Using OpenID Connect plugin for authorization

timoschuetz · October 28, 2020, 8:32am

Hello everybody,

I have a quite specific question about kong before considering it. Currently I am playing around with the community version but for a specific feature that we require we would need the enterprise version anyways. The feature is the OpenID Connect plugin, but I am wondering if it can not only pass the information in the id_token to the backend application but also can simply restrict the access to users that e.g. are not part of a group. I have not found much information about the enterprise version and the specific features the plugins come with.

Any information regarding this topic would be appreciated.

Best regards
Timo

rucciva · December 11, 2020, 9:53am

i have never used it before but i think it can (with the help of acl plugin), since it let’s you define consumer mapping.

FYI, i’ve also made a custom plugin that lets you authenticate kong consumer using external oauth2 (including openid connect) provider with a different approch. This one is open source so you can use it freely.

Topic		Replies	Views
Kong OIDC and social login Questions	4	681	June 10, 2020
How to use the openid-connect plugin with upstream APIs? Installation/Setup	4	1278	March 11, 2021
Client_Credentials for all API´s Questions	4	407	February 4, 2019
Token exchange for OpenId Connect plugin using Authorisation Code Flow	0	293	January 26, 2023
Guidance on Kong plugin development - extension of oauth2 plugin (FAPI support) Questions	1	723	December 11, 2020

Using OpenID Connect plugin for authorization

Related Topics