-ORY Hydra is a hardened, **OpenID Certified OAuth 2.0 Server and OpenID Connect Provider** optimized for low-latency, high throughput,
-and low resource consumption. ORY Hydra *is not* an identity provider (user sign up, user login, password reset flow),
-but connects to your existing identity provider through a [login and consent app](https://www.ory.sh/docs/next/hydra/oauth2#authenticating-users-and-requesting-consent).
+Ory Hydra is a hardened, **OpenID Certified OAuth 2.0 Server and OpenID Connect Provider** optimized for low-latency, high throughput,
+and low resource consumption. Ory Hydra *is not* an identity provider (user sign up, user login, password reset flow),
+but connects to your existing identity provider through a [login and consent app](https://www.ory.sh/docs/hydra/oauth2#authenticating-users-and-requesting-consent).
Implementing the login and consent app in a different language is easy, and exemplary consent apps
-([Node](https://github.com/ory/hydra-login-consent-node)) and [SDKs](https://www.ory.sh/docs/next/hydra/sdk/) for all common languages are provided.
+([Node](https://github.com/ory/hydra-login-consent-node)) and [SDKs](https://www.ory.sh/docs/hydra/sdk/) for common languages are provided.
## Ory Cloud
@@ -43,14 +43,14 @@ Ory community members get the Ory Cloud Start Up plan **free for a year**, with
If you're looking to jump straight into it, go ahead:
-- **[Run your own OAuth 2.0 Server - step by step guide](https://www.ory.sh/run-oauth2-server-open-source-api-security/)**: A in-depth look at setting up ORY Hydra and performing a variety of OAuth 2.0 Flows.
-- [ORY Hydra 5 Minute Tutorial](https://www.ory.sh/docs/hydra/5min-tutorial): Set up and use ORY Hydra using Docker Compose in under 5 Minutes. Good for quickly hacking a Proof of Concept.
-- [Install and Set Up ORY Hydra](https://www.ory.sh/docs/hydra/configure-deploy): An advanced look at installation options and interaction with ORY Hydra.
-- [Integrating your Login and Consent UI with ORY Hydra](https://www.ory.sh/docs/hydra/oauth2): The go-to place if you wish to adopt ORY Hydra in your new or existing stack.
+- **[Run your own OAuth 2.0 Server - step by step guide](https://www.ory.sh/run-oauth2-server-open-source-api-security/)**: A in-depth look at setting up Ory Hydra and performing a variety of OAuth 2.0 Flows.
+- [Ory Hydra 5 Minute Tutorial](https://www.ory.sh/docs/hydra/5min-tutorial): Set up and use Ory Hydra using Docker Compose in under 5 Minutes. Good for hacking a Proof of Concept.
+- [Run Ory Hydra in Docker](https://www.ory.sh/docs/hydra/configure-deploy): An advanced guide to a fully functional set up with Ory Hydra.
+- [Integrating your Login and Consent UI with Ory Hydra](https://www.ory.sh/docs/hydra/oauth2): The go-to place if you wish to adopt Ory Hydra in your new or existing stack.
-Besides mitigating various attack vectors, such as a compromised database and OAuth 2.0 weaknesses, ORY Hydra is also
+Besides mitigating various attack vectors, such as a compromised database and OAuth 2.0 weaknesses, Ory Hydra is also
able to securely manage JSON Web Keys.
-[Click here](https://www.ory.sh/docs/next/hydra/security-architecture) to read more about security.
+[Click here](https://www.ory.sh/docs/hydra/security-architecture) to read more about security.
---
@@ -58,7 +58,7 @@ able to securely manage JSON Web Keys.
**Table of Contents**
-- [What is ORY Hydra?](#what-is-ory-hydra)
+- [What is Ory Hydra?](#what-is-ory-hydra)
- [Who's using it?](#whos-using-it)
- [OAuth2 and OpenID Connect: Open Standards!](#oauth2-and-openid-connect-open-standards)
- [OpenID Connect Certified](#openid-connect-certified)
@@ -66,10 +66,10 @@ able to securely manage JSON Web Keys.
- [5 minutes tutorial: Run your very own OAuth2 environment](#5-minutes-tutorial-run-your-very-own-oauth2-environment)
- [Installation](#installation)
- [Ecosystem](#ecosystem)
- - [ORY Kratos: Identity and User Infrastructure and Management](#ory-kratos-identity-and-user-infrastructure-and-management)
- - [ORY Hydra: OAuth2 & OpenID Connect Server](#ory-hydra-oauth2--openid-connect-server)
- - [ORY Oathkeeper: Identity & Access Proxy](#ory-oathkeeper-identity--access-proxy)
- - [ORY Keto: Access Control Policies as a Server](#ory-keto-access-control-policies-as-a-server)
+ - [Ory Kratos: Identity and User Infrastructure and Management](#ory-kratos-identity-and-user-infrastructure-and-management)
+ - [Ory Hydra: OAuth2 & OpenID Connect Server](#ory-hydra-oauth2--openid-connect-server)
+ - [Ory Oathkeeper: Identity & Access Proxy](#ory-oathkeeper-identity--access-proxy)
+ - [Ory Keto: Access Control Policies as a Server](#ory-keto-access-control-policies-as-a-server)
- [Security](#security)
- [Disclosing vulnerabilities](#disclosing-vulnerabilities)
- [Benchmarks](#benchmarks)
@@ -93,19 +93,19 @@ able to securely manage JSON Web Keys.
-## What is ORY Hydra?
+## What is Ory Hydra?
-ORY Hydra is a server implementation of the OAuth 2.0 authorization framework and the OpenID Connect Core 1.0. Existing OAuth2
+Ory Hydra is a server implementation of the OAuth 2.0 authorization framework and the OpenID Connect Core 1.0. Existing OAuth2
implementations usually ship as libraries or SDKs such as [node-oauth2-server](https://github.com/oauthjs/node-oauth2-server)
-or [fosite](https://github.com/ory/fosite/issues), or as fully featured identity solutions with user
+or [Ory Fosite](https://github.com/ory/fosite/issues), or as fully featured identity solutions with user
management and user interfaces, such as [Keycloak](https://www.keycloak.org).
Implementing and using OAuth2 without understanding the whole specification is challenging and prone to errors, even when
-SDKs are being used. The primary goal of ORY Hydra is to make OAuth 2.0 and OpenID Connect 1.0 better accessible.
+SDKs are being used. The primary goal of Ory Hydra is to make OAuth 2.0 and OpenID Connect 1.0 better accessible.
-ORY Hydra implements the flows described in OAuth2 and OpenID Connect 1.0 without forcing you to use a "Hydra User Management"
+Ory Hydra implements the flows described in OAuth2 and OpenID Connect 1.0 without forcing you to use a "Hydra User Management"
or some template engine or a predefined front-end. Instead, it relies on HTTP redirection and cryptographic methods
-to verify user consent allowing you to use ORY Hydra with any authentication endpoint, be it [authboss](https://github.com/go-authboss/authboss), [User Frosting](https://www.userfrosting.com/) or your proprietary Java authentication.
+to verify user consent allowing you to use Ory Hydra with any authentication endpoint, be it [Ory Kratos](https://github.com/ory/kratos), [authboss](https://github.com/go-authboss/authboss), [User Frosting](https://www.userfrosting.com/) or your proprietary Java authentication.
### Who's using it?
@@ -114,14 +114,14 @@ to verify user consent allowing you to use ORY Hydra with any authentication end
The Ory community stands on the shoulders of individuals, companies, and
maintainers. We thank everyone involved - from submitting bug reports and
feature requests, to contributing patches, to sponsoring our work. Our community
-is 1000+ strong and growing rapidly. The Ory stack protects 16.000.000.000+ API
+is 20000+ strong and growing rapidly. The Ory stack protects 16.000.000.000+ API
requests every month with over 250.000+ active service nodes. We would have
never been able to achieve this without each and everyone of you!
The following list represents companies that have accompanied us along the way
and that have made outstanding contributions to our ecosystem. _If you think
that your company deserves a spot here, reach out to
-office-muc@ory.sh now_!
+office@ory.sh now_!
**Please consider giving back by becoming a sponsor of our open source work on
Patreon or
@@ -291,7 +291,7 @@ TheCrealm.
### OAuth2 and OpenID Connect: Open Standards!
-ORY Hydra implements Open Standards set by the IETF:
+Ory Hydra implements Open Standards set by the IETF:
* [The OAuth 2.0 Authorization Framework](https://tools.ietf.org/html/rfc6749)
* [OAuth 2.0 Threat Model and Security Considerations](https://tools.ietf.org/html/rfc6819)
@@ -313,10 +313,10 @@ and the OpenID Foundation:
### OpenID Connect Certified
-ORY Hydra is an OpenID Foundation [certified OpenID Provider (OP)](http://openid.net/certification/#OPs).
+Ory Hydra is an OpenID Foundation [certified OpenID Provider (OP)](http://openid.net/certification/#OPs).
- 
+
@@ -349,7 +349,7 @@ It will take you about 5 minutes to complete the **[tutorial](https://www.ory.sh
### Installation
-Head over to the [ORY Developer Documentation](https://www.ory.sh/docs/next/hydra/configure-deploy#installing-ory-hydra) to learn how to install ORY Hydra on Linux, macOS, Windows, and Docker and how to build ORY Hydra from source.
+Head over to the [Ory Developer Documentation](https://www.ory.sh/docs/hydra/install) to learn how to install Ory Hydra on Linux, macOS, Windows, and Docker and how to build Ory Hydra from source.
## Ecosystem
@@ -373,7 +373,7 @@ dependencies (Java, Node, Ruby, libxml, ...).
[Ory Kratos](https://github.com/ory/kratos) is an API-first Identity and User
Management system that is built according to
-[cloud architecture best practices](https://www.ory.sh/docs/next/ecosystem/software-architecture-philosophy).
+[cloud architecture best practices](https://www.ory.sh/docs/ecosystem/software-architecture-philosophy).
It implements core use cases that almost every software application needs to
deal with: Self-service Login and Registration, Multi-Factor Authentication
(MFA/2FA), Account Recovery and Verification, Profile, and Account Management.
@@ -425,12 +425,12 @@ to perform a certain action on a resource.
## Security
-*Why should I use ORY Hydra? It's not that hard to implement two OAuth2 endpoints and there are numerous SDKs out there!*
+*Why should I use Ory Hydra? It's not that hard to implement two OAuth2 endpoints and there are numerous SDKs out there!*
OAuth2 and OAuth2 related specifications are over 400 written pages. Implementing OAuth2 is easy, getting it right is hard.
-ORY Hydra is trusted by companies all around the world, has a vibrant community and faces millions of requests in production
+Ory Hydra is trusted by companies all around the world, has a vibrant community and faces millions of requests in production
each day. Of course, we also compiled a security guide with more details on cryptography and security concepts.
-Read [the security guide now](https://www.ory.sh/docs/next/hydra/security-architecture).
+Read [the security guide now](https://www.ory.sh/docs/hydra/security-architecture).
### Disclosing vulnerabilities
@@ -439,27 +439,27 @@ and send us an email to [hi@ory.am](mailto:hi@ory.sh) instead.
## Benchmarks
-Our continuous integration runs a collection of benchmarks against ORY Hydra. You can find the results [here](https://www.ory.sh/docs/next/performance/hydra).
+Our continuous integration runs a collection of benchmarks against Ory Hydra. You can find the results [here](https://www.ory.sh/docs/performance/hydra).
## Telemetry
Our services collect summarized, anonymized data that can optionally be turned off. Click
-[here](https://www.ory.sh/docs/next/ecosystem/sqa) to learn more.
+[here](https://www.ory.sh/docs/ecosystem/sqa) to learn more.
## Documentation
### Guide
-The Guide is available [here](https://www.ory.sh/docs/next/hydra).
+The full Ory Hydra documentation is available [here](https://www.ory.sh/docs/hydra).
### HTTP API documentation
-The HTTP API is documented [here](https://www.ory.sh/docs/next/hydra/sdk/api).
+The HTTP API is documented [here](https://www.ory.sh/docs/hydra/sdk/api).
### Upgrading and Changelog
New releases might introduce breaking changes. To help you identify and incorporate those changes, we document these
-changes in [UPGRADE.md](./UPGRADE.md) and [CHANGELOG.md](./CHANGELOG.md).
+changes in [CHANGELOG.md](./CHANGELOG.md).
### Command line documentation
@@ -467,7 +467,7 @@ Run `hydra -h` or `hydra help`.
### Develop
-We encourage all contributions and encourage you to read our [contribution guidelines](./CONTRIBUTING.md).
+We love all contributions! Please read our [contribution guidelines](./CONTRIBUTING.md).
#### Dependencies
@@ -477,7 +477,7 @@ You need Go 1.13+ with `GO111MODULE=on` and (for the test suites):
- Makefile
- NodeJS / npm
-It is possible to develop ORY Hydra on Windows, but please be aware that all guides assume a Unix shell like bash or zsh.
+It is possible to develop Ory Hydra on Windows, but please be aware that all guides assume a Unix shell like bash or zsh.
#### Formatting Code
@@ -607,7 +607,7 @@ The code for these tests is located in [./cypress/integration](./cypress/integra
##### OpenID Connect Conformity Tests
-To run ORY Hydra against the OpenID Connect conformity suite, run
+To run Ory Hydra against the OpenID Connect conformity suite, run
```shell script
$ test/conformity/start.sh --build
@@ -645,17 +645,7 @@ Official:
* [User Login & Consent Example](https://github.com/ory/hydra-login-consent-node)
Community:
-* [Kubernetes helm chart](https://k8s.ory.sh/helm/hydra.html)
-* [Werther - an Identity Provider over LDAP](https://github.com/i-core/werther)
-* [Terraform Provider](https://registry.terraform.io/providers/hypnoglow/oryhydra/latest) and its [source code](https://github.com/hypnoglow/terraform-provider-oryhydra).
+* Visit [this document for an overview of community projects and articles](https://www.ory.sh/docs/ecosystem/community)
-:warning: Outdated Community Projects:
-The following projects are outdated and won't work anymore in most cases. Having said that they still might help you to better understand how to integrate HYDRA and solve specific cases.
-* [ORY Hydra middleware for Gin](https://github.com/janekolszak/gin-hydra)
-* [Consent App SDK for Go](https://github.com/janekolszak/idp)
-
-## Blog posts & articles
-
-* [Creating an oauth2 custom lamda authorizer for use with Amazons (AWS) API Gateway using Hydra](https://blogs.edwardwilde.com/2017/01/12/creating-an-oauth2-custom-lamda-authorizer-for-use-with-amazons-aws-api-gateway-using-hydra/)
-* Warning, ORY Hydra has changed almost everything since writing this
-article: [Hydra: Run your own Identity and Access Management service in <5 Minutes](https://blog.gopheracademy.com/advent-2015/hydra-auth/)
+Developer Blog:
+* Visit the [Ory Blog](https://www.ory.sh/blog/) for guides, tutorials and articles around Ory Hydra and the Ory ecosystem.
\ No newline at end of file