From d68f9bb6fab4266f93e9df76a75ad385f140270b Mon Sep 17 00:00:00 2001 From: Julia <101819212+juliamrch@users.noreply.github.com> Date: Mon, 18 May 2026 15:14:09 +0200 Subject: [PATCH 1/7] feat(identity): first draft for landing page --- app/_landing_pages/identity.yaml | 121 +++++++++++++++++++++++++++++++ 1 file changed, 121 insertions(+) create mode 100644 app/_landing_pages/identity.yaml diff --git a/app/_landing_pages/identity.yaml b/app/_landing_pages/identity.yaml new file mode 100644 index 0000000000..c5cf9adfd9 --- /dev/null +++ b/app/_landing_pages/identity.yaml @@ -0,0 +1,121 @@ +metadata: + title: "Kong Identity" + content_type: landing_page + description: "Unified machine-to-machine authentication platform within Kong Konnect." + products: + - identity + works_on: + - konnect +rows: + - header: + type: h1 + text: "Kong Identity" + sub_text: "The unified machine-to-machine authentication platform" + - header: + type: h2 + text: "Introducing Kong Identity" + columns: + - blocks: + - type: text + config: | + Kong Identity provides a single platform to manage traffic policy and identity policy with the [Konnect API](api/konnect/kong-identity/v1/#/) for machine-to-machine authentication. Use Kong identity to: + * Create authorization servers per region. + * Issue and validate access tokens. + * Integrate secure auhtentication into Kong Gateway API. + - type: button + config: + text: "Learn how it works →" + url: "/kong-identity/" + - blocks: + - type: image + config: + url: /assets/images/konnect/konnect-dashboard.png + alt_text: Image of the {{site.konnect_short_name}} dashboard + - header: + type: h2 + text: "Plugins" + description: | + Combine Kong Identity with the available plugins: + columns: + - blocks: + - type: card + config: + title: "OpenID Connect" + description: | + Use the OpenID Connect (OIDC) plugin to integrate Kong Gateway with Kong Identity in Konnect for machine-to-machine API access. + icon: /assets/icons/plugins/openid-connect.png + ctas: + - text: Learn more + url: /plugins/openid-connect/ + align: end + - blocks: + - type: card + config: + title: "OAuth 2.0 Introspection plugin" + description: | + Validate access tokens using an OAuth 2.0 authorization server's introspection endpoint. + icon: /assets/icons/plugins/oauth2-introspection.png + ctas: + - text: Learn more + url: /plugins/oauth2-introspection/ + align: end + - blocks: + - type: card + config: + title: "Upstream OAuth" + description: | + Make your API Gateway support OAuth flows between Kong Gateway and the upstream API. The plugin supports storing tokens issued by the IdP in different backend formats. + icon: /assets/icons/plugins/upstream-oauth.png + ctas: + - text: Learn more + url: /plugins/upstream-oauth/ + align: end + - header: + type: h2 + text: "Features" + description: | + Set up and manage API access with Kong Identity features: + columns: + - blocks: + - type: card + config: + title: "Authorization servers" + description: | + Set up an authorization server that issues tokens to authenticate a client with Kong Gateway. + icon: /assets/icons/security.svg + ctas: + - text: Set up an authorization server + url: /kong-identity/#configure-kong-identity + align: end + - blocks: + - type: card + config: + title: "Claims" + description: | + Include in each token optional pieces of metadata (user roles or environment tags) to forward them to upstream services + icon: /assets/icons/service-document.svg + ctas: + - text: Configure a claim + url: /kong-identity/#claim-configuration + align: end + - blocks: + - type: card + config: + title: "Dynamic claim templates" + description: | + Define custom JWT claims whose value uses contextual data and specified functions. + icon: /assets/icons/data-object.svg + ctas: + - text: Use dynamic claim templates + url: /kong-identity/#dynamic-claim-templates + align: end + - header: + type: h2 + text: How-to guides + columns: + - blocks: + - type: how_to_list + config: + works_on: + - identity + quantity: 7 From 93778169460bcab684473cf0bf6f64b25e0993ff Mon Sep 17 00:00:00 2001 From: Julia <101819212+juliamrch@users.noreply.github.com> Date: Mon, 18 May 2026 16:49:51 +0200 Subject: [PATCH 2/7] fix(identity): replace identity tag with kong-identity --- app/_landing_pages/identity.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/app/_landing_pages/identity.yaml b/app/_landing_pages/identity.yaml index c5cf9adfd9..367fb2b7c4 100644 --- a/app/_landing_pages/identity.yaml +++ b/app/_landing_pages/identity.yaml @@ -116,6 +116,6 @@ rows: - blocks: - type: how_to_list config: - works_on: - - identity + tags: + - kong-identity quantity: 7 From 7f039836e0aae01bd2b4e5f8c736651e60f53024 Mon Sep 17 00:00:00 2001 From: Julia <101819212+juliamrch@users.noreply.github.com> Date: Mon, 18 May 2026 16:56:04 +0200 Subject: [PATCH 3/7] fix(identity): replace identity tag with kong-identity --- app/_landing_pages/identity.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/app/_landing_pages/identity.yaml b/app/_landing_pages/identity.yaml index 367fb2b7c4..c2cd44f949 100644 --- a/app/_landing_pages/identity.yaml +++ b/app/_landing_pages/identity.yaml @@ -3,7 +3,7 @@ metadata: content_type: landing_page description: "Unified machine-to-machine authentication platform within Kong Konnect." products: - - identity + - konnect works_on: - konnect rows: From efebac68af074cbab266cce6b21e54424d339733 Mon Sep 17 00:00:00 2001 From: Julia <101819212+juliamrch@users.noreply.github.com> Date: Mon, 18 May 2026 17:30:25 +0200 Subject: [PATCH 4/7] feat(identity): add kong-identity tags to index how-tos --- .../gateway/configure-kong-identity-oauth-introspection.md | 1 + app/_how-tos/gateway/configure-kong-identity-oidc.md | 1 + app/_how-tos/gateway/configure-kong-identity-upstream-oauth.md | 1 + app/_landing_pages/identity.yaml | 2 +- 4 files changed, 4 insertions(+), 1 deletion(-) diff --git a/app/_how-tos/gateway/configure-kong-identity-oauth-introspection.md b/app/_how-tos/gateway/configure-kong-identity-oauth-introspection.md index ddeba6e1ca..a651202a3e 100644 --- a/app/_how-tos/gateway/configure-kong-identity-oauth-introspection.md +++ b/app/_how-tos/gateway/configure-kong-identity-oauth-introspection.md @@ -17,6 +17,7 @@ works_on: - konnect tags: - authentication + - kong-identity description: Learn how to configure Kong Identity with OAuth 2.0 Introspection. tldr: diff --git a/app/_how-tos/gateway/configure-kong-identity-oidc.md b/app/_how-tos/gateway/configure-kong-identity-oidc.md index 8045a4d7d3..5413f690f0 100644 --- a/app/_how-tos/gateway/configure-kong-identity-oidc.md +++ b/app/_how-tos/gateway/configure-kong-identity-oidc.md @@ -17,6 +17,7 @@ works_on: - konnect tags: - authentication + - kong-identity description: Learn how to configure Kong Identity with OIDC. tldr: diff --git a/app/_how-tos/gateway/configure-kong-identity-upstream-oauth.md b/app/_how-tos/gateway/configure-kong-identity-upstream-oauth.md index 0759f20293..de4861439f 100644 --- a/app/_how-tos/gateway/configure-kong-identity-upstream-oauth.md +++ b/app/_how-tos/gateway/configure-kong-identity-upstream-oauth.md @@ -17,6 +17,7 @@ works_on: - konnect tags: - authentication + - kong-identity description: Learn how to configure Kong Identity with Upstream OAuth. tldr: diff --git a/app/_landing_pages/identity.yaml b/app/_landing_pages/identity.yaml index c2cd44f949..6b0a37f1c5 100644 --- a/app/_landing_pages/identity.yaml +++ b/app/_landing_pages/identity.yaml @@ -18,7 +18,7 @@ rows: - blocks: - type: text config: | - Kong Identity provides a single platform to manage traffic policy and identity policy with the [Konnect API](api/konnect/kong-identity/v1/#/) for machine-to-machine authentication. Use Kong identity to: + Kong Identity provides a single platform to manage traffic policy and identity policy with the [Konnect API](/api/konnect/kong-identity/v1/#/) for machine-to-machine authentication. Use Kong identity to: * Create authorization servers per region. * Issue and validate access tokens. * Integrate secure auhtentication into Kong Gateway API. From 834e6432abcfb5d92935d2b36ef4816e087dc11f Mon Sep 17 00:00:00 2001 From: Julia <101819212+juliamrch@users.noreply.github.com> Date: Thu, 21 May 2026 14:31:02 +0200 Subject: [PATCH 5/7] feat(identity): update links --- .ruby-version | 2 +- app/_event_gateway_policies/acl/index.md | 2 +- app/_how-tos/dev-portal/kong-identity-dcr.md | 2 +- app/_how-tos/event-gateway/kong-identity-oauth.md | 2 +- .../configure-kong-identity-oauth-introspection.md | 2 +- app/_how-tos/gateway/configure-kong-identity-oidc.md | 2 +- .../gateway/configure-kong-identity-upstream-oauth.md | 2 +- .../steps/konnect-identity-server-scope-claim-client.md | 2 +- app/_landing_pages/event-gateway.yaml | 2 +- app/_landing_pages/{identity.yaml => kong-identity.yaml} | 8 ++++---- app/_redirects | 3 +++ app/konnect-platform/kong-identity.md | 2 +- app/konnect-platform/teams-and-roles.md | 2 +- 13 files changed, 18 insertions(+), 15 deletions(-) rename app/_landing_pages/{identity.yaml => kong-identity.yaml} (94%) diff --git a/.ruby-version b/.ruby-version index f9892605c7..7bcbb3808b 100644 --- a/.ruby-version +++ b/.ruby-version @@ -1 +1 @@ -3.4.4 +3.4.9 diff --git a/app/_event_gateway_policies/acl/index.md b/app/_event_gateway_policies/acl/index.md index 5ee70ef551..2870ffb6f3 100644 --- a/app/_event_gateway_policies/acl/index.md +++ b/app/_event_gateway_policies/acl/index.md @@ -65,7 +65,7 @@ rows: If your Kafka topics follow a naming convention with prefixes, you can easily organize them into categories with {{site.event_gateway}} by using a combination of namespaces, forwarding policies, and ACL policies. - use_case: "[How-to: Secure Kafka traffic in {{site.event_gateway_short}} with Kong Identity and ACLs](/how-to/event-gateway/kong-identity-oauth/)" description: | - Using [Kong Identity](/kong-identity/) as an auth server, verify client OAuth tokens through a virtual cluster, and apply an ACL policy to restrict access to a specific client. + Using [Kong Identity](/kong-identity/reference/) as an auth server, verify client OAuth tokens through a virtual cluster, and apply an ACL policy to restrict access to a specific client. {% endtable %} diff --git a/app/_how-tos/dev-portal/kong-identity-dcr.md b/app/_how-tos/dev-portal/kong-identity-dcr.md index ffbc7b0fcf..fa4775b0a8 100644 --- a/app/_how-tos/dev-portal/kong-identity-dcr.md +++ b/app/_how-tos/dev-portal/kong-identity-dcr.md @@ -27,7 +27,7 @@ search_aliases: tldr: q: How do I automatically create and manage Dev Portal applications in Kong Identity? a: | - You can use Dynamic Client Registration to automatically create Dev Portal applications in [Kong Identity](/kong-identity/). First, create an auth server for Kong Identity and copy your Issuer URL. Then, create a new DCR provider in your Dev Portal settings and create a new auth strategy for DCR. Apply the auth strategy to published APIs. + You can use Dynamic Client Registration to automatically create Dev Portal applications in [Kong Identity](/kong-identity/reference/). First, create an auth server for Kong Identity and copy your Issuer URL. Then, create a new DCR provider in your Dev Portal settings and create a new auth strategy for DCR. Apply the auth strategy to published APIs. prereqs: entities: diff --git a/app/_how-tos/event-gateway/kong-identity-oauth.md b/app/_how-tos/event-gateway/kong-identity-oauth.md index 8d00d54564..fb54916319 100644 --- a/app/_how-tos/event-gateway/kong-identity-oauth.md +++ b/app/_how-tos/event-gateway/kong-identity-oauth.md @@ -50,7 +50,7 @@ related_resources: - text: Event Gateway url: /event-gateway/ - text: "Kong Identity" - url: /kong-identity/ + url: /kong-identity/reference/ - text: Dynamic claim templating url: /kong-identity/#dynamic-claim-templates - text: Event Gateway ACL policy diff --git a/app/_how-tos/gateway/configure-kong-identity-oauth-introspection.md b/app/_how-tos/gateway/configure-kong-identity-oauth-introspection.md index a651202a3e..b28b48f78b 100644 --- a/app/_how-tos/gateway/configure-kong-identity-oauth-introspection.md +++ b/app/_how-tos/gateway/configure-kong-identity-oauth-introspection.md @@ -43,7 +43,7 @@ faqs: automated_tests: false related_resources: - text: "Kong Identity" - url: /kong-identity/ + url: /kong-identity/reference/ - text: Dynamic claim templating url: /kong-identity/#dynamic-claim-templates - text: Configure the OIDC plugin with Kong Identity diff --git a/app/_how-tos/gateway/configure-kong-identity-oidc.md b/app/_how-tos/gateway/configure-kong-identity-oidc.md index 5413f690f0..6d9743a5ac 100644 --- a/app/_how-tos/gateway/configure-kong-identity-oidc.md +++ b/app/_how-tos/gateway/configure-kong-identity-oidc.md @@ -50,7 +50,7 @@ faqs: automated_tests: false related_resources: - text: "Kong Identity" - url: /kong-identity/ + url: /kong-identity/reference/ - text: Dynamic claim templating url: /kong-identity/#dynamic-claim-templates - text: Configure the OAuth 2.0 Introspection plugin with Kong Identity diff --git a/app/_how-tos/gateway/configure-kong-identity-upstream-oauth.md b/app/_how-tos/gateway/configure-kong-identity-upstream-oauth.md index de4861439f..f06addb2cb 100644 --- a/app/_how-tos/gateway/configure-kong-identity-upstream-oauth.md +++ b/app/_how-tos/gateway/configure-kong-identity-upstream-oauth.md @@ -43,7 +43,7 @@ faqs: automated_tests: false related_resources: - text: "Kong Identity" - url: /kong-identity/ + url: /kong-identity/reference/ - text: Dynamic claim templating url: /kong-identity/#dynamic-claim-templates - text: Configure the OIDC plugin with Kong Identity diff --git a/app/_includes/how-tos/steps/konnect-identity-server-scope-claim-client.md b/app/_includes/how-tos/steps/konnect-identity-server-scope-claim-client.md index 4e5d91ea5f..8a08147db7 100644 --- a/app/_includes/how-tos/steps/konnect-identity-server-scope-claim-client.md +++ b/app/_includes/how-tos/steps/konnect-identity-server-scope-claim-client.md @@ -76,7 +76,7 @@ body: {% endkonnect_api_request %} -You can also configure dynamic custom claims with [dynamic claim templating](/kong-identity/#dynamic-claim-templates) to generate claims during runtime. +You can also configure dynamic custom claims with [dynamic claim templating](/kong-identity/reference/#dynamic-claim-templates) to generate claims during runtime. ## Create a client in the auth server diff --git a/app/_landing_pages/event-gateway.yaml b/app/_landing_pages/event-gateway.yaml index 3216168de5..5d8637b8ba 100644 --- a/app/_landing_pages/event-gateway.yaml +++ b/app/_landing_pages/event-gateway.yaml @@ -256,7 +256,7 @@ rows: - outcome: | Replace legacy auth methods with modern enterprise identity standards your team already uses feature: | - [OAuth](/kong-identity/) + [OAuth](/kong-identity/reference/) guide: | [Set up {{site.event_gateway_short}} with Kong Identity OAuth](/event-gateway/kong-identity-oauth/) - outcome: | diff --git a/app/_landing_pages/identity.yaml b/app/_landing_pages/kong-identity.yaml similarity index 94% rename from app/_landing_pages/identity.yaml rename to app/_landing_pages/kong-identity.yaml index 6b0a37f1c5..be53f2c14b 100644 --- a/app/_landing_pages/identity.yaml +++ b/app/_landing_pages/kong-identity.yaml @@ -25,7 +25,7 @@ rows: - type: button config: text: "Learn how it works →" - url: "/kong-identity/" + url: "/kong-identity/reference/" - blocks: - type: image config: @@ -85,7 +85,7 @@ rows: icon: /assets/icons/security.svg ctas: - text: Set up an authorization server - url: /kong-identity/#configure-kong-identity + url: /kong-identity/reference/#configure-kong-identity align: end - blocks: - type: card @@ -96,7 +96,7 @@ rows: icon: /assets/icons/service-document.svg ctas: - text: Configure a claim - url: /kong-identity/#claim-configuration + url: /kong-identity/reference/#claim-configuration align: end - blocks: - type: card @@ -107,7 +107,7 @@ rows: icon: /assets/icons/data-object.svg ctas: - text: Use dynamic claim templates - url: /kong-identity/#dynamic-claim-templates + url: /kong-identity/reference/#dynamic-claim-templates align: end - header: type: h2 diff --git a/app/_redirects b/app/_redirects index d9630f9c4c..d57c132df9 100644 --- a/app/_redirects +++ b/app/_redirects @@ -259,3 +259,6 @@ /mcp/kong-mcp/tools/ /konnect-platform/konnect-mcp/tools/ /mcp/autogenerate-mcp-tools/ /mcp/map-api-to-mcp-tools/ /mcp/autogenerate-mcp-tools-for-weather-api/ /mcp/map-weather-api-to-mcp-tools/ + +# Kong Identity +/kong-identity/ /kong-identity/reference/ \ No newline at end of file diff --git a/app/konnect-platform/kong-identity.md b/app/konnect-platform/kong-identity.md index c66b08d7aa..e9860d6200 100644 --- a/app/konnect-platform/kong-identity.md +++ b/app/konnect-platform/kong-identity.md @@ -6,7 +6,7 @@ layout: reference products: - konnect -permalink: /kong-identity/ +permalink: /kong-identity/reference/ works_on: - konnect search_aliases: diff --git a/app/konnect-platform/teams-and-roles.md b/app/konnect-platform/teams-and-roles.md index 2fa926d530..26b0bab458 100644 --- a/app/konnect-platform/teams-and-roles.md +++ b/app/konnect-platform/teams-and-roles.md @@ -288,7 +288,7 @@ rows: #### Auth servers -The following table describes the predefined roles for [Kong Identity](/kong-identity/) authorization servers: +The following table describes the predefined roles for [Kong Identity](/kong-identity/reference/) authorization servers: {% table %} From 69cabd86cbe3ac38c33714d16961d85c434dd0c2 Mon Sep 17 00:00:00 2001 From: Julia <101819212+juliamrch@users.noreply.github.com> Date: Thu, 21 May 2026 16:41:36 +0200 Subject: [PATCH 6/7] feat(identity): add usecases table --- app/_landing_pages/kong-identity.yaml | 130 +++++++++++++++++++------- 1 file changed, 95 insertions(+), 35 deletions(-) diff --git a/app/_landing_pages/kong-identity.yaml b/app/_landing_pages/kong-identity.yaml index be53f2c14b..2d89064b7a 100644 --- a/app/_landing_pages/kong-identity.yaml +++ b/app/_landing_pages/kong-identity.yaml @@ -11,6 +11,7 @@ rows: type: h1 text: "Kong Identity" sub_text: "The unified machine-to-machine authentication platform" + - header: type: h2 text: "Introducing Kong Identity" @@ -33,82 +34,141 @@ rows: alt_text: Image of the {{site.konnect_short_name}} dashboard - header: type: h2 - text: "Plugins" + text: "Features" description: | - Combine Kong Identity with the available plugins: + Set up and manage API access with Kong Identity features: columns: - blocks: - type: card config: - title: "OpenID Connect" + title: "Authorization servers" description: | - Use the OpenID Connect (OIDC) plugin to integrate Kong Gateway with Kong Identity in Konnect for machine-to-machine API access. - icon: /assets/icons/plugins/openid-connect.png + Set up an authorization server that issues tokens to authenticate a client with Kong Gateway. + icon: /assets/icons/security.svg ctas: - - text: Learn more - url: /plugins/openid-connect/ + - text: Set up an authorization server + url: /kong-identity/reference/#configure-kong-identity align: end - blocks: - type: card config: - title: "OAuth 2.0 Introspection plugin" + title: "Claims" description: | - Validate access tokens using an OAuth 2.0 authorization server's introspection endpoint. - icon: /assets/icons/plugins/oauth2-introspection.png + Include in each token optional pieces of metadata (user roles or environment tags) to forward them to upstream services + icon: /assets/icons/service-document.svg ctas: - - text: Learn more - url: /plugins/oauth2-introspection/ + - text: Configure a claim + url: /kong-identity/reference/#claim-configuration align: end - blocks: - type: card config: - title: "Upstream OAuth" + title: "Dynamic claim templates" description: | - Make your API Gateway support OAuth flows between Kong Gateway and the upstream API. The plugin supports storing tokens issued by the IdP in different backend formats. - icon: /assets/icons/plugins/upstream-oauth.png + Define custom JWT claims whose value uses contextual data and specified functions. + icon: /assets/icons/data-object.svg ctas: - - text: Learn more - url: /plugins/upstream-oauth/ - align: end + - text: Use dynamic claim templates + url: /kong-identity/reference/#dynamic-claim-templates + align: end - header: type: h2 - text: "Features" + text: "Use cases for Kong Identity" + columns: + - blocks: + - type: use_case_table + config: + usecase_title: | + Authenticate traffic + + columns: + - title: | + Setup examples + + key: setup + - title: | + Feature + + _(Use this)_ + + key: feature + rows: + - usecase: | + **... to an event Gateway** + outcomes: + - setup: | + Use OAuth with Kong Identity as the Auth Server + feature: + - setup: | + Use OAuth with Kong Identity using a 3rd party Auth + feature: + - setup: | + Authenticate principals using SASL/PLAIN usernames and passwords + feature: + - setup: | + Authenticate principals using client certificates + feature: + - usecase: | + **...to an API Gateway** + outcomes: + - setup: | + Authenticate requests using api keys + feature: + - setup: | + Authenticate requests using basic auth + feature: + - setup: | + Authenticate using OAuth with Kong Identity as the Auth Server + feature: + - setup: | + Authenticate using OAuth with Kong Identity using a 3rd party Auth Server + feature: + - setup: | + Configure conditional plugin execution based on principals + feature: + - setup: | + Migrate from consumers to principals + feature: + - header: + type: h2 + text: "Plugins" description: | - Set up and manage API access with Kong Identity features: + Combine Kong Identity with the available plugins: columns: - blocks: - type: card config: - title: "Authorization servers" + title: "OpenID Connect" description: | - Set up an authorization server that issues tokens to authenticate a client with Kong Gateway. - icon: /assets/icons/security.svg + Use the OpenID Connect (OIDC) plugin to integrate Kong Gateway with Kong Identity in Konnect for machine-to-machine API access. + icon: /assets/icons/plugins/openid-connect.png ctas: - - text: Set up an authorization server - url: /kong-identity/reference/#configure-kong-identity + - text: Learn more + url: /plugins/openid-connect/ align: end - blocks: - type: card config: - title: "Claims" + title: "OAuth 2.0 Introspection plugin" description: | - Include in each token optional pieces of metadata (user roles or environment tags) to forward them to upstream services - icon: /assets/icons/service-document.svg + Validate access tokens using an OAuth 2.0 authorization server's introspection endpoint. + icon: /assets/icons/plugins/oauth2-introspection.png ctas: - - text: Configure a claim - url: /kong-identity/reference/#claim-configuration + - text: Learn more + url: /plugins/oauth2-introspection/ align: end - blocks: - type: card config: - title: "Dynamic claim templates" + title: "Upstream OAuth" description: | - Define custom JWT claims whose value uses contextual data and specified functions. - icon: /assets/icons/data-object.svg + Make your API Gateway support OAuth flows between Kong Gateway and the upstream API. The plugin supports storing tokens issued by the IdP in different backend formats. + icon: /assets/icons/plugins/upstream-oauth.png ctas: - - text: Use dynamic claim templates - url: /kong-identity/reference/#dynamic-claim-templates + - text: Learn more + url: /plugins/upstream-oauth/ align: end + - header: type: h2 text: How-to guides From 68836907f1a924c5310678433931dace3fa58906 Mon Sep 17 00:00:00 2001 From: Julia <101819212+juliamrch@users.noreply.github.com> Date: Thu, 21 May 2026 19:40:16 +0200 Subject: [PATCH 7/7] feat(identity): new template --- app/_landing_pages/kong-identity.yaml | 113 +++++++++++--------------- 1 file changed, 47 insertions(+), 66 deletions(-) diff --git a/app/_landing_pages/kong-identity.yaml b/app/_landing_pages/kong-identity.yaml index 2d89064b7a..abd5aa30de 100644 --- a/app/_landing_pages/kong-identity.yaml +++ b/app/_landing_pages/kong-identity.yaml @@ -34,16 +34,16 @@ rows: alt_text: Image of the {{site.konnect_short_name}} dashboard - header: type: h2 - text: "Features" + text: "Secure your APIs" description: | - Set up and manage API access with Kong Identity features: + Set up and manage API access with Kong Identity columns: - blocks: - type: card config: - title: "Authorization servers" + title: "Issue access tokens" description: | - Set up an authorization server that issues tokens to authenticate a client with Kong Gateway. + Use Kong Identity as the auth server. Issue and verify OAuth 2.0 / OIDC tokens without standing up a separate identity provider. icon: /assets/icons/security.svg ctas: - text: Set up an authorization server @@ -52,83 +52,64 @@ rows: - blocks: - type: card config: - title: "Claims" + title: "" description: | - Include in each token optional pieces of metadata (user roles or environment tags) to forward them to upstream services + icon: /assets/icons/service-document.svg ctas: - - text: Configure a claim - url: /kong-identity/reference/#claim-configuration + - text: + url: align: end - blocks: - type: card config: - title: "Dynamic claim templates" + title: "" description: | - Define custom JWT claims whose value uses contextual data and specified functions. + icon: /assets/icons/data-object.svg ctas: - - text: Use dynamic claim templates - url: /kong-identity/reference/#dynamic-claim-templates - align: end + - text: + url: + align: end - header: type: h2 - text: "Use cases for Kong Identity" + text: "Secure your event streams" + description: | + Authenticate Kafka clients connecting to your Event Gateway columns: - blocks: - - type: use_case_table + - type: card + config: + title: "" + description: | + + icon: /assets/icons/security.svg + ctas: + - text: + url: + align: end + - blocks: + - type: card config: - usecase_title: | - Authenticate traffic - - columns: - - title: | - Setup examples - - key: setup - - title: | - Feature - - _(Use this)_ - - key: feature - rows: - - usecase: | - **... to an event Gateway** - outcomes: - - setup: | - Use OAuth with Kong Identity as the Auth Server - feature: - - setup: | - Use OAuth with Kong Identity using a 3rd party Auth - feature: - - setup: | - Authenticate principals using SASL/PLAIN usernames and passwords - feature: - - setup: | - Authenticate principals using client certificates - feature: - - usecase: | - **...to an API Gateway** - outcomes: - - setup: | - Authenticate requests using api keys - feature: - - setup: | - Authenticate requests using basic auth - feature: - - setup: | - Authenticate using OAuth with Kong Identity as the Auth Server - feature: - - setup: | - Authenticate using OAuth with Kong Identity using a 3rd party Auth Server - feature: - - setup: | - Configure conditional plugin execution based on principals - feature: - - setup: | - Migrate from consumers to principals - feature: + title: "" + description: | + + icon: /assets/icons/service-document.svg + ctas: + - text: + url: + align: end + - blocks: + - type: card + config: + title: "" + description: | + + icon: + ctas: + - text: + url: + align: end - header: type: h2 text: "Plugins"