Hi There,
I have successfully installed Kong API Gateway on my machine and also I have onboarded couple of services on the same. Currently, I have a requirement where I need to implement API encryption to the request/response payload using AES 256 encryption algorithm.
Basically, I want to expose my APIs in the encrypted version using AES 256 Algorithm. Following will be sample flow -
- Client application will be encrypting request body using AES 256 encryption algorithm and will send this encrypted payload in the API request body.
- Kong will receive this encrypted API request and will do the decryption of the same using AES 256 Algorithm. This decrypted body will be sent to upstream servers for processing.
- In the response flow, Kong will receive the plain text response body from upstream server. Then Kong will encrypt the response using same algorithm and will send it to the client application.
As I am new to Kong API Gateway, I need your assistance to understand how to implement this encryption on Kong API Gateway.
Thanks,
Nitiraj