Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

<@U04UQ68083H> during hydra /oauth2/auth api, if the user is not logged in, instead of redirecting to configured login url in hydra's configuration file, how to redirect to oidc client specific login url?

Short answer: Ory Hydra (Ory OAuth2 &amp; OpenID Connect) redirects unauthenticated users to a single, globally configured Login URL. The knowledge sources do not mention a way to override the login URL per OAuth2 client during /oauth2/auth. Instead, you configure one login endpoint and it receives the login_challenge to proceed. If you need different behavior per client, implement that routing logic inside your custom login app (e.g., inspect the login_challenge → getOAuth2LoginRequest → client info → branch accordingly) and then accept/reject the login request. ([Custom login flow overview](<https://www.ory.sh/docs/oauth2-oidc/custom-login-consent/flow>), [Login endpoint example](<https://www.ory.sh/docs/oauth2-oidc/custom-login-consent/flow#login-endpoint-code-example>), [Configure login URL](<https://www.ory.sh/docs/hydra/guides/custom-ui-oauth2#configure-ory-network>))