Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

I just found Ory, and it seems to be the perfect fit for my setup. The only issue is that I just cannot get the entire stack working.
Does anyone have a complete docker-compose file for the complete Ory stack with Kratos, Hydra, Oathkeeper, Keto and the kratos-selfservice-ui-node for running it in a (semi-)production environment (non-critical infrastructure, just testing for now)?
I also need some advice on how I would set up the subdomains/routes on my reverse proxy (Caddy). How should I structure it? For example, should I put everything on a subdomain, like <http://sso.example.com|sso.example.com> and then expose the different components via paths, such as <http://sso.example.com/hydra|sso.example.com/hydra> etc. or are there better solutions like using different subdomains for each component?

Imo, the easiest is to use separate domains and use the parent domain as cookie domain

This repo has a lot of examples which I think you can benefit from.

<https://github.com/ory/examples/tree/master>