There are a few features that I like about Kong when it comes to authentication and authorization. Specifically, being able to use Kong for role-based access control (RBAC), and then further being able to integrate the RBAC mechanism with our enterprise directory, was very useful.
Kong is meant for north-south communications, so it will be interesting to see what solutions they can come up with in the realms of east-west communications, service-to-service communications, and Zero Trust architecture. I believe that if they can provide for these areas, then they will be able to solve the overall integration and security concerns for microservices architecture in general.
Head of Digital Delivery at a insurance company with 1,001-5,000 employees
Mar 25, 2020
There should be an easier way to integrate with other solutions, even though it's the same API solution layer. Comparability will be a good improvement.