# ====================================
# Kratos API Routes - Production (auth.example.com)
# ====================================
# Self-service routes for auth.example.com
- id: "kratos:public:self-service:auth"
  version: "v0.40.0"
  upstream:
    url: "http://kratos:4433"
    preserve_host: false
  match:
    url: "https://auth.example.com/self-service/<**>"
    methods:
      - GET
      - POST
      - DELETE
  authenticators:
    - handler: noop
  authorizer:
    handler: allow
  mutators:
    - handler: noop

# WebAuthn JavaScript for auth.example.com
- id: "kratos:public:webauthn:auth"
  version: "v0.40.0"
  upstream:
    url: "http://kratos:4433"
    preserve_host: false
  match:
    url: "https://auth.example.com/.well-known/ory/webauthn.js"
    methods:
      - GET
  authenticators:
    - handler: noop
  authorizer:
    handler: allow
  mutators:
    - handler: noop

# Session whoami endpoint for auth.example.com
- id: "kratos:public:whoami:auth"
  version: "v0.40.0"
  upstream:
    url: "http://kratos:4433"
    preserve_host: false
  match:
    url: "https://auth.example.com/sessions/whoami"
    methods:
      - GET
      - POST
      - DELETE
  authenticators:
    - handler: noop
  authorizer:
    handler: allow
  mutators:
    - handler: noop

# ====================================
# Kratos API Routes - Local Development
# ====================================
# Self-service routes for localhost
- id: "kratos:public:self-service:localhost"
  version: "v0.40.0"
  upstream:
    url: "http://kratos:4433"
    preserve_host: false
  match:
    url: "http://10.10.10.51:4455/self-service/<**>"
    methods:
      - GET
      - POST
      - DELETE
  authenticators:
    - handler: noop
  authorizer:
    handler: allow
  mutators:
    - handler: noop

# WebAuthn JavaScript for localhost
- id: "kratos:public:webauthn:localhost"
  version: "v0.40.0"
  upstream:
    url: "http://kratos:4433"
    preserve_host: false
  match:
    url: "http://10.10.10.51:4455/.well-known/ory/webauthn.js"
    methods:
      - GET
  authenticators:
    - handler: noop
  authorizer:
    handler: allow
  mutators:
    - handler: noop

# Session whoami endpoint for localhost
- id: "kratos:public:whoami:localhost"
  version: "v0.40.0"
  upstream:
    url: "http://kratos:4433"
    preserve_host: false
  match:
    url: "http://10.10.10.51:4455/sessions/whoami"
    methods:
      - GET
      - POST
      - DELETE
  authenticators:
    - handler: noop
  authorizer:
    handler: allow
  mutators:
    - handler: noop