Ping Identity’s integration kit for Kong extends Kong’s authorization capabilities through an external policy evaluation service.
Integration with Kong Gateway allows Identity and Access Management (IAM) administrators to centrally manage access control and application protection in PingOne Authorize while delegating enforcement to Kong Gateway. Follow this guide to install and configure the integration kit in Kong Gateway. Then, you can manage access control rules in PingOne Authorize.
The integration kit works with Kong Gateway or Kong Konnect.
Support for Kong Konnect is available in version 1.0.8 and later of the
ping-auth
plugin.
For information about how traffic flows through Kong Gateway and PingOne Authorize, see How API Access Management works.
The following are important usage notes for the Kong Gateway integration kit:
- Transfer-encoding
- A Kong limitation currently prevents the
ping-auth
plugin from supporting theTransfer-Encoding
header, regardless of the value. - Logging limit
- Because of Kong's log level limit, log messages are limited to 2048 bytes by default, which is less than the size of many requests and responses. For more information, see the OpenResty reference documentation.