Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Repo info
Activity
  • Jan 31 2019 19:29
    leeh starred ory/hydra
  • Jan 31 2019 19:05
    metallurgical starred ory/hydra
  • Jan 31 2019 16:15
    efesler starred ory/hydra
  • Jan 31 2019 13:12
    tdseed starred ory/hydra
  • Jan 31 2019 02:33
    LeonardoTeixeira starred ory/hydra
  • Jan 30 2019 23:59
    Pettsu starred ory/hydra
  • Jan 30 2019 22:26
    aeneasr commented #1275
  • Jan 30 2019 18:13
    DJviolin starred ory/hydra
  • Jan 30 2019 12:22
    dushyantgohil commented #1275
  • Jan 30 2019 12:17
    aeneasr closed #1275
  • Jan 30 2019 12:17
    aeneasr commented #1275
  • Jan 30 2019 12:08
    dushyantgohil opened #1275
  • Jan 30 2019 11:21
    nikolaia starred ory/hydra
  • Jan 30 2019 10:40
  • Jan 30 2019 10:39
    inkebear starred ory/hydra
  • Jan 30 2019 10:16
    cbrevik starred ory/hydra
  • Jan 30 2019 10:15
  • Jan 30 2019 10:15
    safeoy starred ory/hydra
  • Jan 30 2019 08:59
    boljen starred ory/hydra
  • Jan 30 2019 03:25
    vienvu89 starred ory/hydra
hackerman
@aeneasr
after it was processed by that library?
yeah it seems so, hydra doesn't do that kind of nonsense! :D
see here, it adds a default expiry to the header if none is provided
Michal Dziemianko
@mdziemianko
actually let me do proper testing i might be wrong
just seen the same piece of code
hackerman
@aeneasr
yeah
eyJhbGciOiJSUzI1NiIsImtpZCI6InB1YmxpYzoxNDc5ZDFiMC1iYWYwLTQwZjctYmVhYi00OTUxMmFjNDlmNmUiLCJ0eXAiOiJKV1QifQ.eyJhdWQiOiJhZG1pbiIsImF1dGhfdGltZSI6MTUxOTMwODU4NiwiZXhwIjoxNTE5MzEyMTg2LCJpYXQiOjE1MTkzMDg1ODYsImlzcyI6Imh0dHA6Ly9sb2NhbGhvc3Q6NDQ0NCIsIm5vbmNlIjoiem9qd2dic3p1cW13bGJmeWVkY2p5dnRnIiwicmF0IjoxNTE5MzA4NTg2LCJzdWIiOiJ1c2VyOjEyMzQ1OmRhbmRlYW4ifQ.ixxYc0clrVxEL3w3NuS-Ug-DFAHzp8QS421Gf2KJ0zfZqhbOqckwUfeIcU5Zgf_cP6Kov1CMorxtupijBOeAjCI6pOnUVEgmF_3MZGV5pZOtwXW0sqFycmQ5sLp4GAtEGORUX_GUWzhfnNr4vQpw597QqRmEL-r0vd_Nj7vHy3FlFEV0T4HBExh8Jf3XB3SIgLhwjq6wK17muuFCVMBCB3pp9AFCmQfM3SAxaOPmj28tApTAv9UgxlNPzZCvHnCQ1n1BEWP59f7ITikIs_P0Bf-jcOL0PFfKhdPB78srQ9uxLL2SJ1DeSDePQgbDs-EDwTGrGa0wIUbO6KyzLz5EKD98-r1zcVtxT1VSdsJL3rATStzOk97ooLDje9FmkcJvsF4Q_M72w7mIgQorD5nAGUXx9NJW5vt5gD6yYtHbe2Na20qo6n0R-3p87eA6JkOZJOOJLmCd0pgh2DCYQaGU1VogWm5LJYjOZTmoujsahC7xNvEemqxw0RYcNbBM4yTgVEqQfTnBOkDlKnTQLuxDKNRYNMFcTHrJIwxo9Yh89NSYM68dFe1MF4QkLlW-xaAykgqWaWff7LzzFy8rbfDeADVVuF7Z6MYo65Rj3RL8RLZ3XAU9BC7WxOoO97TrgIB8bvh54L1d5Xap3olT7OxCvWE3ioOkMU1Fi7aM-knfwsY
this is a token by hydra
it includes a kid, the typ and an alg
so everything that is needed for a proper JWT
{
  "alg": "RS256",
  "kid": "public:1479d1b0-baf0-40f7-beab-49512ac49f6e",
  "typ": "JWT"
}
Michal Dziemianko
@mdziemianko
yeah kid is gone and typ
so looks like itsdangerous really is dangerous
hackerman
@aeneasr
definitely an issue with code/library used
lol
Michal Dziemianko
@mdziemianko
not the first weird thign its doing
Michal Dziemianko
@mdziemianko
@arekkas - verified its the python library that is doing crazy stuff. Sorry for blaming hydra:D
hackerman
@aeneasr
no worries
all hail hydra
vivien-ps
@vivien-ps
Is there anyone who worked on a Terraform template for Hydra ?
Sandro Manke
@sandrom
hail hydra
@arekkas yup i am in DE, sorry late replies, fun by meeting marathons
Daniel Reverri
@dreverri
Is it possible to pass query parameters to the consent app through the auth call? I'd like clients to be able to specify query parameters for processing in the consent app.
hackerman
@aeneasr
yes just check the redirect value
Daniel Reverri
@dreverri
thank you
campbs
@campbs
@jamessoubry Thanks for the response!!
Levi Thornton
@lsthornt
is it possible to add more than one aud claim on the ID token from Hydra? use case: front end client needs to make requests to back end. they have different client_ids, so the frontend ID Token would need to include the backend client_id in its aud claim
hackerman
@aeneasr
currently not but if you create an issue for it I'll consider it in 1.0.0!
campbs
@campbs
Hi is there a way that I can check an environment variable without over riding. For example I want to check what CONSENT_URL is equal to
hackerman
@aeneasr
echo $CONSENT_URL
campbs
@campbs
cool thank you.
hackerman
@aeneasr
you're welcvome
Levi Thornton
@lsthornt
@arekkas awesome, I appreciate the fast response. I'll write one up an issue today. Haven't been using hydra long enough to know the pace of releases, but is this something I could help implement to get out faster?
Daniel Q. Bennett
@qmmdb
I am trying to create a API service where users are given a secret key and a secret key id (the way AWS does this), and when the users (not third party applications) access certain endpoints of the API, they need to pass along the key id in the request and as well as an HMAC signature that uses the secret key. What grant types and flows am I looking to use?
hackerman
@aeneasr
it will take a bit probably because we’re working on 1.0.0 right now
but let me know if its urgent
Aritz Berasarte
@aberasarte
Hi, I’m playing with Hydra and it looks great. I have a couple of questions that I’m sure they have been answered before but I haven’t found the answer on github nor in the gitbook. As far as I understand, if I want to add Google as an IDP, I have to implement a consent app that acts as a bridge between Hydra and Google myself. Am I right?
hackerman
@aeneasr
yes
Aritz Berasarte
@aberasarte
thanks @arekkas for the fast response. May I ask you another question? I want to support different login mechanisms in my infraestructure such as google, github and so on. Should I develop a consent app for each login mechanism I want to support or should I develop a unique consent app that connects to all the IDPs?
hackerman
@aeneasr
just build one, it's easier :)
Aritz Berasarte
@aberasarte
That’s what I thought 🙂. Thank you very much, you’ve been very helpful.
hackerman
@aeneasr
you're welcome!
Levi Thornton
@lsthornt
is it correct/expected that you'd use --fake-tls-termination for intra-cluster calls to your hydra host? e.g. before it is exposed via gateway
Somdutt Sharma
@Somdutt-Sharma
Guys, how can i install as binary
The client and server binaries are downloadable at the releases tab. There is currently no installer available. You have to add the Hydra binary to the PATH environment variable yourself or put the binary in a location that is already in your path (/usr/bin, ...). If you do not understand what that all of this means, ask in our chat channel. We are happy to help.
i put hydra-linux-386 in /usr/bin/ .... what else need to be done ?
hackerman
@aeneasr
nothing
@lsthornt yes, one way to do it :)