Is there a recommended pattern for developing a UI...
# talk-kratosc
curved-ram-6189
06/19/2023, 5:00 PMIs there a recommended pattern for developing a UI for a kratos hosted in the cloud? E.g. we have Kratos deployed to our dev environment, and we are trying to connect to the APIs to build a UI, however we're running into CSRF issues since Kratos and the localhost UI are not on the same domain. Is there a pattern to solve this other than running kratos locally? We've been looking at Cookie samesite settings and the like.
d
dazzling-napkin-4938
06/20/2023, 1:01 AMc
curved-ram-6189
06/20/2023, 12:08 PMDoes this do anything beyond rewriting cookie domain values? I see it manipulates JWTs but I don't really understand why?
Also, there must be a better way to achieve this? Our primary problem right now is with the CSRF cookie domain not CORs, so is there a way to disable that for development?
curved-ram-6189
06/20/2023, 4:24 PM@dazzling-napkin-4938 Can the ory proxy be used with self-hosted setups? The documentation says so, but when I try it, I get asked for a project slug
d
dazzling-napkin-4938
06/21/2023, 12:24 AMdocumentation says to do this:
Copy code
ory proxy <http://localhost:3000> <https://my-domain.com>c
curved-ram-6189
06/21/2023, 12:01 PMThat's where we're headed too, but i'm worried we'll run into CSRF issues if a development ui is on http://localhost:3000 and kratos APIs are at http://localhost:4433