Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

image.png

access-rules.yaml

config.yaml

Hi guys, can you help me with this issue. Please check the config and accessrules file. When I try to hit the endpoint `<http://127.0.0.1:8080/todos>` .
I get unauthorized response
```{
    "error": {
        "code": 401,
        "status": "Unauthorized",
        "message": "Access credentials are invalid"
    }
}```
and but this `check_session_url` endpoint is not getting hit. bcz there are no logs from that api.

I have also posted logs from oathkeeper

Can you guys help me with this issue like is there anything wrong in the config or anything else I am missing.

you need to be sure that the "check_session_url" is accessible from oathkeeper
a good verification is to jump into the pod/container/host that is running oathkeeper, do a curl (or any other http client) to that url and see if you can access it
oathkeeper can't do much if that address is inaccessible e.g. maybe there's a network issue