Modern applications expect OAuth2 and OpenID Connect (OIDC), but many systems already have a working login, SSO cookies, and user database. Migrating users, passwords, and sessions to a new Identity Provider is risky and expensive.

Hydra-Bridge demonstrates a simple idea:
👉 add OAuth2/OIDC on top of an existing authentication system — without changing or migrating it.

The Core Idea

Keep your current authentication system as the source of truth.
Use Ory Hydra only as the OAuth2/OIDC engine, and add a small Bridge service that connects Hydra with your existing login flow.

Managing passwords securely is non-negotiable—but what happens when you’re modernizing an old system where passwords are hashed with outdated algorithms like descrypt?

With PassForge, you don’t have to choose between security and compatibility. Its Delegate Encoder feature allows you to seamlessly support legacy formats while enforcing modern standards for new passwords.

🌟 Why PassForge?

PassForge is a Go library that abstracts password encoding behind a flexible interface. It supports:

• ✅ bcrypt, argon2, scrypt, pbkdf2 for modern encoding
• ⚠️ Legacy support for descrypt, ldap, and others via delegation
• 🔁 A delegate encoder to route password verification/encoding based on prefix

🔎 Inspired by Spring Security’s DelegatingPasswordEncoder

The Delegate Encoder pattern in PassForge is heavily inspired by Spring Security’s DelegatingPasswordEncoder introduced in Spring Security 5.

Introduction

During the development of payment systems, handling HTTP requests may seem straightforward at first glance, but it actually hides many unpredictable risks. Behind the familiar try-catch blocks, there are “hidden errors” that are often undetected or improperly handled — leading to serious consequences such as transaction failures, data loss, or even financial loss.
In this article, we will dive deep into how hidden errors commonly occur during HTTP request handling in payment workflows, why they are easily overlooked, and how we can design more resilient systems to minimize these risks.