Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

With the go-sdk, is there a way to use my user's token to get the session info server side? I'm currently stuck on:
```client.V0alpha2Api.ToSession(o.ctx, ...)```


I think there's a not in my brain, so it turns out, this would work:

```    req, err := http.NewRequestWithContext(o.ctx, http.MethodGet, fmt.Sprintf("%s/sessions/whoami"), nil)
	if err != nil {
		return nil, err
	}

	req.Header.Set("Authorization", fmt.Sprintf("bearer %s", token))
	res, err := <http://http.DefaultClient.Do|http.DefaultClient.Do>(req)
	if err != nil {
		return nil, err
	}```
But is there a way to use the sdk?

Should be FrontendApi instead of V0alpha2Api (see<https://www.ory.sh/docs/guides/upgrade/sdk-v1| SDK v1 guide>)

but yea, something like
`.toSession({ cookie: req.header("cookie") })` 
or are you not using cookie?

My service is behind oathkeeper, and oathkeeper decodes the cookie/token and gives me `X-Username: foo`.

I forgot about this part before I went down the rabbithole.

And now I am actually trying to look up the user based on username.

Ah you look up the user in Ory Identities?

Did you see this? <https://ory-community.slack.com/archives/C02MR4DEEGH/p1676560474760299>

I am not sure if username is possible, but email an option?

now just wondering where to find an endpoint that lets me maybe iterate over identities

`APIClient.IdentityApi.ListIdentities`  :slightly_smiling_face: