Install Kong Gateway on Docker
See the list of Docker tags and pull the Docker image:
(latest Kong Gateway version: 2.7.0.0)
Kong Gateway supports both PostgreSQL 9.5+ and Cassandra 3.11.* as its datastore. This guide provides steps to configure PostgreSQL.
If you prefer to use the open-source Kong Gateway image with Docker Compose, Kong also provides a Docker Compose template with built-in orchestration and scalability.
Some older Kong Gateway images are not publicly accessible. If you need a specific patch version and can’t find it on Kong’s public Docker Hub page, contact Kong Support.
The Kong Gateway software is governed by the Kong Software License Agreement. Kong Gateway (OSS) is licensed under an Apache 2.0 license.
Prerequisites
- A Docker-enabled system with proper Docker access
- (Enterprise only) A
license.jsonfile from Kong
Install Kong Gateway with a database
Set up a Kong Gateway container with a PostgreSQL database to store Kong configuration.
Deprecation warning: Cassandra as a backend database for Kong Gateway is deprecated. This means the feature will eventually be removed.
Our target for Cassandra removal is the Kong Gateway 4.0 release. Starting with the Kong Gateway 3.0 release, some new features might not be supported with Cassandra.
Pull and tag the Kong Gateway image
-
Pull the Docker image:
You should now have your Kong Gateway image locally.
-
Tag the image:
Prepare the database
-
Create a custom Docker network to allow the containers to discover and communicate with each other:
docker network create{NETWORK_NAME} -
Start a PostgreSQL container:
docker run -d --name{PG_CONTAINER_NAME}\ --network={NETWORK_NAME}\ -p 5432:5432 \ -e "POSTGRES_USER={DATABASE_USER}" \ -e "POSTGRES_DB={DATABASE_NAME}" \ -e "POSTGRES_PASSWORD={DATABASE_PASSWORD}" \ postgres:9.6 -
Prepare the Kong database:
docker run --rm --network={NETWORK_NAME}\ -e "KONG_DATABASE=postgres" \ -e "KONG_PG_HOST={PG_CONTAINER_NAME}" \ -e "KONG_PG_PASSWORD={CONTAINER_PASSWORD}" \ -e "KONG_PASSWORD={PASSWORD}" \{TAG_NAME}{DATABASE_NAME}migrations bootstrap
Start Kong Gateway
Important: The settings below are intended for non-production use only, as they override the default
admin_listensetting to listen for requests from any source. Do not use these settings in environments directly exposed to the internet.
If you need to expose theadmin_listenport to the internet in a production environment, secure it with authentication.
-
Run the following command to start a container with Kong Gateway:
Note: The
HOSTNAMEforKONG_PORTAL_GUI_HOSTshould be preceded by a protocol, for example,http://. -
Verify your installation:
Access the
/servicesendpoint using the Admin API:curl -i -X GET --url http://{HOSTNAME}:8001/servicesYou should receive a
200status code. -
(Not available in OSS) Verify that Kong Manager is running by accessing it using the URL specified in
KONG_ADMIN_GUI_URL:http://{HOSTNAME}:8002
Install Gateway in DB-less mode
Important: Running Kong Gateway on Docker in DB-less mode is supported for both Enterprise and OSS images. However, there is currently no documentation for setting up an Enterprise image in DB-less mode, so adjust the following steps as needed for an Enterprise deploy.
The steps involved in starting Kong in DB-less mode are the following:
-
Create a Docker network:
This is the same as in the Pg/Cassandra guide. We’re also using
kong-netas the network name and it can also be changed to something else.docker network create kong-netThis step is not strictly needed for running Kong in DB-less mode, but it is a good precaution in case you want to add other things in the future (like a rate-limiting plugin backed up by a Redis cluster).
-
Create a Docker volume:
For the purposes of this guide, a Docker Volume is a folder inside the host machine which can be mapped into a folder in the container. Volumes have a name. In this case we’re going to name ours
kong-voldocker volume create kong-volYou should be able to inspect the volume now:
docker volume inspect kong-volThe result should be similar to this:
[ { "CreatedAt": "2019-05-28T12:40:09Z", "Driver": "local", "Labels": {}, "Mountpoint": "/var/lib/docker/volumes/kong-vol/_data", "Name": "kong-vol", "Options": {}, "Scope": "local" } ]Notice the
MountPointentry. We will need that path in the next step. -
Prepare your declarative configuration file:
The syntax and properties are described on the Declarative Configuration Format guide.
Add whatever core entities (Services, Routes, Plugins, Consumers, etc) you need there.
On this guide we’ll assume you named it
kong.yml.Save it inside the
MountPointpath mentioned in the previous step. In the case of this guide, that would be/var/lib/docker/volumes/kong-vol/_data/kong.yml -
Run the following command to start a container with Kong Gateway.
Although it’s possible to start the Kong container with
KONG_DATABASE=off, it is usually desirable to also include the declarative configuration file as a parameter via theKONG_DECLARATIVE_CONFIGvariable name. To do this, we need to make the file “visible” from within the container. Use the-vflag, which maps the Docker volume to the/usr/local/kong/declarativefolder in the container. -
Verify that Kong Gateway is running:
curl -i http://{HOSTNAME}:8001For example, get a list of services:
curl -i http://{HOSTNAME}:8001/services
Troubleshooting
If you did not receive a 200 OK status code or need assistance completing
setup, reach out to your support contact or head over to the
Support Portal.
Next Steps
Check out Kong Gateway’s series of Getting Started guides to get the most out of Kong Gateway.