Cloudflare launches self-managed OAuth for all developers on its platform
Tags Enterprise · OSS
Cloudflare opened its self-managed OAuth system to all customers on June 24, enabling developers to create and manage their own OAuth clients for delegated API access. Previously available only to a small number of manually onboarded partners, the system now supports standard OAuth flows for building SaaS integrations, internal developer platforms, and agentic tools. The migration required a zero-downtime upgrade of Cloudflare's underlying OAuth engine (Ory Hydra), including major schema migrations and consent experience improvements. The move reflects growing demand for delegated access patterns driven by AI agent workflows.
Technical significance
By opening OAuth to all users, Cloudflare enables a new class of multi-tenant integrations and agentic tooling on its platform. The zero-downtime Hydra engine upgrade also serves as a reference architecture for organizations running legacy OAuth infrastructure at scale. This positions Cloudflare's developer platform more competitively against AWS IAM and GCP's identity offerings.