Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

Hi guys, How should protect my API's using Oathkeeper or where should i get start using Oathkeeper is there any example?

Hey!

We do have an example, but it is outdated a bit so might not be super helpful:
<https://blog.getambassador.io/part-2-api-access-control-and-authentication-with-kubernetes-ambassador-and-ory-oathkeeper-q-a-127fa57f6332>

There is a little quickstart showing basics in the docs:
<https://www.ory.sh/oathkeeper/docs/next/configure-deploy>
Also check out this discussion, might be useful:
<https://github.com/ory/oathkeeper/issues/624>

Are you able to share some info on your use case and stack?

<@U011D3UQKNY> Thank you for response I will look into the Examples.

I have an my project which exposes some API's and I want only give an access to authorized user and they can make request to API's

Then definitely check out the configure &amp; deploy example:
<https://www.ory.sh/oathkeeper/docs/next/configure-deploy#access-rules>

Let me know if you get stuck!