Hydra offers OAuth 2.0 and OpenID Connect Core 1.0 capabilities as a service. Hydra is different, because it works with any existing authentication infrastructure, not just LDAP or SAML. By implementing a consent app (works with any programming language) you build a bridge between Hydra and your authentication infrastructure.



Hydra is available as an Apache 2.0-licensed Open Source technology. In enterprise environments however, there are numerous demands, ranging from auditing to certification to enterprise integration to technical support and a wide range of narrow use cases. To address those issues, we are launching an enterprise edition of Hydra. Contact us now for more details:




Hydra wraps your existing stack like a blanket and keeps it safe. Hydra uses cryptographic tokens to authenticate users and request their consent, no APIs required. The deprecated php-3.0 authentication service your intern wrote? It works with that too, don't worry.


Hydra scales effortlessly on every platform imaginable - including Heroku, Cloud Foundry, Docker, Google Container Engine and many more. Hydra uses pub/sub to have the latest data available in memory. The in-memory architecture allows for heavy duty workloads.


Ease of use

Developers and operators are human. Therefore, Hydra is easy to install and manage. Hydra does not care if you use React, Angular, or Cocoa for your user interface. We made APIs available for cryptographic key management, policy based access control, and policy management. Hydra is packaged using Docker.


Hydra leverages the security first OAuth2 framework Fosite, encrypts important data at rest, uses HTTP over TLS (https) out of the box. Contact us for a detailed overview of the security features used.