Skip to content

feat(docs): Document Ory Hydra as OAuth2 provider #843

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
migmartri merged 2 commits into from
May 29, 2024
Merged

feat(docs): Document Ory Hydra as OAuth2 provider #843

migmartri merged 2 commits into from
May 29, 2024

Conversation

@javirln
Copy link
Member

@javirln javirln commented May 29, 2024

This patch adds documentation regarding the configuration needed to use Ory Hydra as OAuth2 provider.

Closes #829

@javirln
feat(docs): Document Ory Hydra as OAuth2 provider
b9388fb 
Signed-off-by: Javier Rodriguez <javier@chainloop.dev>
@javirln javirln requested review from jiparis and migmartri May 29, 2024 12:00
@javirln javirln self-assigned this May 29, 2024
migmartri
migmartri approved these changes May 29, 2024
View reviewed changes
docs/docs/guides/deployment/hydra-oauth2/hydra-oauth2.mdx

Relevant information that can be noted from the command signature is:
- `name`: The name of the OAuth2 client
- `grant-type`: The grant type of the client it needs to be set `authorization_code` and `refresh_token`
Copy link
Member

@migmartri migmartri May 29, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

do we need refresh token? I do not think so.

Copy link
Member Author

@javirln javirln May 29, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What do we have on dex?

Copy link
Member

@migmartri migmartri May 29, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not sure about dex but Auth0, which we use in prod seems to by default indeed add refresh_token. I guess it's fine although I do not think we keep any kind of refresh token in the client, we could potentially disable that grant and should be fine.

For now, until we test that, I'd leave it as is

Thanks

Update adding link https://auth0.com/docs/get-started/applications/application-grant-types#public-applications

@javirln
First round of feedback
6145c09 
Signed-off-by: Javier Rodriguez <javier@chainloop.dev>
@migmartri migmartri merged commit 9a3b089 into main May 29, 2024
@migmartri migmartri deleted the feat/829 branch May 29, 2024 23:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@migmartri migmartri migmartri approved these changes

@jiparis jiparis Awaiting requested review from jiparis

Assignees

@javirln javirln

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Document Ory setup

3 participants

@javirln @migmartri