Using Curity, OPA and Kong for end-to-end API authentication and authorization

API Security

This tutorial shows how you can create a very comprehensive solution using the Curity Identity Server, Open Policy Agent (OPA), and Kong to protect your APIs.

More Developer How-tos videos

Test Different OAuth Flows Using OAuth Tools
The Opt-In Multi-Factor Authentication Action
The Token Handler Pattern: OpenID Connect for Single Page Apps
Developing a Plugin Part 1
Developing a Plugin Part 2
Integrating the Curity Identity Server with PagerDuty
App2App Logins using the Curity Identity Server
Implementing Claims Best Practices
OAuth Device Flow
Account Linking with Facebook
Integrating the Curity Identity Server with AWS API Gateway
Debug Authentication Action
Introduction to the RESTCONF Admin API
Working with configuration in the Curity CLI
Parameterized configuration
Integrating Curity Identity Server with Apigee Edge
Using Custom Token Issuers in the Curity Identity Server
Duo Login and Registration
Salesforce Claims Provider
Installing the Curity Identity Server
Using Additional Factors in the Curity Identity Server
Custom Claim Data Source
Claims Mapper
Introduction to the Command Line Interface (CLI)
Overview of Authentication
Dynamic Client Registration
2-Factor and Step-up Authentication
REST API Overview with Integration of CLI & UI