Kong - The Gateway without Limitations

Part 4: SAML 2.0 Bearer Assertion Flow for OAuth 2.0

My last blog provided a solution for implementing an OAuth 2.0-based On-Behalf-Of (delegation) grant flow. This time it’s about implementing a Security Assertion Markup Language (SAML) 2.0 Profile for OAuth 2.0 Client Authentication and Authorization Grants. This flow allows OAuth 2.0 clients to obtain access tokens by presenting SAML 2.0 assertions as a form of authentication. This somewhat extended grant flow expands the scope for exchanging authentication and authorization data between different parties with seamless management, all achieved through the API Gateway.

20.02.2024

Alexander Suchier

Transitioning from Prometheus to OpenTelemetry - A Journey of a Cluster's Metrics Evolution

Part 1: A Brief Introduction

With this blog post, we kick off a series on evolving our Kubernetes metrics stack. Our journey to replace Prometheus with an OpenTelemetry solution begins with an introduction OpenTelemetry and why we see it as a valid alternative to our current implementation. After explaining the main parts of the OpenTelemetry project and briefly reviewing its history, we discuss the pros and cons. After reading this, you will be able to follow along our hands-on and deep-tech posts on how we optimize our metrics stack.

19.01.2024

Mikel Jason Münnekhoff, Sherief Ahmed

Kong - The Gateway without Limitations

Part 3: Token Exchange On-Behalf-Of

In the last blog, I provided a solution on how to overcome the character limit when logging. This time, I would like to show how to implement an OAuth 2.0-based On-Behalf-Of (delegation) grant flow. Such complex token orchestration tasks can be easily handled on the API gateway while ensuring the highest security standards which even make zero-trust architectures possible in the first place.

21.12.2023

Alexander Suchier

Secrets Handling in Kubernetes

Committing plain .yaml files which defines Kubernetes secrets definitions to a source code management system is not very secure. This article explains why and shows two better alternatives.

24.11.2023

Stefan Kühnel

Building and running Flutter mobile applications for Android on AWS Device Farm

This article will give you an overview on how to build and run a Flutter cross-platform mobile application for the Android OS platform in the cloud. We will cover all the steps from the basic app itself to the integration with Appium, and ultimately the deployment and testing on several devices in the AWS Device Farm.

03.11.2023

Alexander Kroll

older posts      newer posts

Other Topics

Series