Hello Ory Community, I’m using Ory mainly with Kratos for identity management. For service-to-service communication, I see Ory provides OAuth2 flows for creating M2M tokens, but I like the approach similar to what ory provides where users can generate a Personal Access Token instead of going through OAuth. For my use case I’d like to implement something similar: • Simpler than a full OAuth2 client setup • Good enough for production quickly • I don’t need fine-grained permissions (full access is fine) what’s the recommended way to achieve this with ory? or at least to create something that works along side Kratos.

Hi, unfortunately, we don't have any ready to go solution for this, and the PAT feature in the Ory Network is built upon Ory Keto (for permissions) and Ory Oathkeeper, and a bit of custom code to manage expiry, etc.

I am working on a doc that would give some guidance on how to implement it. Happy to share notes with you @prehistoric-magician-21755 if that helps. FYI @steep-lamp-91158

yes!! that would be great @magnificent-energy-493

Yea, apologies, need a bit of time to get them in order - I made a note to reach out to you once I cleaned up my rough notes

ah got it! thank you