Skip to content
2023 API Summit Hackathon: Experiment with AI for APIs (August 28 - September 27) Learn More →
|
search

Welcome to Kong Plugin Hub

Extend Kong Gateway and Kong Konnect with powerful plugins and easy integrations

Plugin Overview | Compatibility | License tiers

Filter plugins icon
Clear search icon

Authentication

Portal Application Registration icon

Portal Application Registration

Allow portal developers to register applications against services
Support by:
Basic Authentication icon

Basic Authentication

Add Basic Authentication to your services
Support by:
HMAC Auth icon

HMAC Auth

Add HMAC Authentication to your services
Support by:
JWT icon

JWT

Verify and authenticate JSON Web Tokens
Support by:
Key Auth icon

Key Auth

Add key authentication to your Services
Support by:
Key Authentication - Encrypted icon

Key Authentication - Encrypted

Add key authentication to your services
Support by:
LDAP Authentication icon

LDAP Authentication

Integrate Kong with an LDAP server
Support by:
OAuth 2.0 Authentication icon

OAuth 2.0 Authentication

Add OAuth 2.0 authentication to your service
Support by:
OpenID Connect icon

OpenID Connect

Integrate Kong with a third-party OpenID Connect provider
Support by:
Session icon

Session

Support sessions for Kong authentication plugins.
Support by:
Vault Authentication icon

Vault Authentication

Add Vault authentication to your services
Support by:
Okta icon

Okta

Integrate Okta's API Access Management (OAuth as a Service) with Kong API Gateway
Support by:
Okta

Security

ACME icon

ACME

Let's Encrypt and ACMEv2 integration with Kong Gateway
Support by:
Bot Detection icon

Bot Detection

Detect and block bots or custom clients
Support by:
CORS icon

CORS

Allow developers to make requests from the browser
Support by:
IP Restriction icon

IP Restriction

Allow or deny IPs that can make requests to your services
Support by:
TLS Handshake Modifier icon

TLS Handshake Modifier

Requests a client to present its client certificate
Support by:
TLS Metadata Headers icon

TLS Metadata Headers

Proxies TLS client certificate metadata to upstream services via HTTP headers
Support by:
Imperva API Security icon

Imperva API Security

Integrate Kong Gateway with Imperva API Security to discover, monitor, and protect APIs
Support by:
Imperva
Kong Spec Expose icon

Kong Spec Expose

Expose OAS/Swagger/etc. specifications of auth protected APIs proxied by Kong
Support by:
Optum
Kong Upstream JWT icon

Kong Upstream JWT

Add a signed JWT into the header of proxied requests
Support by:
Optum
Salt Security icon

Salt Security

Integrate Kong API Gateway with Salt Security Discovery & Prevention for API-based apps
Support by:
Salt Security
Wallarm icon

Wallarm

Wallarm is AI-Powered Security Platform for protecting microservices and APIs
Support by:
Wallarm

Traffic Control

ACL icon

ACL

Control which consumers can access services
Support by:
Canary Release icon

Canary Release

Slowly roll out software changes to a subset of users
Support by:
Forward Proxy Advanced icon

Forward Proxy Advanced

Allows Kong to connect to intermediary transparent HTTP proxies
Support by:
GraphQL Rate Limiting Advanced icon

GraphQL Rate Limiting Advanced

Provide rate limiting for GraphQL queries
Support by:
Proxy Cache icon

Proxy Cache

Cache and serve commonly requested responses in Kong
Support by:
Rate Limiting icon

Rate Limiting

Rate limit how many HTTP requests can be made in a period of time
Support by:
Rate Limiting Advanced icon

Rate Limiting Advanced

Upgrades Kong Rate Limiting with more flexibility and higher performance
Support by:
Request Size Limiting icon

Request Size Limiting

Block requests with bodies greater than a specified size
Support by:
Request Termination icon

Request Termination

Terminates all requests with a specific response
Support by:
Response Rate Limiting icon

Response Rate Limiting

Rate limit based on a custom response header value
Support by:
Upstream Timeout icon

Upstream Timeout

Set timeouts on routes and override service-level timeouts
Support by:
XML Threat Protection icon

XML Threat Protection

Apply structural and size checks on XML payloads
Support by:
Kong Response Size Limiting icon

Kong Response Size Limiting

Block responses with bodies greater than a specified size
Support by:
Optum
Kong Service Virtualization icon

Kong Service Virtualization

Mock virtual API request and response pairs through Kong Gateway
Support by:
Optum

Serverless

AWS Lambda icon

AWS Lambda

Invoke and manage AWS Lambda functions from Kong
Support by:
Azure Functions icon

Azure Functions

Invoke and manage Azure functions from Kong
Support by:
Apache OpenWhisk icon

Apache OpenWhisk

Invoke and manage OpenWhisk actions from Kong
Support by:
Kong Functions (Post-Plugin) icon

Kong Functions (Post-Plugin)

Add and manage custom Lua functions to run after other plugins
Support by:
Kong Functions (Pre-Plugins) icon

Kong Functions (Pre-Plugins)

Add and manage custom Lua functions to run before other plugins
Support by:
AWS Request Signing icon

AWS Request Signing

Sign requests with AWS SIGV4 and temp credentials for secure use of AWS Lambdas in Kong.
Support by:
The LEGO Group

Analytics & Monitoring

Datadog icon

Datadog

Visualize metrics on Datadog
Support by:
OpenTelemetry icon

OpenTelemetry

Propagate spans and report space to a backend server through OTLP protocol.
Support by:
Prometheus icon

Prometheus

Expose metrics related to Kong and proxied upstream services in Prometheus exposition format
Support by:
Zipkin icon

Zipkin

Propagate Zipkin spans and report space to a Zipkin server
Support by:
Amberflo.io API Metering icon

Amberflo.io API Metering

API usage metering and usage-based billing.
Support by:
Amberflo.io Inc.
Moesif API Monetization and Analytics icon

Moesif API Monetization and Analytics

Powerful API analytics and usage-based billing to monetize APIs
Support by:
Moesif

Transformations

Correlation ID icon

Correlation ID

Correlate requests and responses using a unique ID
Support by:
DeGraphQL icon

DeGraphQL

Transform a GraphQL upstream into a REST API
Support by:
gRPC-gateway icon

gRPC-gateway

Access gRPC services through HTTP REST
Support by:
gRPC-Web icon

gRPC-Web

Allow browser clients to call gRPC services
Support by:
jq icon

jq

Transform JSON objects included in API requests or responses using jq programs.
Support by:
Request Transformer icon

Request Transformer

Use regular expressions, variables, and templates to transform requests
Support by:
Request Transformer Advanced icon

Request Transformer Advanced

Use powerful regular expressions, variables, and templates to transform API requests
Support by:
Response Transformer icon

Response Transformer

Modify the upstream response before returning it to the client
Support by:
Response Transformer Advanced icon

Response Transformer Advanced

Modify the upstream response before returning it to the client, with greater customization capabilities
Support by:
Route Transformer Advanced icon

Route Transformer Advanced

Transform routing by changing the upstream server, port, or path
Support by:

Logging

File Log icon

File Log

Append request and response data to a log file
Support by:
HTTP Log icon

HTTP Log

Send request and response logs to an HTTP server
Support by:
Loggly icon

Loggly

Send request and response logs to Loggly
Support by:
StatsD icon

StatsD

Send metrics to StatsD
Support by:
Syslog icon

Syslog

Send request and response logs to Syslog
Support by:
TCP Log icon

TCP Log

Send request and response logs to a TCP server
Support by:
UDP Log icon

UDP Log

Send request and response logs to a UDP server
Support by:
Amberflo.io API Metering icon

Amberflo.io API Metering

API usage metering and usage-based billing.
Support by:
Amberflo.io Inc.
Moesif API Monetization and Analytics icon

Moesif API Monetization and Analytics

Powerful API analytics and usage-based billing to monetize APIs
Support by:
Moesif
Kong Splunk Log icon

Kong Splunk Log

Log API transactions to Splunk using the Splunk HTTP collector
Support by:
Optum