Using Hydra to authenticate via external providers

ntrianta · September 18, 2018, 12:21pm

Hello everyone,

I apologize in advance for the potentially silly question, but I’m rather new to the whole concept of OAuth2.0 and OpenID. I am trying to evaluate Hydra (and the ORY echosystem by extent) as an authentication solution, and I’m trying to figure out if one could an external OAuth 2.0 provider (e.g. Github, Facebook, etc.) as the login & consent provider. I’ve tried to read the documentation as carefully as I could but I’m still a bit unclear on this detail.

Thank you very much in advance!

Regards,
Nick

ntrianta · September 21, 2018, 9:49am

Hi,

I think I found my own answer: No.
Since the login & consent provider needs to call Hydra and accept/reject the requests, this indeed has to be written as a layer that knows about Hydra and how to talk to it. Ultimately one could use external providers to obtain user information and then integrate that into the custom login logic.

Please correct me if I’ve still got this wrong.

Cheers,
Nick

hackerman · September 21, 2018, 11:50am

Yup you’re right. Hydra does not manage identities so it doesn’t offer integration with other IDPs directly, but you can obviously implement that in your consent&login app!

ntrianta · September 21, 2018, 11:50am

Thank you very much for your reply.

It becomes much more clear after you write a little bit of code to interact with external providers (e.g. Github) and thus realize that Hydra deals with a different concern.

pcdummy · October 22, 2018, 3:10am

See if https://github.com/dexidp/dex does what you need.

ntrianta · October 27, 2018, 1:09pm

Hello! Thanks for your suggestion. I’m aware of Dex, but we found that the whole ORY ecosystem covers our needs better. We’ll write the missing bits ourselves.