Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

I hope there is a token appended on the query parameter when using browser flow, so that we can use that token to get identity info

Could you provide more details here? Kratos uses a session cookie which you can use to retrieve user information with on your back-end middleware.

When login success, there is a set-cookie header.
but the cookie was set for kratos.
the ui site is <http://dev-hodor.test.com|dev-hodor.test.com>
the kratos site is <http://dev-krotos.test.com|dev-krotos.test.com>

when I access the ui site, no kratos cookie was sent.
therefor, I can't get user info

okay, solved. need to set session.cookie.domain in kratos.yml