Skip to content
Kong Docs are moving soon! Our docs are migrating to a new home. You'll be automatically redirected to the new site in the future. In the meantime, view this page on the new site!
Kong Logo | Kong Docs Logo
  • Docs
    • Explore the API Specs
      View all API Specs View all API Specs View all API Specs arrow image
    • Documentation
      API Specs
      Kong Gateway
      Lightweight, fast, and flexible cloud-native API gateway
      Kong Konnect
      Single platform for SaaS end-to-end connectivity
      Kong AI Gateway
      Multi-LLM AI Gateway for GenAI infrastructure
      Kong Mesh
      Enterprise service mesh based on Kuma and Envoy
      decK
      Helps manage Kong’s configuration in a declarative fashion
      Kong Ingress Controller
      Works inside a Kubernetes cluster and configures Kong to proxy traffic
      Kong Gateway Operator
      Manage your Kong deployments on Kubernetes using YAML Manifests
      Insomnia
      Collaborative API development platform
  • Plugin Hub
    • Explore the Plugin Hub
      View all plugins View all plugins View all plugins arrow image
    • Functionality View all View all arrow image
      View all plugins
      AI's icon
      AI
      Govern, secure, and control AI traffic with multi-LLM AI Gateway plugins
      Authentication's icon
      Authentication
      Protect your services with an authentication layer
      Security's icon
      Security
      Protect your services with additional security layer
      Traffic Control's icon
      Traffic Control
      Manage, throttle and restrict inbound and outbound API traffic
      Serverless's icon
      Serverless
      Invoke serverless functions in combination with other plugins
      Analytics & Monitoring's icon
      Analytics & Monitoring
      Visualize, inspect and monitor APIs and microservices traffic
      Transformations's icon
      Transformations
      Transform request and responses on the fly on Kong
      Logging's icon
      Logging
      Log request and response data using the best transport for your infrastructure
  • Support
  • Community
  • Kong Academy
Get a Demo Start Free Trial
Kong Konnect
  • Home icon
  • Kong Konnect
  • Dev Portal
  • Access And Approval
  • Manage Dev Portal Team Access
github-edit-pageEdit this page
report-issueReport an issue
  • Kong Gateway
  • Kong Konnect
  • Kong Mesh
  • Kong AI Gateway
  • Plugin Hub
  • decK
  • Kong Ingress Controller
  • Kong Gateway Operator
  • Insomnia
  • Kuma

  • Docs contribution guidelines
  • Introduction
    • Overview of Konnect
    • Architecture
    • Network Resiliency and Availability
    • Port and Network Requirements
    • Private Connections to Other Cloud Providers
      • Create a private connection with AWS PrivateLink
    • Geographic Regions
    • Centralized consumer management
    • Compatibility
    • Stages of Software Availability
    • Release Notes
    • Support
      • Control Plane Upgrades FAQ
      • Supported Installation Options
  • Get Started
    • Overview
    • Add your API
    • Migrating a Self-Managed Kong Gateway into Konnect
  • Gateway Manager
    • Overview
    • Dedicated Cloud Gateways
      • Overview
      • Provision a Dedicated Cloud Gateway
      • Securing Backend Traffic
      • Transit Gateways
      • Azure VNET Peering
      • Custom Domains
      • Custom Plugins
      • Data plane logs
    • Serverless Gateways
      • Overview
      • Provision a serverless Gateway
      • Securing Backend Traffic
      • Custom Domains
    • Data Plane Nodes
      • Installation Options
      • Upgrade a Data Plane Node
      • Verify a Data Plane Node
      • Secure Control Plane/Data Plane Communications
      • Renew Data Plane Certificates
      • Parameter Reference
      • Using Custom DP Labels
    • Control Plane Groups
      • Overview
      • Working with Control Plane Groups
      • Migrate Configuration into Control Plane Groups
      • Conflicts in Control Planes
    • Kong Gateway Configuration in Konnect
      • Overview
      • Manage Plugins
        • Overview
        • Adding Custom Plugins
        • Updating Custom Plugins
        • How to Create Custom Plugins
      • Create Consumer Groups
      • Secrets Management
        • Overview
        • Konnect Config Store
        • Set Up and Use a Vault in Konnect
      • Manage Control Plane Configuration with decK
    • Active Tracing
      • Overview
    • KIC Association
    • Backup and Restore
    • Version Compatibility
    • Troubleshooting
  • Mesh Manager
    • Overview
    • Create a mesh with the Kubernetes demo app
    • Federate a zone control plane to Konnect
    • Migrate a self-managed zone control plane to Konnect
  • Service Catalog
    • Overview
    • Integrations
      • Overview
      • Datadog
      • GitHub
      • GitLab
      • PagerDuty
      • SwaggerHub
      • Traceable
      • Slack
    • Scorecards
  • API Products
    • Overview
    • Product Documentation
    • Productize a Service
  • Dev Portal
    • Overview
    • Dev Portal Configuration Preparation
    • Create a Dev Portal
    • Sign Up for a Dev Portal Account
    • Publish an API to Dev Portal
    • Access and Approval
      • Manage Developer Access
      • Manage Developer Team Access
      • Add Developer Teams from IdPs
      • Manage Application Registrations
      • Configure generic SSO for Dev Portal
      • Configure Okta SSO for Dev Portal
    • Application Lifecycle
    • Register and create an application as a developer
    • Enable and Disable App Registration for API Product Versions
    • Dynamic Client Registration
      • Overview
      • Okta
      • Curity
      • Auth0
      • Azure
      • Custom IdP
    • Portal Management API Automation Guide
    • Audit Logging
      • Overview
      • Set up an Audit Log Webhook
      • Set up an Audit Log Replay Job
    • Portal Customization
      • Overview
      • About Self-Hosted Dev Portal
      • Host your Dev Portal with Netlify
      • Custom Domains
    • Dev Portal SDK
    • Troubleshoot
  • Advanced Analytics
    • Overview
    • Dashboard
    • Explorer
    • Analyze API Usage and Performance with Reports
    • Requests
  • Org Management
    • Plans and Billing
    • Authentication and Authorization
      • Overview
      • Teams
        • Overview
        • Manage Teams
        • Teams Reference
        • Roles Reference
      • Manage Users
      • Manage System Accounts
      • Personal Access Tokens
      • Social Identity Login
      • Org Switcher
      • Configure Generic SSO
      • Configure Okta SSO
      • Login Sessions Reference
      • Troubleshoot
    • Audit Logging
      • Overview
      • Set up an Audit Log Webhook
      • Set up an Audit Log Replay Job
    • Account and Org Deactivation
  • API
    • Overview
    • API Request API (Beta)
      • API Spec
    • API Products API
      • API Spec
    • Audit Logs API
      • API Spec
      • Audit Log Webhooks
    • Control Plane API
      • API Spec
    • Control Plane Configuration API
      • API Spec
    • Cloud Gateways API
      • API Spec
    • Identity API
      • API Spec
      • Identity Integration Guide
      • SSO Customization
    • Konnect Search API (Beta)
      • API Spec
    • Mesh Manager API
      • API Spec
      • Kong Mesh API Reference
    • Portal Client API
      • API Spec
    • Portal Management API
      • API Spec
    • Reference
      • Filtering
      • API Errors
  • Reference
    • Labels
    • Plugin Ordering Reference
    • Konnect Search
    • Terraform Provider
    • Audit Logs
    • Verify audit log signatures
    • IdP SAML attribute mapping
enterprise-switcher-icon Switch to OSS
On this pageOn this page
  • Prerequisites
  • Configure developer teams
    • Create an API product
    • Create developer teams
    • Enable Portal RBAC
    • Summary
  • More information
Looking for the new Developer Portal beta docs? Try the beta now.

Manage Dev Portal Team Access

A common scenario for a Dev Portal is to restrict developers’ ability to view or request access to specific API products based on their permissions. Konnect Dev Portal enables administrators to define Role-Based Access Control (RBAC) for teams of developers through the Konnect UI and API.

Portal RBAC supports two different roles for API products that can be applied to a team of developers:

  • API Viewer: Provides developers with read access to the documentation associated with an API product.
  • API Consumer: Includes API Viewer permissions as well as allows developers to register applications to consume versions of an API product.

In this guide, you will set up two developer teams and then enable Portal RBAC using a hypothetical scenario.

Prerequisites

  • Two test developer accounts registered
  • A configured control plane
  • A personal access token for authorization. This is only required if you plan to use the API to create developer teams.

If you have existing registered developers in Konnect, you must configure developer teams before enabling Portal RBAC. If you enable Portal RBAC before configuring teams for your developers, it will prevent all developers from seeing any API products in your Dev Portal.

We recommend setting up your teams and permissions before enabling RBAC to allow for a seamless transition; developers see what they’re supposed to, instead of nothing at all.

Configure developer teams

In this scenario, you are a product manager at a pizza company, responsible for overseeing their online application. Your task is to create a Dev Portal intended for delivery companies. This portal will grant delivery companies access to your APIs, enabling them to incorporate your pizza offerings into their own delivery service offerings.

pizza ordering api flow

Figure 1: Diagram that shows how the Pizza Ordering API works in this scenario. The diagram shows how a customer, Rosario, orders a pizza through the Pizza App, which triggers the Pizza Ordering API to be sent to the pizza restaurant. Once the restaurant receives the API request, they begin to make the pizza. When the pizza is ready, the Pizza restaurant’s Dispatch Driver API alerts the Pizza App. The Pizza App assigns a delivery driver that picks up the pizza and delivers it to Rosario.

One of your primary objectives is to ensure that only trusted delivery partners are granted access to develop applications using your APIs and deliver your pizzas.

To achieve this, you must create two groups of developers, each with different levels of API access:

  • Authorized Delivery Partners: This group can access and consume your APIs so they can integrate them into their own delivery applications.
  • Prospective Partners: These developers are currently undergoing an evaluation process. Since these potential partners have not completed the evaluation process, you grant them restricted view-only access. This allows them to review the API specs and gain an understanding of how your system operates.

Create an API product

In this scenario, before you can configure developer teams, you must have an API product created. This API product will be for your Pizza Ordering API. This API is used at your pizza company’s website to take orders. Delivery companies can hook into this to see when orders are placed so they can have drivers ready.

Konnect UI
API

In runtimes icon Gateway Manager, select a control plane and follow these steps:

  1. Select Gateway Services from the side navigation bar, then New Gateway Service.
  2. From the Add a Gateway Service dialog, enter the following to create a new service:
    • Name: pizza_ordering
    • Upstream URL: https://httpbin.konghq.com
    • Use the defaults for the remaining fields.
  3. Click Save.
  4. To create an API product for your service, navigate to API Products in the sidebar, click Add API Product and enter Pizza Ordering in the Product Name field.
  5. Click Publish to portal from the Actions dropdown menu. This will allow developers to access the API product once you assign them to a team.
  6. Click New Version from the Actions dropdown menu and enter v1 in the Version Name field and then click Create.
  7. Click the v1 version and then click Link to add a service.
  8. Select a control plane from the Select Control Plane dropdown menu, select pizza_ordering from the Gateway Service dropdown menu, and then click Save.
  9. Click the Edit icon next to the status of your product version and select Published from the Edit version status dialog and then click Save.
  10. You need to enable app registration if you want the developer in the Authorized Delivery Partners group to be able to consume your APIs by registering apps. You can use an authentication method of your choice in the enable or disable application registration documentation.

You now have a published API product for your Pizza Ordering API in your Dev Portal.

The Konnect API uses Personal Access Token (PAT) authentication. You can obtain your PAT from the personal access token page. The PAT must be passed in the Authorization header of all requests.

  1. Create the pizza_ordering service:

     curl --request POST \
       --url https://{region}.api.konghq.com/v2/control-planes/{controlPlaneId}/core-entities/services \
       --header 'Authorization: Bearer <personal-access-token>' \
       --header 'Content-Type: application/json' \
       --header 'accept: application/json' \
       --data '{
           "name": "pizza_ordering",
           "host": "httpbin.konghq.com",
           "path": "/pizza_ordering"
       }'
    

    You can get the controlPlaneId by using the list control planes endpoint to list all control planes and their IDs.

    You should get a 201 response like the following:

     {
         "connect_timeout": 60000,
         "created_at": 1692885974,
         "enabled": true,
         "host": "httpbin.konghq.com",
         "id": "06acc4f4-c6d8-4daf-bef6-79866e88ca86",
         "name": "pizza_ordering",
         "path": "/pizza_ordering",
         "port": 80,
         "protocol": "http",
         "read_timeout": 60000,
         "retries": 5,
         "updated_at": 1692885974,
         "write_timeout": 60000
     }
    

    Save the id value from the output. This is your GATEWAY-SERVICE-ID and will be used in another step.

  2. Create the Pizza Ordering API product:

     curl --request POST \
       --url https://{region}.api.konghq.com/v2/api-products \
       --header 'Authorization: Bearer <personal-access-token>' \
       --header 'Content-Type: application/json' \
       --header 'accept: application/json' \
       --data '{
           "name": "Pizza Ordering",
           "description": "API product for pizza ordering"
       }'
    

    You should get a 201 response like the following:

     {
         "labels": {},
         "id": "0429aa6b-d789-4c73-bbb1-73a228c69477",
         "name": "Pizza Ordering",
         "description": "API product for pizza ordering",
         "portal_ids": [],
         "created_at": "2023-01-01T00:00:00.000Z",
         "updated_at": "2023-01-01T00:00:00.000Z"
     }
    

    Save the id value from the output. This is your api-product-id and will be used in another step.

  3. Using theapi-product-id of the newly created API product, publish the Pizza Ordering API product:

     curl --request PATCH \
       --url https://{region}.api.konghq.com/v2/api-products/{id} \
       --header 'Authorization: Bearer <personal-access-token>' \
       --header 'Content-Type: application/json' \
       --header 'accept: application/json' \
       --data '{
       "portal_ids":[
         "DEV_PORTAL_ID"
       ]
     }'
    

    The DEV_PORTAL_ID can be found in the Konnect UI in the Dev Portal section.

    You should get a 200 response like the following:

     {
         "labels": {},
         "id": "38219b88-28fb-4a51-aaca-ea5b931939d8",
         "name": "Pizza Ordering",
         "description": "API product for pizza ordering",
         "portal_ids": [
           "a060b86d-593b-4e7e-9cc4-188d2f13265e"
         ],
         "created_at": "2023-01-01T00:00:00.000Z",
         "updated_at": "2023-01-01T00:00:00.000Z"
     }
    
  4. Using theapi-product-id of the newly created API product, create a v1 version for the Pizza Ordering API product and publish it:

     curl --request POST \
       --url https://{region}.api.konghq.com/v2/api-products/{id}/product-versions \
       --header 'Authorization: Bearer <personal-access-token>' \
       --header 'Content-Type: application/json' \
       --header 'accept: application/json' \
       --data '{
       "name":"v1",
       "publish_status":"published",
       "gateway_service":{
         "control_plane_id":"CONTROL_PLANE_ID",
         "id":"GATEWAY_SERVICE_ID"
         }
       }'
    

    You should get a 201 response like the following:

     {
         "id": "0a8eebb6-0ed4-4382-c366-c1f4ea01f295",
         "name": "v1",
         "publish_status": "published",
         "deprecated": false,
         "created_at": "2023-01-01T00:00:00.000Z",
         "updated_at": "2023-01-01T00:00:00.000Z",
         "gateway_service": {
           "id": "0f5a6eaa-1267-4259-b226-fd2520926ee2",
           "control_plane_id": "5b32f5e1-6c0e-448d-bd94-14c770c4ffbd"
         }
     }
    
  5. You need to enable app registration if you want the developer in the Authorized Delivery Partners group to be able to consume your APIs by registering apps. Currently, the only way to enable app registration is by using the Konnect UI. You can use an authentication method of your choice in the enable or disable application registration documentation.

You now have a published API product for your Pizza Ordering API in your Dev Portal.

So far, you’ve used the following endpoints:

  • Create a new service
  • Create API product
  • Update an individual API product
  • Create API product version specification

Review the API documentation to see what other features are available.

Create developer teams

Next, let’s create two developer teams: “Authorized Delivery Partners” with API Viewer and Consumer permissions and “Prospective Partners” with API Consumer permissions.

Konnect UI
API
  1. From the navigation menu, open dev-portal icon Dev Portal.
  2. Click Teams in the sidebar and then click Add team.
  3. Enter the following:
    • Team name: Authorized Delivery Partners
    • Description: Team of vetted delivery partners that can view and consume APIs
  4. On the Developers tab of your new team, click Add developer and select a test developer to add to the team.
  5. On the Products tab of your new team, click Add Role.
  6. Select the Pizza Ordering product from the dropdown menu and select API Consumer and API Viewer from the Add roles dropdown menu.
  7. Click Teams in the sidebar and click New Team again and enter the following:
    • Team name: Prospective Partners
    • Description: Team of unvetted partners that can only view APIs
  8. On the Developers tab of your new team, click Add developer and select a test developer to add to the team.
  9. On the Products tab of your new team, click Add Role.
  10. Select the Pizza Ordering product from the dropdown menu and select API Viewer from the Add roles dropdown menu.

You now have added your test developer accounts to two teams with different access permissions for your Dev Portal. These developers won’t be able to access anything in Dev Portal yet, though, because we need to enable Portal RBAC next.

The Konnect API uses Personal Access Token (PAT) authentication. You can obtain your PAT from the personal access token page. The PAT must be passed in the Authorization header of all requests.

  1. Create the Authorized Delivery Partners team:

     curl --request POST \
       --url https://{region}.api.konghq.com/v2/portals/{portal-id}/teams \
       --header 'Authorization: Bearer <personal-access-token>' \
       --header 'Content-Type: application/json' \
       --header 'accept: application/json' \
       --data '{
       "name": "Authorized Delivery Partners",
       "description": "Team of vetted delivery partners that can view and consume APIs"
       }'
    

    The portal-id can be found in the Konnect UI in the Dev Portal section.

    You should get a 201 response like the following:

     {
         "id": "4bfe2ae8-42d9-46a3-a5de-80b054ae8a44",
         "name": "Authorized Delivery Partners",
         "description": "Team of vetted delivery partners that can view and consume APIs",
         "created_at": "2023-01-01T00:00:00.000Z",
         "updated_at": "2023-01-01T00:00:00.000Z"
     }
    

    The portal-id will be the value from the output of the request you used earlier to create the Pizza Delivery API product.

    Save the id value from the output. This is your teamId for the Authorized Delivery Partners team and will be used in another step.

  2. Create the Prospective Partners team:

     curl --request POST \
       --url https://{region}.api.konghq.com/v2/portals/{portal-id}/teams \
       --header 'Authorization: Bearer <personal-access-token>' \
       --header 'Content-Type: application/json' \
       --header 'accept: application/json' \
       --data '{
       "name": "Prospective Partners",
       "description": "Team of unvetted partners that can only view APIs"
       }'
    

    The portal-id can be found in the Konnect UI in the Dev Portal section.

    You should get a 201 response like the following:

     {
         "id": "4bfe2ae8-42d9-46a5-a5de-80b054ae8a44",
         "name": "Prospective Partners",
         "description": "Team of unvetted partners that can only view APIs",
         "created_at": "2023-01-01T00:00:00.000Z",
         "updated_at": "2023-01-01T00:00:00.000Z"
     }
    

    Save the id value from the output. This is your teamId for the Prospective Partners team and will be used in another step.

  3. Assign the API Consumer role to the Authorized Delivery Partners created in the previous section for your pizza ordering API product:

     curl --request POST \
       --url https://{region}.api.konghq.com/v2/portals/{portal-id}/teams/{team-id}/assigned-roles \
       --header 'Authorization: Bearer <personal-access-token>' \
       --header 'Content-Type: application/json' \
       --header 'accept: application/json' \
       --data '{
       "role_name": "API Consumer",
       "entity_id": "API_PRODUCT_ID",
       "entity_type_name": "Services",
       "entity_region": "us"
       }'
    

    The portal-id can be found in the Konnect UI in the Dev Portal section.

    You should get a 201 response like the following:

     {
         "id": "091260a3-1e96-40c9-86c2-c7cbe795dfdb",
         "role_name": "API Consumer",
         "entity_id": "0f5a6eaa-1967-4269-b226-fd2520926ee2",
         "entity_type_name": "Services",
         "entity_region": "us"
     }
    
  4. Now assign the API Viewer role to the Prospective Partners team for the same pizza ordering API product:

     curl --request POST \
       --url https://{region}.api.konghq.com/v2/portals/{portal-id}/teams/{team-id}/assigned-roles \
       --header 'Authorization: Bearer <personal-access-token>' \
       --header 'Content-Type: application/json' \
       --header 'accept: application/json' \
       --data '{
       "role_name": "API Viewer",
       "entity_id": "API_PRODUCT_ID",
       "entity_type_name": "Services",
       "entity_region": "us"
       }'
    

    The portal-id can be found in the Konnect UI in the Dev Portal section.

    You should get a 201 response like the following:

     {
         "id": "091268a3-1e96-40c9-86c2-c7cbe795dfdb",
         "role_name": "API Viewer",
         "entity_id": "0f5a6eac-1967-4269-b226-fd2520926ee2",
         "entity_type_name": "Services",
         "entity_region": "us"
     }
    
  5. Add a test developer to the Authorized Delivery Partners team:

     curl --request POST \
       --url https://{region}.api.konghq.com/v2/portals/{portalId}/teams/{teamId}/developers \
       --header 'Authorization: Bearer <personal-access-token>' \
       --header 'Content-Type: application/json' \
       --data '{"id":"DEVELOPER-ID"}'
    

    If you don’t remember the IDs for your test developers, you can send a GET request to list developers.

    You should get a 201 response like the following:

     Created
    
  6. Add a test developer to the Prospective Partners team:

     curl --request POST \
       --url https://{region}.api.konghq.com/v2/portals/{portalId}/teams/{teamId}/developers \
       --header 'Authorization: Bearer <personal-access-token>' \
       --header 'Content-Type: application/json' \
       --data '{"id":"DEVELOPER-ID"}'
    

    If you don’t remember the IDs for your test developers, you can send a GET request to list developers.

    You should get a 201 response like the following:

     Created
    

You now have added your test developer accounts to two teams with different access permissions for your Dev Portal. These developers won’t be able to access anything in Dev Portal yet, though, because we need to enable Portal RBAC next.

So far, you’ve used the following endpoints:

  • Create team
  • Assign role

Enable Portal RBAC

Now that you’ve configured your two different teams and assigned permissions to those teams, you can enable Portal RBAC to let those permissions take affect. Portal RBAC is disabled by default in the Konnect portal.

Konnect UI
API
  1. From the navigation menu, open dev-portal icon Dev Portal and click Settings in the sidebar.
  2. To turn on Portal RBAC, click the Portal RBAC toggle.

Now, if you access your Dev Portal as one of the test developer accounts, you should see that the one assigned to the “Prospective Partners” team can only view the Pizza Ordering API while the one assigned to the “Authorized Delivery Partners” team can both view and consume the Pizza Ordering API.

To enable RBAC, you must make a PATCH request to the portal configuration endpoint. The following example shows how to enable RBAC in the portal. For more details on how to create your personal access token, see Authentication.

curl --request PATCH \
  --url https://{region}.api.konghq.com/konnect-api/api/portals/{portal-id} \
  --header 'Authorization: Bearer <personal-access-token>' \
  --header 'Content-Type: application/json' \
  --header 'accept: application/json' \
  --data '{"rbac_enabled": true}'

The portal-id can be found in the Konnect UI in the Dev Portal section.

Now, if you access your Dev Portal as one of the test developer accounts, you should see that the one assigned to the “Prospective Partners” team can only view the Pizza Ordering API while the one assigned to the “Authorized Delivery Partners” team can both view and consume the Pizza Ordering API.

Summary

Now that you’ve completed the steps in this scenario, you have a developer team for vetted, pizza delivery partners that can view and consume your APIs as well as a read-only developer team for unvetted, potential delivery partners. Since Portal RBAC is enabled, those teams can now view your Pizza Ordering APIs.

More information

Portal RBAC API documentation

Thank you for your feedback.
Was this page useful?
Too much on your plate? close cta icon
More features, less infrastructure with Kong Konnect. 1M requests per month for free.
Try it for Free
  • Kong
    Powering the API world

    Increase developer productivity, security, and performance at scale with the unified platform for API management, service mesh, and ingress controller.

    • Products
      • Kong Konnect
      • Kong Gateway Enterprise
      • Kong Gateway
      • Kong Mesh
      • Kong Ingress Controller
      • Kong Insomnia
      • Product Updates
      • Get Started
    • Documentation
      • Kong Konnect Docs
      • Kong Gateway Docs
      • Kong Mesh Docs
      • Kong Insomnia Docs
      • Kong Konnect Plugin Hub
    • Open Source
      • Kong Gateway
      • Kuma
      • Insomnia
      • Kong Community
    • Company
      • About Kong
      • Customers
      • Careers
      • Press
      • Events
      • Contact
  • Terms• Privacy• Trust and Compliance
© Kong Inc. 2025