Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

Hello! I would like to ask for a hint to implement feature of PKCS for social providers.
<https://github.com/ory/kratos/issues/4009>
What is the correct/best place to persist generated code before sending user to identity provider and to validate it when it is returned back to callback. Should we create a new persister and new database table or reuse some existing? I couldn`t find any that would fit persister_sessiontokenexchange seems to be usable but not quite sure.
Thank you very much

You can probably store it in the login_flow/registration_flow/settings_flow’s `InternalContext` . We use it also for temporarily saving things such as lookup codes or TOTP (you can check there how we do it)