Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

how can i link keto and kratos ? I want to assign roles to the users registered through kratos so that i can get it's *ID* and i can assign roles

You can do that with Oathkeeper
Here's a sample oathkeeper rule that:
1. authenticates with kratos
2. authorizes with keto
```authenticators:
  - handler: cookie_session
    config:
      check_session_url: <http://kratos-public.admin/sessions/whoami>
authorizer:
  config:
    remote: <http://keto-read.admin/relation-tuples/check>
    payload: |
      {
        "namespace": "jaeger",
        "object": "myorg",
        "relation": "admin",
        "subject_id": "{{ print .Subject }}"
      }
  handler: remote_json
errors:
  - handler: redirect
match:
  methods:
    - GET
    - POST
    - PUT
    - DELETE
    - PATCH
  url: <https://example.com>&lt;.*&gt;
mutators:
  - handler: noop
upstream:
  preserveHost: true
  url: <http://jaeger-query.jaeger>```