Enabling Plugins

In the steps below, you will configure the key-auth plugin to add authentication to your Service. Prior to the addition of this plugin, all requests to your Service would be proxied upstream. Once you add and configure this plugin, only requests with the correct key(s) will be proxied - all other requests will be rejected by Kong, thus protecting your upstream service from unauthorized use.

• You have installed and started Kong Gateway, either through the or a more comprehensive installation

Note: This plugin also accepts a parameter, which defaults to . It is a list of headers and parameters names (both are supported) that are supposed to contain the apikey during a request.

Since you did not specify the required header or parameter, the response should be :

Go to