Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

I am not understanding something here. When searching the archive for slack i come across advice to just redirect the browser to Kratos. In the end i am creating a SPA with SSR. This will cause a lot of redirects. Can we just use the FrontendApi.createBrowserRegistrationFlow to set the cookie and start the registration flow? After that i also see references to submitRegistrationFlow, but i cannot find this in the Node SDK when searching the library and there does not seem to be a reference to this. Can we just submit the flow with fetch? When i post the form with fetch to the correct url and the correct cookie gets set on the request, but i still get a 403 because of a CSRF error.

These inconsistencies/issues really make this a hard sell to the company i work.

I've only just started using kratos for a personal project, but doing it all SPA-side is what I'm doing.

Creating a registration (or login) flow via `createBrowserRegistrationFlow`, then submitting it via `updateRegistrationFlow`. There are equivalent methods for login.