Folks Question regarding Ory Cloud Incase we build a company Ory Community #ory-network

Folks, Question regarding *Ory Cloud*: Incase we ...

agreeable-microphone-83376

07/27/2022, 6:16 AM

Folks, Question regarding Ory Cloud: Incase we build a company has 2 webapps with each webapp needing different and unique Role based access Control: Eg: 1. Main Webapp (A) - with RBAC of Owner, Employee, guest 2. Developer webapp (B) to create integrations for Main Webapp (A) - with RBAC of admin, devloper, agency. In our case we want that if the user has registered as user on Main Webapp (A) and now wants to create integration in Developer webapp (B), he can directly open webapp (B) url and gets logged IN. So, can these 2 webapps use same authentication while having unique and different RBAC/authorization for each of them?

high-optician-2097

07/27/2022, 6:51 AM

Yes absolutely, you can separate that using namespaces for example 🙂

high-optician-2097

07/27/2022, 6:51 AM

Or if you want 100% isolation you could also use two separate ory cloud projects

steep-lamp-91158

07/27/2022, 9:07 AM

If both of these are first-party then you probably want to use the same project for authorization. That would allow you to build tight integrations, e.g. managing payment/... for B in A

steep-lamp-91158

07/27/2022, 9:09 AM

To share sessions across both, easiest would be to set the session cookie on

root.domain

, while your cname in Ory Cloud could be

auth.root.domain

Then A and B can run on

root.domain

or any other sub-domain, and you should be able to use the session cookies in both.

Open in Slack

Previous Next