🔐 Hydrigital Authentication Server

Secure authentication and single sign-on service

Staging Server

Sign In Create Account

🚀 Features & Capabilities

🔐

OAuth2 Authorization Code Flow

Industry-standard OAuth2 authorization flow with secure token management for web applications and server-side integrations

🛡️

PKCE Support (RFC 7636)

Enhanced security for public clients including SPAs and mobile apps. No client secrets required with proof key for code exchange

🔑

JWT Client Assertion (RFC 7523)

Advanced authentication using JWT assertions with public/private key cryptography - perfect for microservices and distributed systems

📺

Device Authorization Grant (RFC 8628)

Secure authentication for input-constrained devices like smart TVs, IoT sensors, and streaming devices

🔄

Token Exchange & Refresh

Seamless token refresh and long-lived token exchange (60 days) with PKCE-aware refresh flows

🏢

Client Credentials Grant

Server-to-server authentication for backend services and APIs without user context

👤

Password Grant (Enhanced)

Simplified authentication for trusted first-party applications with optional client secret for public clients

🔗

Single Sign-On (SSO)

Sign in once and access all your connected applications seamlessly across your organization

🔍

OAuth2 Discovery

Automatic service discovery endpoints for easy integration with client applications and development tools

📊

User Dashboard

User-friendly dashboard to manage your account, connected applications, and their permissions

🛡️

GDPR Compliance

Full GDPR compliance with data export, deletion, and privacy controls for user data protection

📱

Application Management

Easy management of authorized applications, their permissions, and revocation capabilities

🔒

Token Revocation

Secure token revocation endpoints for immediate access termination and enhanced security control

🔎

Token Introspection

Real-time token validation and introspection for resource servers and API gateways

📋

Scope Management

Granular permission control with customizable scopes for fine-tuned access management

🌐

RESTful API

Complete RESTful API with comprehensive documentation for seamless integration and testing

⚡ Technical Specifications

📋

Standards Compliance

  • ✅ OAuth 2.0 (RFC 6749)
  • ✅ PKCE (RFC 7636)
  • ✅ JWT Client Assertion (RFC 7523)
  • ✅ Device Authorization Grant (RFC 8628)
  • ✅ Token Introspection (RFC 7662)
  • ✅ Token Revocation (RFC 7009)
🔒

Security Features

  • 🛡️ HTTPS-only endpoints
  • 🔐 JWT token format
  • 🔑 RSA/ECDSA signature support
  • ⏰ Configurable token expiration
  • 🚫 Automatic token revocation
  • 🔍 Real-time token validation
🌐

Integration Support

  • 📱 Mobile app friendly (PKCE)
  • 💻 SPA compatible
  • 🖥️ Server-side applications
  • 📺 IoT & device support
  • ⚙️ Microservices ready
  • 🔌 RESTful API design

🎯 Quick Actions

👤

Sign In

Access your account and connected applications

Sign In Now
📝

Create Account

Join our secure authentication platform

Register
🔍

Documentation

Learn how to integrate with our OAuth2 service

View Docs
🧪

Interactive Testing

Test OAuth2 flows and endpoints with our interactive interface

Test API
🔑

Register App

Register your application to integrate with our OAuth2 service

Get Started
📋

API Reference

Complete API documentation with examples and endpoints

API Docs
🛡️

Your Security is Our Priority

This OAuth2 authentication server implements industry-standard security practices including encrypted connections, secure token storage, and GDPR-compliant data handling. Your personal information is protected with enterprise-grade security measures.

🔌 OAuth2 Endpoints

For developers integrating with our OAuth2 service:

Authorization
https://auth-dev.hydrigital.com/authorize
Token
https://auth-dev.hydrigital.com/token
Userinfo
https://auth-dev.hydrigital.com/api/1.0/userinfo
Discovery
https://auth-dev.hydrigital.com/.well-known/openid_configuration

Note: All endpoints require HTTPS in production. See our API documentation for detailed integration instructions.