The latest news and announcements about Kong, our products, and our ecosystem, as well as voices from across our community.

April 14, 2025

8 min read

RBAC Explained: The Basics of Role-Based Access Control

Kong

All API Authorization Blog Posts

January 8, 2025

How to Implement Secure Access Control with OPA and Kong Gateway

Raja Ravi Varman

Kong Champion

June 26, 2024

Extensions to Improve Security and Get the Most Out of Kong

Veena Rajarathna

Staff Product Manager, Kong

API Authorization

April 30, 2024

Managing Application Auth for Different Audiences

Ella Kuzmenko

Sr. Product Manager, Kong

February 19, 2024

Adopt a Zero Trust Approach with OAuth 2.0 Mutual TLS Client Authentication

Veena Rajarathna

Staff Product Manager, Kong

February 6, 2024

Understanding Microsegmentation in Zero Trust Security

Kong

January 29, 2024

Top GraphQL Security Vulnerabilities: Lessons Learned Analyzing 1,500+ Endpoints

Kong

May 22, 2023

What are API Keys? Overview and Use Cases

Eric Pulsifer

Content @ Kong

March 23, 2023

GraphQL Authorization at the API Gateway with Kong Konnect and OPA

Danny Freese

Senior Software Engineer on Konnect, Kong

January 26, 2023

What is OAuth?

Kong

April 19, 2022

API Gateway Authentication

Kong

March 10, 2022

Understanding Microservices Authentication Services

Kong

Generating Dynamic Signatures for API Authentication With Insomnia

API Authentication

November 23, 2021

Generating Dynamic Signatures for API Authentication With Insomnia

Scott Harwell