Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

Our own backend is written in Go
Frontend: NextJS

For browsers kratos should be implemented using a cookie based authentication flow

Check out this reference implementation: <https://github.com/ory/kratos-selfservice-ui-react-nextjs>

Kratos and your backend need to be hosted on the same top level domain. Kratos sets the cookie in the browser app. The cookie will be sent to the backend.

Kratos is the user management and authentication service of Ory. There are other services like authorization (keto), federation (hydra) and zero trust proxy (oathkeeper), too.