Platform
Build APIs
Kong Insomnia API Design API Testing and Debugging

Run APIs
API Gateway AI Gateway Event Gateway Service Mesh Kong Ingress Controller Kubernetes Operator

Govern APIs
Analytics Scorecards API Security & Access Control

Discover APIs
Developer Portal Service Catalog
Tools
Manage everything in one place? Explore Konnect, our unified API platform.
Learn more →
Guides
Plugins
APIs
Support
- Community
- Community Forum
- User Calls
- Help & Support
- Github
- Demos
- Workshops

Theme

Get a Demo Start Free Trial

Kong Plugin Hub

Extend Kong Gateway and Kong Konnect with powerful plugins and easy integrations

Plugins Overview Custom Plugin Development

Functionality

Analytics & Monitoring

Authentication

Logging

Security

Serverless

Traffic Control

Transformations

Deployment Platforms

on-prem

Konnect

Support By

Kong Inc.

Third Party

Trusted Content

Premium Partner

AI

AI Azure Content Safety

Use Azure AI Content Safety to check and audit AI Proxy plugin messages before proxying them to an upstream LLM

AI Prompt Decorator

Prepend or append an array of llm/v1/chat messages to a user’s chat history

AI Prompt Guard

Check llm/v1/chat or llm/v1/completions requests against a list of allowed or denied expressions

AI Prompt Template

Provide fill-in-the-blank AI prompts to users

AI Proxy

The AI Proxy plugin lets you transform and proxy requests to a number of AI providers and models.

AI Proxy Advanced

The AI Proxy Advanced plugin lets you transform and proxy requests to multiple AI providers and models at the same time. This lets you set up load balancing between targets.

AI RAG Injector

Create RAG pipelines by automatically injecting content from a vector database

AI Rate Limiting Advanced

Provides rate limiting for the providers used by any AI plugins.

AI Request Transformer

Use an LLM service to transform a client request body prior to proxying the request to the upstream server

AI Response Transformer

Use an LLM service to transform the upstream HTTP(S) prior to forwarding it to the client

AI Sanitizer

Protect sensitive information in client request bodies before they reach upstream services

AI Semantic Cache

Enhance performance for AI providers by caching LLM responses semantically

AI Semantic Prompt Guard

Semantically and intelligently create allow and deny lists of topics that can be requested across every LLM.

Analytics & Monitoring

AppDynamics

Integrate Kong Gateway with the AppDynamics APM Platform

Datadog

Visualize metrics on Datadog

OpenTelemetry

Propagate spans and report space to a backend server through OTLP protocol.

Prometheus

Expose metrics related to Kong Gateway and proxied upstream services in Prometheus exposition format

StatsD

Send metrics to StatsD

Zipkin

Propagate Zipkin spans and report tracing data to a Zipkin server

Authentication

Basic Auth

Secure Services and Routes with Basic Authentication

HMAC Auth

Add HMAC Authentication to your Gateway Services

Header Cert Authentication

Authenticate clients with mTLS certificates passed in headers by a WAF or load balancer

JWE Decrypt

Decrypt a JWE token in a request

JWT

Verify and authenticate JSON Web Tokens

JWT Signer

Verify and sign one or two tokens in a request

Key Auth

Secure Services and Routes with key authentication

Key Authentication - Encrypted

Add key authentication to your services

LDAP Authentication

Integrate Kong with an LDAP server

LDAP Authentication Advanced

Secure Kong with username and password protection, use LDAP search and service directory mapping

Mutual TLS Authentication

Secure routes and services with client certificate and mutual TLS authentication

OAuth 2.0 Authentication

Add OAuth 2.0 authentication to your Services and Routes

OAuth 2.0 Introspection

Integrate Kong Gateway with a third-party OAuth 2.0 Authorization Server

OpenID Connect

Integrate Kong Gateway with a third-party OpenID Connect provider

SAML

Provides SAML v2.0 authentication and authorization between a service provider (Kong) and an identity provider (IdP)

Session

Support sessions for Kong authentication plugins.

Upstream OAuth

Configure Kong Gateway to obtain an OAuth2 token to consume an upstream API

Vault Authentication

Add Vault authentication to your Services or Routes

Logging

File Log

Append request and response data to a log file

HTTP Log

Send request and response logs to an HTTP server

Kafka Log

Publish logs to a Kafka topic

Loggly

Send request and response logs to Loggly

Syslog

Send request and response logs to Syslog

TCP Log

Send request and response logs to a TCP server

UDP Log

Send request and response logs to a UDP server

Security

ACME

Let’s Encrypt and ACMEv2 integration with Kong Gateway

Bot Detection

Detect and block bots or custom clients

CORS

The CORS plugin lets you add Cross-Origin Resource Sharing (CORS) to a Service or a Route.

IP Restriction

Allow or deny IPs that can make requests to your services

Injection Protection

Detect and block injection attacks using regular expressions

JSON Threat Protection

Apply size checks on JSON payload and minimize risk of content-level attacks

OPA

Authorize requests against Open Policy Agent

TLS Handshake Modifier

Requests a client to present its client certificate

TLS Metadata Headers

Proxies TLS client certificate metadata to upstream services via HTTP headers

Serverless

AWS Lambda

Invoke and manage AWS Lambda functions from Kong Gateway

Azure Functions

Invoke and manage Azure functions from Kong Gateway

Post-Function

Add and manage custom Lua functions to execute after other plugins

Pre-Function

Add and manage custom Lua functions to run before other plugins

OpenWhisk

Invoke and manage OpenWhisk actions from Kong Gateway

Traffic Control

ACL

Control which Consumers can access Services and Routes

Canary Release

Slowly roll out software changes to a subset of users

Confluent Consume

Consume messages from Confluent Cloud Kafka topics and make them available through HTTP endpoints

Premium Partner

Forward Proxy Advanced

Allows Kong Gateway to connect to intermediary transparent HTTP proxies

GraphQL Proxy Caching Advanced

Cache and serve commonly requested responses in Kong Gateway

GraphQL Rate Limiting Advanced

Provides rate limiting for GraphQL queries

Kafka Consume

Consume messages from Kafka topics and make them available through HTTP endpoints

Mocking

Provide mock endpoints to test your APIs against your Services

OAS Validation

Validate HTTP requests and responses based on an OpenAPI 3.0 or Swagger API Specification

Proxy Cache

Cache and serve commonly requested responses in Kong

Proxy Caching Advanced

Cache and serve commonly requested responses in Kong, in-memory or using Redis

Rate Limiting

You can use the Rate Limiting plugin to limit how many HTTP requests can be made in a given period of seconds, minutes, hours, days, months, or years.

Rate Limiting Advanced

Enhanced rate limiting capabilities such as sliding window support, Redis Sentinel support, and increased performance

Redirect

Redirect incoming requests to a new URL

Request Size Limiting

Block requests with bodies greater than a specified size

Request Termination

Terminates all requests with a specific response

Request Validator

Validates requests before they reach the upstream service

Response Rate Limiting

Rate limit based on a custom response header value.

Route By Header

Route requests based on specified request headers

Service Protection

Prevent abuse and protect services with absolute limits on the number of requests reaching the service

Standard Webhooks

Validate that incoming webhooks adhere to the Standard Webhooks specification

Upstream Timeout

Set custom timeouts on connections to upstream services to override Gateway Service-level timeouts.

WebSocket Size Limit

Block incoming WebSocket messages greater than a specified size

WebSocket Validator

Validate WebSocket messages before they are proxied

XML Threat Protection

Apply structural and size checks on XML payloads

Transformations

Confluent

Transform requests into Kafka messages in a Confluent Kafka topic.

Premium Partner

Correlation ID

Correlate requests and responses using a unique ID

DeGraphQL

Transform a GraphQL upstream into a REST API

Exit Transformer

Customize Kong exit responses sent downstream

Kafka Upstream

Transform requests into Kafka messages in a Kafka topic.

Request Callout

Insert arbitrary API calls before proxying a request to the upstream service.

Request Transformer

Use regular expressions, variables, and templates to transform requests

Request Transformer Advanced

Use powerful regular expressions, variables, and templates to transform API requests

Response Transformer

Modify the upstream response before returning it to the client

Response Transformer Advanced

Modify the upstream response before returning it to the client, with greater customization capabilities

Route Transformer Advanced

Transform routing by changing the upstream server, port, or path

Datakit

Send requests to third-party APIs and use the response data to seed information for subsequent calls

gRPC-Gateway

Access gRPC services through HTTP REST

gRPC-Web

Allow browser clients to call gRPC services

jq

Transform JSON objects included in API requests or responses using jq programs

3rd Party Plugins

Amberflo.io API Metering

API usage metering and usage-based billing

Third Party

AppSentinels

AppSentinels plugin for API security

Third Party

AWS Request Signing

Sign requests with AWS SIGV4 and temp credentials for secure use of AWS Lambdas in Kong

Third Party

DataDome

Detect and mitigate attacks on mobile apps, websites, and APIs with DataDome bot and online fraud protection

Third Party

Imperva API Security

Integrate Kong Gateway with Imperva API Security to discover, monitor, and protect APIs

Third Party

Impart Security

Integrate Impart Security’s WAF and API security protection platform with Kong Gateway.

Third Party

Inigo GraphQL

Integrate Kong API Gateway with Inigo GraphQL Observability and Security

Third Party

Kong Response Size Limiting

Block responses with bodies greater than a specified size

Third Party

Kong Service Virtualization

Mock virtual API request and response pairs through Kong Gateway

Third Party

Kong Spec Expose

Expose OAS/Swagger/etc. specifications of auth protected APIs proxied by Kong

Third Party

Kong Splunk Log

Log API transactions to Splunk using the Splunk HTTP collector

Third Party

Kong Upstream JWT

Add a signed JWT into the header of proxied requests

Third Party

Moesif API Monetization and Analytics

Powerful API analytics and usage-based billing to monetize APIs

Third Party

Noname Security Kong Traffic Source

Noname Security machine learning & prevention blocking for Kong Gateway discovery

Third Party

Salt Security

Integrate Kong API Gateway with Salt Security Discovery & Prevention for API-based apps

Third Party

Traceable.ai

API security with inline request blocking and data capture

Premium PartnerThird Party

Wallarm

Wallarm is AI-Powered Security Platform for protecting microservices and APIs

Third Party

Something wrong?

Report an Issue | Edit this Page

Help us make these docs great!

Kong Developer docs are open source. If you find these useful and want to make them better, contribute today!

Contribute

Still need help

Ask in our Forum

Contact Support

Powering the API world

Increase developer productivity, security, and performance at scale with the unified platform for API management, service mesh, and ingress controller.

Ready to get started with Kong?

Start free trial Get a Demo

Platform

API Platform API Gateway AI Gateway Service Mesh API Builder Pricing

Platorm Docs

Kong Gateway Kong AI Gateway Kong Mesh Insomnia OpenAPI Specs Ingress Controller

Plugins

AI Plugins Analytics Plugins Authentication Plugins Security Plugins Traffic Control Plugins View all →

How-to Guides

Kong Gateway Insomnia Kong Mesh Terraform View all →

Support

Community Community Forum GitHub Demos User Calls Workshops Help & Support Contact Us

Terms | Privacy | Trust and Compliance

	
		OSZAR »