Kong gateway + OAuth2 plugin in multi region setup


What is the recommanded deployment setup for a multi region (worldwide) Kong gateway cluster with OAuth2 plugin ?

As the OAuth2 plugin is not compatible with the Hydrid clustering approach (control plane+data plane), I only see 3 options :

  1. Single central database on which all Kong instances are connected
  2. Replicated PG database on each region with one master and some read replicas
  3. Clustered PG database (citus,…) in order to have write capability in each region

Is there other possibilities ?