This is a rbac plugin for kong CE.
luarocks install kong-plugin-rbac
set environment
KONG_CUSTOM_PLUGINS=rbac
If you have some custom plugins configured before, just concat them with comma.
NOTE: You have to use the kong's admin port to call management apis, default is 8001.
POST /rbac/resources
{
"api_id": "api that resource belongs to",
"method": "http method",
"upstream_path": "upstream request path without query string",
"description": "description"
}NOTE: api_id, method and upstream_path must be unique.
Update a resources that you added before.
PUT /rbac/resources
{
"id": "resource id",
"api_id": "api that resource belongs to",
"method": "http method",
"upstream_path": "upstream request path without query string",
"description": "description"
}DELETE /rbac/resources/:resource_id
Add a role to rbac system.
POST /rbac/roles
{
"name": "role_name",
"description": "description of this role"
}Update a role that you added before.
PUT /rbac/roles
{
"id": "id of role",
"name": "role_name",
"description": "description for this role"
}GET /rbac/roles
DELETE /rbac/roles/:role_id_or_name
POST /rbac/roles/:role_name_or_id/resources
{
"resource_ids": [
"resource_id1",
"resource_id2"
]
}POST "/consumers/:username_or_id/rbac-roles/"
{
"role_ids": [
"role_id1",
"role_id2"
]
}