Hello, I need to implement sso between instances of my application, as I understand it, hydra is suitable for this?

Hello @User I think this article does a good job of explaining what an "ideal" use case is for Ory Hydra: https://www.ory.sh/hydra/docs/next/concepts/before-oauth2/ Also see this community project, that might be helpful: https://github.com/pngouin/k8s-ory-example

Thanks for sending the links, My application will run in different servers, with its own data, but the authorization must be the same. It seems to me that I have a situation as described in this case. Did I understand everything correctly?

Hi @User You might be interested in Kratos then, please see https://www.ory.sh/kratos/docs/guides/multi-domain-cookies If you are running everything on the same domain (e.g example.com, auth.example.com, app.example.com...) then you can just use kratos normally without the advanced domain aliasing setup. If you plan on 3rd party integration support (grant access to your user data from other apps/services) then you need Hydra.

Thanks for answering, All my instances will be on different domains. But I don't need to openly say that I want to grant access to my user data to other apps/services. I just want to connect all my applications which will be under different domains

Then I would suggest you just use Kratos.

Okay, thanks, maybe you saved me a lot of time learning hydra prematurely. 😁

So you want the session to persist across your applications? e.g. sign in with appA.com and have a session at appB.com? Ah you wanted sso, I thought a bit differently. It's possible to have appA.com and appB.com have the same user information e.g. the user account exists on a singular kratos instance, but they have their own sessions (cannot sign into appA.com and have a session at appB.com).

Hello @User Were you able to find an answer to your question? I am happy to walk you through the options if something is still unclear.