GithubHelp home page GithubHelp logo

ory_auth_example's Introduction

Ory Auth Axum

This example will show you how to integrate with Ory Kratos, Ory Oathkeeper, and Ory Keto for a comprenesive authorization flow.
This example includes a UI client that wraps Ory functionality written in Leptos as an Admin interface.
We'll set up Ory Kratos/Oathkeepr/Keto services using their respective docker images. Use mailcrab as a local email server for development purposes.

Also Including(but not limited to):

  • Being a SSO Provider.
  • Social Sign In, (Kratos)
  • Multi-factor authentication, (Kratos with Mailcrab as our email test server)
  • Account verification, (Kratos with Mailcrab as our email test server)
  • Account recovery, (Kratos with Mailcrab as our email test server)
  • Profile and account management, (Kratos)
  • Authorization Middleware on Server Functions, (We use Oathkeeper to mutate the request and parse the request in our middleware)
  • Authenticating Users, (Oathkeeper)
  • Roles & Permissions, (Keto)

How logging in works

https://www.ory.sh/docs/kratos/quickstart

  1. On our front page we have this address. So when you click login you are directed to the Ory Kratos server. It will redirect you to our login route after adding a csrf token. 
                <li><a href="http://127.0.0.1:4433/self-service/login/browser?return_to=http://127.0.0.1:3000/login">Login</a></li>
  2. Our login route renders our login component and then extracts the flow_id from the url, kratos will append `?flow=` to our return url. 
        let flow_id = create_rw_signal(String::new());
    create_effect(move|_|{
        if let Some(flow) =  use_query_map().get_untracked().get("flow") {
            flow_id.set(flow.to_string());
        } else {
            //redirect to homepage
        }
    });
  3. We have a login form and we post it to Kratos 
        <form action=move||{format!("http://127.0.0.1:4433/self-service/login/flows?id={}",flow_id())} method="post">
      //<input type="text" style="display:none;" id="csrf_token" value=""/>
      <label for="email">Email:</label><br/>
      <input type="text" id="email" name="email" value=""/><br/>
      <label for="password">Password:</label><br/>
      <input type="password" id="password" name="password" value=""/><br/><br/>
      <input type="submit" value="Login"/>
    </form>

Running Our Services

Use docker compose to run our services on the same network so that they can communicate with eachother via their local network.

docker compose up

Our clients (DEPRECIATED)

(cd user_app && cargo leptos serve)

And navigate to localhost:3000 to see the user client.

(cd admin_app && cargo leptos serve)

And navigate to localhost:3002 to see the admin client.

Kratos

echo "current directory: $(pwd)" && 
docker run --rm \
  --name ory-kratos \
  -p 4433:4433 -p 4434:4434 \
  -v "$(pwd)"/kratos:/etc/config/kratos \
  oryd/kratos:v1.1.0 \
  serve --config /etc/config/kratos/kratos.yaml --watch-courier

Oathkeeper

docker run --rm \
  --name ory-oathkeeper \
  -p 4455:4455 -p 4456:4456 \
  -v ./oathkeeper.yaml:/etc/config/oathkeeper \
  -v /path/to/your/oathkeeper/rules:/etc/rules/oathkeeper \
  oryd/oathkeeper:v0.40.6 \
  serve --config /etc/config/oathkeeper/oathkeeper.yaml

Keto

docker run --rm \
  --name ory-keto \
  -p 4466:4466 \
  -v ./keto.yaml:/etc/config/keto \
  oryd/keto:v0.12.0 \
  serve --config /etc/config/keto/keto.yaml

MailHog

docker run --rm -p 1025:1025 -p 8025:8025 mailhog/mailhog \
-smtp-bind-addr 127.0.0.1:1025 \
-ui-bind-addr 127.0.0.1:8025 \
-api-bind-addr 127.0.0.1:8025

MailCrab

docker run --rm \                                         
    -p 1080:1080 \   
    -p 1025:1025 \ 
    marlonb/mailcrab:latest

Have feedback on this example?

@sjud on the leptos discord for thoughts, questions, feedback etc. Thanks!

ory_auth_example's People

Contributors

sjud avatar

Stargazers

Shabbir Hasan avatar

Watchers

avatar

Forkers

shabbirhasan1

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.