Hi everybody!!! Let's see if you can help me with this setup... Here's the thing... I want to provide my users the ability to login, register, etc. using a Identity Provider (implemented via Kratos) when they access some webapps I maintain (with domains such as foo.xxx.com or bar.xxx.com) and also when they use native apps (also maintained by me) in their phones. AFAIK, Kratos must be running in the same top level domain as the clients trying to use it. So, if my Kratos is running at at auth.xxx.com, all these webapps running under xxx.com domain can use is without problems. The thing is... How can I make the users of native apps to use my Kratos instance? Other restrictions I have on this environment are: • I cannot use OAuth2 flows: therefore using Hydra as OAuth2 provider that uses Kratos as Identity Provider is not a possibility. • No possibility for poping-up a browser, login/registration flows must occur within the app

Hello @User. Yep, API flow is what you need to solve your issue.

Thanks so much for the information @User

This article explains almost everything you need to know about it

Thanks!!

BTW. Ory Cli is an example of how to use API flows. For your case I think that you need to use browser flows for browser (self-service-ui-node) is a great example of how to use them For mobile apps you need to use API flows and ory cli can be used as reference

Awesome, I've already tried the self-service ui and it works smoothly

FYI: Ory cli is a tool that manages ory cloud instances 🙂