Hi!, I was looking into keycloak when I stumble upon the ory ecosystem. I have read the docs but I’m still a little lost if my use case is a good fit for any or more ory projects.
I’m using envoy as a reverse proxy for my apps where I can use oidc to protect my endpoints and pass the id token as an authorization token.
I’m looking to:
- login with my google account
- be able to add custom roles and groups to the identities. Add those roles as claims in the idtoken so I can manage access in my apps after validating the token
That way I can validate the token in the apps and assign permission based on identity and role claims.
Is this a use case covered??
I can see that I don’t need oathkeeper since I already have envoy as a proxy.
I can use hydra as a oidc server in the proxy using google as the identidy provider.
Not sure if I can customize roles per user… In hydra? kratos?