hydra

Commit Graph

Author	SHA1	Message	Date
Henning Perl	f29fe3af97	feat: stateless authorization code flow (#3515 ) This patch optimizes the performance of authorization code grant flows by minimizing the number of database queries. We acheive this by storing the flow in an AEAD-encoded cookie and AEAD-encoded request parameters for the authentication and consent screens. BREAKING CHANGE: * The client that is used as part of the authorization grant flow is stored in the AEAD-encoding. Therefore, running flows will not observe updates to the client after they were started. * Because the login and consent challenge values now include the AEAD-encoded flow, their size increased to around 1kB for a flow without any metadata (and increases linearly with the amount of metadata). Please adjust your ingress / gateway accordingly.	2023-06-12 20:27:00 +02:00
Serhii Halchenko	9bdf225d8f	feat: add token request hooks for all grant types (#3427 ) Added a generic token hook that is called for all grant types and includes `payload` with a single allowed value - `assertion` to cover the `jwt-bearer` grant type customization. The existing `refresh token hook` is left unchanged and is considered to be deprecated in favor of the new hook logic. The `refresh token hook` will at some point be removed. Closes #3244 Closes https://github.com/ory/fosite/issues/729	2023-03-26 12:35:52 +02:00

Author

SHA1

Message

Date

Henning Perl

f29fe3af97

feat: stateless authorization code flow (#3515 )

This patch optimizes the performance of authorization code grant flows by minimizing the number of database queries. We acheive this by storing the flow in an AEAD-encoded cookie and AEAD-encoded request parameters for the authentication and consent screens. 

BREAKING CHANGE:

* The client that is used as part of the authorization grant flow is stored in the AEAD-encoding. Therefore, running flows will not observe updates to the client after they were started.
* Because the login and consent challenge values now include the AEAD-encoded flow, their size increased to around 1kB for a flow without any metadata (and increases linearly with the amount of metadata). Please adjust your ingress / gateway accordingly.

2023-06-12 20:27:00 +02:00

Serhii Halchenko

9bdf225d8f

feat: add token request hooks for all grant types (#3427 )

Added a generic token hook that is called for all grant types and includes `payload` with a single allowed value - `assertion` to cover the `jwt-bearer` grant type customization.

The existing `refresh token hook` is left unchanged and is considered to be deprecated in favor of the new hook logic. The `refresh token hook` will at some point be removed.

Closes #3244
Closes https://github.com/ory/fosite/issues/729

2023-03-26 12:35:52 +02:00

2 Commits