about 2 years ago
upstream reference closed: github.com/ory/hydra/issues/687

github-actions[bot] opened this issue about 2 years ago
oauth2: Custom audience param in /oauth2/auth is ignored

architeacher opened this issue about 2 years ago
Support POST /oauth2/auth

sidharthramesh opened this issue over 2 years ago
Feature request: add an option to disable automatic secret generation

grantzvolsky opened this issue over 2 years ago
docs: oauth2/revoke api fewer parameter as required in doc

arjprd opened this pull request over 2 years ago
feat: add token hooks for all grants types

fehrnah opened this pull request over 2 years ago
GET /clients/{id} returns 404 despite being deliberately changed from 404 to 401 previously

RazerM opened this issue over 2 years ago
feat: OAuth 2.0 Device Authorization Grant #2416

supercairos opened this pull request over 2 years ago
upstream reference closed: github.com/visionmedia/debug/issues/797

github-actions[bot] opened this issue over 2 years ago
Add token web hook for all grants types

fehrnah opened this issue over 2 years ago
Support dPoP (OAuth 2.0 Demonstrating Proof-of-Possession at the Application Layer)

damooo opened this issue over 2 years ago
feat: extra claims for rfc7523 grands

pflipp opened this issue over 2 years ago
Invalid snapshot filename breaks importing the Hydra packages

sneko opened this issue over 2 years ago
Support `default_acr_values`

apexskier opened this issue over 2 years ago
Bundle request parameters into access token in "client_credentials" flow

alikic opened this issue over 2 years ago