Salt Security | Kong Docs

Version Compatibility

Kong Gateway Enterprise

3.4.x

3.3.x

3.2.x

3.1.x

3.0.x

2.8.x

1.2.x

1.1.x

1.0.x

0.35-x

0.34-x

See all

Kong Gateway (OSS)

3.4.x

3.3.x

3.2.x

3.1.x

3.0.x

2.8.x

1.2.x

1.1.x

1.0.x

0.14.x

0.13.x

0.12.x

See all

Unsupported Plugin: This plugin is developed, tested, and maintained by Salt Security

Support

The Salt Security Kong deployment is used to capture a mirror of application traffic and send it to the Salt Security Service for analysis. This plugin has low CPU and memory consumption and adds no latency to the application since it does not sit in line with the production traffic. The plugin needs to see unencrypted traffic (after SSL termination) to enable the Salt Security service to perform analysis.

Deployment

Salt Security is easy to deploy as a Kong module.

Install the plugin

Once you have obtained the .rock file from your Salt Security distributor, install it using the LuaRocks package manager:

$ luarocks install kong-plugin-salt-agent-0.1.0-1.all.rock

If you need help with installation, see the documentation on Installing a Plugin.

Configure the plugin

$ curl -X POST http://<kong-domain>:<kong-port>/services/<your-kong-service-id>/plugins/ \
  --data "name=salt-agent" \
  --data "config.salt_domain=<salt_domain>" \
  --data "config.salt_backend_port=<salt_backend_port>" \
  --data "config.salt_token=<salt_token>"

Note: installation may be different between Kong versions.

Next Salt Security Configuration