Using OpenID Connect plugin for authorization

Hello everybody,

I have a quite specific question about kong before considering it. Currently I am playing around with the community version but for a specific feature that we require we would need the enterprise version anyways. The feature is the OpenID Connect plugin, but I am wondering if it can not only pass the information in the id_token to the backend application but also can simply restrict the access to users that e.g. are not part of a group. I have not found much information about the enterprise version and the specific features the plugins come with.

Any information regarding this topic would be appreciated.

Best regards

i have never used it before but i think it can (with the help of acl plugin), since it let’s you define consumer mapping.

FYI, i’ve also made a custom plugin that lets you authenticate kong consumer using external oauth2 (including openid connect) provider with a different approch. This one is open source so you can use it freely.