Setting up Kong Gateway using the GUI
Steps
-
In Kong Manager, select the default workspace and then click Plugins.
-
For the
ping-authplugin, click Edit, and then click the toggle to enable the plugin.
-
Optional: If you want to enable the plugin for specific consumers, services, or routes, click Scoped, and then enter Service, Route, and Consumer information as needed.
-
Connect Kong Gateway to PingAuthorize:
-
Copy the PingAuthorize sideband client’s shared secret.
-
Enter the hostname of your PingAuthorize server and the port of the HTTPS Connection Handler into the Config.Service URL field.
You can find this port number in the PingAuthorize administrative console by going to Configuration → System → Connection Handlers.
+
Example:
+ For example, this field’s value could be
https://pingauthorize:8443.-
Paste the shared secret into the Config.Shared Secret field in Kong Manager.
-
Ensure the Config.Secret Header Name value in Kong Manager matches the secret header name configured for the Sideband API Servlet Extension in PingAuthorize.
-
-
Optional: Configure the rest of the optional fields in Kong Manager or the API.
Option API Field Name Description Config.Connection KeepAlive Ms
connection_keepAlive_msThe duration to keep the connection alive for reuse. The default is
60000.Config.Connection Timeout Ms
connection_timeout_msThe duration to wait before the connection times out. The default is
10000.Config.Enable Debug Logging
enable_debug_loggingControls if requests and responses are logged at the debug level. The default is
false. For log messages to show inerror.log, you must setlog_level = debuginkong.conf.Config.Verify Service Certificate
verify_service_certificateControls whether the service certificate is verified. This is intended for testing purposes and the default is
true. -
Click Update, and then click Update Plugin.
Result
Kong Gateway is now configured to work with PingAuthorize.