Hey everyone, question regarding Hydra. I configur...
# talk-hydra
Hey everyone, question regarding Hydra. I configured Kratos for user identity (login, register, recover, ...) and now finished implementing Hydra to use OAuth2.0 and OIDC capabilities in localhost. My frontend requires the hydra_admin url to talk with the consent and login endpoints. What are the recommendations when moving to a real environment (dev, staging, prod, ..) to contact the hydra_admin api? Should I create an api on top of Hydra or consider using a proxy such as Oathkeeper to manage that? Thanks
Hey Deniz, I dont have much experience with Hydra in production, but maybe this document could help: https://www.ory.sh/hydra/docs/next/production You should put the admin API behind some gateway for sure. Oathkeeper can be used, but there is probably many other solutions.
Check out how pixie designed it for their use case: https://blog.px.dev/open-source-auth/#final-design
👍 1
Thank you Vincent 👍