https://www.ory.sh/ logo
#talk-hydra
Title
# talk-hydra
s

square-family-68634

12/08/2021, 7:02 PM
Hi everyone, after reviewing your product, I would like to get some clarifications on Server to server Authentication. Can I leverage your platform for microservices architecture? I need an ability for one service to consume APIs on behalf of an identity. I can use Hydra & OAuth to do that, but for that to work, I would like to avoid the grant-flow (should take place seamlessly) for specific services. In other words, internal OAuth clients should not go through the grant flow and are able to communicate on behalf of other identities.
m

magnificent-energy-493

12/09/2021, 5:30 PM
Yea its built for a microservice architecture! You can use for example Hydra to provide the OAuth2.0 tokens, and Oathkeeper in front of the API There is an example, but it is WIP.
s

square-family-68634

12/10/2021, 5:55 PM
Can u explain how do i create a trusted app? trusted app should not go through the client grant flow
m

magnificent-energy-493

12/10/2021, 6:00 PM
Hey Eldad, check out this blogpost: https://www.ory.sh/oauth2-for-mobile-app-spa-browser/
s

square-family-68634

12/10/2021, 10:00 PM
Thanks, I've read it but its not what I'm looking for. For Machine 2 Machine Authentication to work, I need an ability to seamlessly grant access to a trusted OAuth client, That way internal microservices will be able to consume APIs on behalf of a user without his explicit approval In addition, it will be nice to to consume APIs on behalf of itself - as an OAuth client. That way, I'll be able to create dedicated APIs for management (i.e. register as App in my app market and manage it's name, description, etc)