Source authetication using Kong

sachithmuhandiram · October 11, 2021, 3:12am

Is there a way to authenticate request source and API key together?

Scenario is like this :
If valid source IP range is 192.168.1.0/24

Kong should check API key and whether its incoming source is within the defined IP range, if both are valid, allowed to access the service.

I couldnt find a resource for this.

fomm · October 11, 2021, 6:54am

Kong has IP restriction plugin and key auth plugin. Maybe you can enable both plugin on your API service/route.

and

Topic		Replies	Views
How to ensure Upstream API endpoint only invoked through KONG	1	1111	September 11, 2018
Check URI authorization for consumer? Questions	0	341	December 14, 2020
How best to secure api from requests that aren't routed through Kong Questions	2	606	September 18, 2018
Ip-Restrictions on Consumers Questions	5	771	October 4, 2019
Force user's to request API data via Kong	4	741	July 23, 2018