I am using the Kong Ingress controller (DB-less) to create an API gateway.
I wanted to add OAuth2 token introspection to verify tokens received by the Kong Ingress.
I added a Kuberneted KongPlugin, something like this:
apiVersion: configuration.konghq.com/v1 kind: KongPlugin metadata: annotations: kubernetes.io/ingress.class: kong name: gateway-oauth-plugin ... plugin: oauth2-introspection
and I annotated the Kong Ingress with following annotation:
This does not work - the Ingress never gets an IP address.
Looking at the docs I am not sure this is meant to work…
It seems the OAuth introspection plugin is not listed under the free teir, but first at the plus tier.
I don’t know much about the Kong stack - so bear with me…
Is it possible (fx by buing the Plus tier) to make the plugin work inside Kubernetes like described above?