Secure kong ingress controller

jorge.guega · December 4, 2019, 10:41am

I am accessing kong ingres controller from azure api management, I have exposed my endpoint in kubernetes as a ingress rule but I do not want this endpoint to be completely public Can credentials or a token used to secure kong ingress controller and that I can only access from azure api management?
Thank you very much

hbagdi · December 4, 2019, 4:26pm

Is Azure API management available inside a specific subnet?
Credentials are used for authentication and can be used for such a use-case.

I don’t know enough about Azure APIM, but you should consider using network level ACL type of a feature for such a use-case.

jorge.guega · December 5, 2019, 11:48am

Thank you for your reply Hbagdi,
I have APIM outside the Kong network, so I have 2 public endpoints, one from APIM and another from Kong Ingress Controller. What I need is to secure Kong Ingress Controller so that it is not public and that it can only be accessed by APIM, for example with a username and password or a certificate and limit it to that it can only be accessed by the APIM IP address. Is this possible ?
Thank you very much.

hbagdi · December 5, 2019, 5:12pm

Yes. You can use any of the auth plugins to achieve this.

Topic		Replies	Views
Kong API gateway and Kong ingress controller Questions	4	3330	September 7, 2022
Access external API endpoint with Kong Ingress controller Installation/Setup	1	2111	April 9, 2020
Kong Manager on Kubernetes: Access admin API as a Cluster IP Service Kubernetes	2	808	December 7, 2022
Password Protect Admin API on Kubernetes Questions	2	410	June 26, 2020
Using NGINX as public ingress and Kong for internal API Gateways Questions	0	413	September 12, 2021

Secure kong ingress controller

Related Topics