Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

Hey, I'm trying to figure out how oathkeeper works with the cookie_session authenticator. Its asking for a session store url, but I have no clue what it should be. This seems like the connection to kratos (which we've got running) so i tunnel that to `localhost:3000`  to list all sessions. The docs show you can only list sessions for a specific identity, so i try to get all identities to see which are registered (we created some on the cloud endpoint of kratos using both the default UI and postman), but i cant access the admin API at all. I have a PAT which i give in the authorization header to both the tunneled localhost as well as the cloud endpoint.
I suppose this is two questions, but:
1. How do I access the admin endpoint using a PAT/why isnt this working? (if any more details are needed, i'd be happy to give them)
2. What is the `session_store_url`  in the authenticator `cookie_session`  config supposed to point at?
I appreciate your time, thank you