Secure your APIs with confidence. Explore methods, protocols, and best practices for implementing robust authentication—from OAuth and JWT to zero-trust architectures—across modern API ecosystem

April 14, 2025

8 min read

RBAC Explained: The Basics of Role-Based Access Control

Kong

All API Authentication Blog Posts

January 8, 2025

How to Implement Secure Access Control with OPA and Kong Gateway

Raja Ravi Varman

Kong Champion

Guide to CORS basics

December 9, 2024

The Ultimate CORS Crash Course

Kong

June 18, 2024

How to Craft and Sign a Custom JWT in Kong Konnect

Jerome Guillaume

February 19, 2024

Adopt a Zero Trust Approach with OAuth 2.0 Mutual TLS Client Authentication

Veena Rajarathna

Staff Product Manager, Kong

February 6, 2024

Understanding Microsegmentation in Zero Trust Security

Kong

January 29, 2024

Top GraphQL Security Vulnerabilities: Lessons Learned Analyzing 1,500+ Endpoints

Kong

API Authentication

November 15, 2023

Tightening Bearer Token Authentication with Proof-of-Possession Tokens

Veena Rajarathna

Staff Product Manager, Kong

API Authentication

October 12, 2023

Common API Authentication Methods

Kong

API Authentication

October 11, 2023

Kong SAML Plugin: Examples and Usage

Samuele Chiocca

Kong Champion

October 10, 2023

OpenID vs OAuth: Understanding API Security Protocols

Axandria Shepard

API Authentication

June 8, 2023

Understand the Differences: API Authentication vs API Authorization

Kong

May 22, 2023

What are API Keys? Overview and Use Cases

Eric Pulsifer

Content @ Kong