Public Ideas Portal


ADD A NEW IDEA

AuthN/Z

Showing 14 of 133

Custom roles/permissions for Konnect similar to how gateway permissions are

Client is looking for the ability to create a custom role so that users have individual permissions. Here is there exact use-case: - Create custom role - Assign custom permission - Access to few services to that role or user - Only person can view...
Luke Najdek 2 months ago in Konnect / AuthN/Z 0 Future consideration

Create a private connection/ restrict access when calling Konnect APIs

What is the impact? : Since to map the user details customer is asked to use the Kong Konnect API over the Global URL and it could be a risk as the user details which are in customer's Konnect interfaces could be accessible to people from outside ...
Alex Bissell 4 months ago in Konnect / AuthN/Z 0 Will not implement

License Management for Customer's Federated Tenants

As an Enterprise user, I want to be able to generate developer licenses and other time/scope based licenses to I can better manage and separate license consumption for different teams and individuals. Purposes: Enhanced security posture by not exp...
Michel Zwarts over 1 year ago in Konnect / AuthN/Z / Dev Portal / Gateway Manager / Tooling - Terraform 0 Future consideration

Org Switcher support with SSO Auth

Customer would like to be able to natively use the org switcher feature when they have openid connect configured for SSO authentication to the Konnect UI.
Deirdre Anderson 12 months ago in Konnect / AuthN/Z 0 Future consideration

Allow System Accounts to renew their own token without granting access to other accounts

Currently, it is not possible to grant a system account the permission to only renew/create a new system account token for their specific account only. If a customer has a very restricted role for an account such as "Certificate Admin" for certain...
Guest 9 months ago in Konnect / AuthN/Z 0 Under consideration

Custom Teams should support assigning roles in pre-defined Teams

Customers would like to assign roles in pre-defined teams to custom teams. This would allow customers to assign all roles needed to custom teams instead of building custom teams and mapping groups to both custom teams and pre-defined teams. For ex...
Guest 9 months ago in Konnect / AuthN/Z 0 Under consideration

Permissions/Teams for Custom Plugins

Custom is interested in the ability to create a team with permissions to full CRUD of a Control Plane without allowing any ability to CRUD custom plugins. For example, we have a 'plugin admin' permission set for Control Planes, ideally, this could...
Deirdre Anderson about 1 year ago in Konnect / AuthN/Z 0 Under consideration

Multiple Authentication Methods for Konnect Developer Portal

A customer is looking to have multiple AuthN/AuthZ methods for a single Developer Portal in Konnect. Use case: Customer has 2 types of partners: Partners that can be onboarded to their IdP (Azure AD) Partners that can't be onboarded to their IdP C...
Andy Klitovchenko 5 months ago in Konnect / AuthN/Z / Dev Portal 0 Future consideration

Create a new entitlement/permission to allow the creation of Runtime Groups and pin dataplane certificates

Customers working on an automated framework to onboard new Teams into Konnect leverage a service account with privileges in Konnect to do things like create a Runtime Group, setup Teams, Role mappings, etc. In particular, they need the ability to ...
Guest about 1 year ago in Konnect / AuthN/Z 0 Under consideration

Provide more granular RBAC capability in Teams

As an Admin user in Konnect, I'd like to be able to assign roles for a specific set of entities (service, route, etc). Such that the user would have Access to a Runtime Group, but specifically service A, B, and C within that Runtime Group. Additio...
Eric Shih over 1 year ago in Konnect / AuthN/Z 0 Future consideration