https://www.ory.sh/ logo
n

numerous-xylophone-35356

02/12/2022, 5:13 PM
Hello, I need to implement sso between instances of my application, as I understand it, hydra is suitable for this?
1
m

magnificent-energy-493

02/14/2022, 8:32 AM
Hello @User I think this article does a good job of explaining what an "ideal" use case is for Ory Hydra: https://www.ory.sh/hydra/docs/next/concepts/before-oauth2/ Also see this community project, that might be helpful: https://github.com/pngouin/k8s-ory-example
n

numerous-xylophone-35356

02/14/2022, 10:37 AM
Thanks for sending the links, My application will run in different servers, with its own data, but the authorization must be the same. It seems to me that I have a situation as described in this case. Did I understand everything correctly?
Are there any good articles, or a solution to do as described here? "They use a proprietary flow that includes HTTP Cookies."
p

proud-plumber-24205

02/14/2022, 10:56 AM
Hi @User You might be interested in Kratos then, please see https://www.ory.sh/kratos/docs/guides/multi-domain-cookies If you are running everything on the same domain (e.g example.com, auth.example.com, app.example.com...) then you can just use kratos normally without the advanced domain aliasing setup. If you plan on 3rd party integration support (grant access to your user data from other apps/services) then you need Hydra.
n

numerous-xylophone-35356

02/14/2022, 11:06 AM
Thanks for answering, All my instances will be on different domains. But I don't need to openly say that I want to grant access to my user data to other apps/services. I just want to connect all my applications which will be under different domains
p

proud-plumber-24205

02/14/2022, 11:06 AM
Then I would suggest you just use Kratos.
n

numerous-xylophone-35356

02/14/2022, 11:09 AM
Okay, thanks, maybe you saved me a lot of time learning hydra prematurely. 😁
❤️ 1
Kratos doesn't seem to support multiple domains yet https://github.com/ory/kratos/issues/662
p

proud-plumber-24205

02/14/2022, 11:35 AM
So you want the session to persist across your applications? e.g. sign in with appA.com and have a session at appB.com? Ah you wanted sso, I thought a bit differently. It's possible to have appA.com and appB.com have the same user information e.g. the user account exists on a singular kratos instance, but they have their own sessions (cannot sign into appA.com and have a session at appB.com).
m

magnificent-energy-493

02/28/2022, 12:48 PM
Hello @User Were you able to find an answer to your question? I am happy to walk you through the options if something is still unclear.