LoginSign Up
← Back to all sparks
O

Ory

INFRA · APIS
Velocity0.0

Open-source identity, authentication and access control platform.

www.ory.sh

Ory polishes OAuth2/OIDC ergonomics and adds live event observability to its Network.

identityoauth2oidcobservabilitydeveloper-experience
Current state
Ory pairs open-source identity components with the managed Ory Network. The recent run is incremental: OAuth2 performance, CLI JWK export, customizable login labels, and OIDC flow refinements, alongside a new live event stream and events page in the Network.
Where it's heading
Two threads run in parallel: steady refinement of the OAuth2/OIDC surface (audiences, token hooks, native recovery) and a move toward observability, giving operators real-time visibility into registrations, logins, and token issuance.
Prediction
Expect the Network's event and observability surface to keep expanding, with continued ergonomic work on OIDC flows for native and mobile clients.

Recent moves

  1. 2y ago

    Improved OAuth2 performance and export of JWKs via CLI

    Certain OAuth2 flows get performance changes, and the Ory CLI can now export public JSON Web Keys. Both are practical refinements to the core OAuth2 surface rather than new direction.

    View source ↗
  2. 2y ago

    Customizing form labels on logins

    The login screen's identifier input label can now be customized, derived from the default identity schema. A small but visible step in making hosted login screens more configurable.

    View source ↗
  3. 2y ago

    Track events in Ory Network live with advanced filtering

    A project events page with advanced filtering lands in Ory Network, giving operators a structured view of project activity. It complements the live event stream as part of Ory's observability push.

    View source ↗
  4. 2y ago

    Stream live event data in Ory Network

    Ory Network gains a real-time stream of events such as registrations, logins, and machine-to-machine token issuance. This adds an observability capability to what was primarily an enforcement product.

    View source ↗
  5. 2y ago

    Improved usability of OIDC providers on forced refresh login flows

    Forced refresh login flows now omit irrelevant OIDC providers from generated forms, a minor cleanup of login form rendering.

    View source ↗
  6. 2y ago

    Bugfix OAuth2 token hook configuration

    A bug fix to OAuth2 token hook configuration restores correct handling of authenticated and unauthenticated webhook targets. A targeted correctness fix with no new surface.

    View source ↗