OAuth2 · OIDC · Enterprise Ready

The Authorization Server Built for Modern Teams

Secure, scalable, and fully customizable. Manage internal scopes, dynamic pages, Stripe subscriptions, and advanced RBAC with an elegant Laravel foundation.

Get it now, it's free View Documentation 
{
  "issuer": "https://www.elyerr.org",
  "authorization_endpoint": "https://www.elyerr.org/oauth/authorize",
  "token_endpoint": "https://www.elyerr.org/oauth/token",
  "userinfo_endpoint": "https://www.elyerr.org/api/user",
  "jwks_uri": "https://www.elyerr.org/oauth/jwks",
  "scopes_supported": [
    "openid", "profile", "email",
    "internal", "admin:read", 
    "billing:premium"
  ],
  "response_types_supported": [
    "code", "token", "id_token"
  ],
  "grant_types_supported": [
    "authorization_code",
    "refresh_token",
    "client_credentials"
  ]
}
OpenID Connect Certified Configuration
Core Features

Internal Scope for Trusted Applications

Empower your first-party and internal microservices with a dedicated 'internal' scope, ensuring secure, high-trust communication without public exposure.

Private Scopes

Define scopes exclusively for your organization's trusted applications, keeping them hidden from third-party OAuth clients.

scope: internal

Zero Trust Ready

Combine internal scopes with service-to-service authentication for a robust, secure ecosystem.

Automatic Approval

Skip user consent screens for internal applications, providing a seamless user experience.

Developer Experience

Dynamic Pages & Full Laravel Power

Create landing pages, marketing sites, or custom dashboards with the full force of Laravel and modern frontend tooling.

Blade + Facades - Use auth(), config(), route() directly in your custom page templates.
Vue.js Ready - Global Vue instance available for reactive components without complex builds.
jQuery Available - Prefer jQuery? Use it globally for DOM manipulation and AJAX requests.
TailwindCSS & Dark Mode - Utility-first styling with seamless light/dark theme support.
Mini-Framework Modules - Package new features as isolated modules, just like developing a native Laravel app.
custom-page.blade.php

Vue.js Example: 

@extends('layouts.pages')

@section('content')
  <div id="app" v-cloak>
    <h1 class="text-2xl font-bold">
      @{{ greeting }}
    </h1>
    <button @click="fetchData" 
            class="bg-blue-600 text-white px-4 py-2 rounded">
      Load Scopes
    </button>
  </div>
@endsection

@push('js')
<script nonce="5baac3dde8712da824c5b4d0a124a7d1">
  const { createApp, ref } = Vue;
  createApp({
    setup() {
      const greeting = ref("Welcome!");
      const scopes = ref([]);
      const fetchData = async () => {
        const res = await $server.get('/api/scopes');
        scopes.value = res.data;
      };
      return { greeting, scopes, fetchData };
    }
  }).mount('#app');
</script>
@endpush

jQuery Example: 

@push('js')
<script nonce="5baac3dde8712da824c5b4d0a124a7d1">
  $(function() {
    $('#loadScopes').on('click', function() {
      $.ajax({
        url: '/api/scopes',
        method: 'GET',
        success: function(data) {
          data.forEach(function(scope) {
            $('#scopesList').append('<li>' + scope + '</li>');
          });
        }
      });
    });
  });
</script>
@endpush
Client Management

OAuth Client Management

Control every aspect of your OAuth server and modules through an intuitive, yet powerful admin interface.

Client Configuration 
{
  "id": "019da2d4-d067-70ac-9431-da3dc826f110",
  "name": "Client",
  "secret": "q91KryYJpYAOgPCm3KzJxHqHQq8RNl2BlR3Cnpmf",
  "confidential": true,
  "created_by": {
    "name": "Chanelle Reinger",
    "email": "damore.noemie@example.net"
  },
  "redirect_uris": [
    "https://www.domain.org/callback"
  ],
  "grant_types": "authorization_code, refresh_token",
  "discovery_uri": "https://www.elyerr.org/.well-known/openid-configuration",
  "created_at": "2026-04-18 18:02:29",
  "updated_at": "2026-04-18 18:02:29"
}
Monetization Ready

Advanced Scope Management & Monetization

Granular permissions mapped to groups, services, and roles. Monetize your API using scopes as subscription plans.

Hierarchical Scopes

Define complex permissions with a clear hierarchy. Map scopes to user roles, groups, and services dynamically.

administrator:users:full Full user management
commerce:vpn:enterprise Sell VPN subscriptions
administrator:service:view View available service scopes

Stripe Integration

Turn scopes into subscription plans. Grant or revoke API access automatically based on billing status.

Sync Stripe products with OAuth scopes
Automatic scope provisioning on payment success
Customer portal integration for plan management
Admin Panel

Advanced Configuration Panel

Control every aspect of your OAuth server and modules through an intuitive, yet powerful admin interface.

OAuth Clients & Secrets
User & Role Management
Webhook Configuration
Module Settings & Permissions
Join the Community

Open Source & Community Driven

This project is open source and free to use. Join our community to get help, share ideas, and contribute to the development.

Get it on GitHub

100% Open Source

It's free →
⭐ Star us on GitHub

Join Telegram

Spanish speaking community

@elyerrlabs →
💬 Join the conversation

Ready to Secure Your Ecosystem?

Deploy your private authorization server in minutes. Full control, unlimited potential.

Get it now, it's free Join Community

We use essential cookies for the platform to function properly:

oauth2_csrf — Protects your session against cross-site request forgery attacks. This cookie is required for all form submissions and API requests.

oauth2_session — Maintains your authenticated session while you navigate the platform. Without it, you would need to log in on every page.

oauth2_server — Essential for API communication between the frontend and Laravel Passport. Enables secure OAuth2 authentication for your own APIs.

No personal data is collected, shared, or sold. These cookies are strictly necessary and cannot be disabled.

By continuing, you accept the use of these essential cookies.