- Need help - Really struggling with using Ory Cloud and oathkeeper together: Is there any example (For Local development and Production) which we can follow and go step by step to execute. 3rd day and still struggling :( This example: https://github.com/ory/examples/tree/master/oathkeeper/11-kratos-keto has not been helpful, as even after changing all the URL to Ory cloud URL, no success.

I don't know what your struggle is, but I can tell you what we have: •

auth.$DOMAIN

points to ory cloud •

www.$DOMAIN

is oathkeeper (as a reverse proxy) •

api.$DOMAIN

is oathkeeper (as a reverse proxy) • cookie is set to

.$DOMAIN

on ory cloud oathkeeper • proxies to a (stateless) frontend app when

www

• in addition it also proxies

api.$DOMAIN

for backend calls, etc.. my

www

uses cookie authorizer, api uses cookie and JWT.

what errors do you see? what issues are you facing? generally speaking, you should be able to just use the other URLs

@red-machine-69654 thanks for sharing, but how do you handle for local development where domain points to

localhost

?

Hi @agreeable-microphone-83376 for local you will probably need to run the

Ory cli

to "tunnel" the requests from remote Ory to your local environment. It essentially mirrors the Ory APIs under the localhost domain.

localhost config for oathkeeper? can you explain more?

@agreeable-microphone-83376 I have a docker-compose with the same components, we currently use ory cloud for kratos, so we run that locally.

I mean this approach can work, but the ory cli tunnel is what you need since that does the mapping for you on all of the data from your domain to localhost.

I use

<http://nip.io|nip.io>

domains to make it all work and avoid CORS-issues and so on, so then i exchange

$DOMAIN

in my code