hydra

Commit Graph

Author	SHA1	Message	Date
Patrik	a47e39513f	test: parallelize and improve (#3989 )	2025-05-15 15:24:56 +02:00
hackerman	0a6c966206	feat: handle concurrent refreshes and improve graceful refreshing (#3895 ) This patch improves Ory Hydra's ability to deal with refresh flows which, for example, concurrently refresh the same token. Furthermore, graceful token refresh has been improved to handle a variety of edge cases and scenarios. Additionally, serializability errors in CockroachDB are now correctly retried. See https://github.com/ory-corp/cloud/issues/7311 Closes https://github.com/ory/hydra/pull/3895	2024-12-17 09:57:05 +01:00
Henning Perl	f29fe3af97	feat: stateless authorization code flow (#3515 ) This patch optimizes the performance of authorization code grant flows by minimizing the number of database queries. We acheive this by storing the flow in an AEAD-encoded cookie and AEAD-encoded request parameters for the authentication and consent screens. BREAKING CHANGE: * The client that is used as part of the authorization grant flow is stored in the AEAD-encoding. Therefore, running flows will not observe updates to the client after they were started. * Because the login and consent challenge values now include the AEAD-encoded flow, their size increased to around 1kB for a flow without any metadata (and increases linearly with the amount of metadata). Please adjust your ingress / gateway accordingly.	2023-06-12 20:27:00 +02:00

Author

SHA1

Message

Date

Patrik

a47e39513f

test: parallelize and improve (#3989 )

2025-05-15 15:24:56 +02:00

hackerman

0a6c966206

feat: handle concurrent refreshes and improve graceful refreshing (#3895 )

This patch improves Ory Hydra's ability to deal with refresh flows which, for example, concurrently refresh the same token. Furthermore, graceful token refresh has been improved to handle a variety of edge cases and scenarios.

Additionally, serializability errors in CockroachDB are now correctly retried.

See https://github.com/ory-corp/cloud/issues/7311
Closes https://github.com/ory/hydra/pull/3895

2024-12-17 09:57:05 +01:00

Henning Perl

f29fe3af97

feat: stateless authorization code flow (#3515 )

This patch optimizes the performance of authorization code grant flows by minimizing the number of database queries. We acheive this by storing the flow in an AEAD-encoded cookie and AEAD-encoded request parameters for the authentication and consent screens. 

BREAKING CHANGE:

* The client that is used as part of the authorization grant flow is stored in the AEAD-encoding. Therefore, running flows will not observe updates to the client after they were started.
* Because the login and consent challenge values now include the AEAD-encoded flow, their size increased to around 1kB for a flow without any metadata (and increases linearly with the amount of metadata). Please adjust your ingress / gateway accordingly.

2023-06-12 20:27:00 +02:00

3 Commits