This webhook endpoint Creates login failure audit logs using log stream sent by external vendor services (Currently Auth0).
The request schema to create authentication failure audit logs.
Array of objects (StreamLog) |
{- "logs": [
- {
- "data": {
- "user_id": "auth0|1234",
- "date": "2024-09-03T04:23:06.115Z",
- "ip": "127.0.0.1",
- "type": "fp",
- "user_agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36"
}
}
]
}{- "status": 403,
- "title": "Forbidden",
- "instance": "kong:trace:2723154947768991354",
- "detail": "You do not have permission to perform this action"
}Creates a new provider account for an organization.
| provider required | string (Provider Name) Enum: "aws" "azure" Name of cloud provider. |
{- "provider": "aws"
}{- "id": "929b2449-c69f-44c4-b6ad-9ecec6f811ae",
- "provider": "aws",
- "provider_account_id": "string",
- "created_at": "2022-11-04T20:10:06.927Z",
- "updated_at": "2022-11-04T20:10:06.927Z"
}Deletes a provider account by ID.
| providerAccountId required | string <uuid> (ProviderAccountId) Example: 929b2449-c69f-44c4-b6ad-9ecec6f811ae The ID of the provider account to operate on. |
{- "status": 400,
- "title": "Invalid Request",
- "instance": "konnect:trace:2822394689570210664",
- "detail": "Invalid Parameters",
- "invalid_parameters": [
- {
- "field": "name",
- "rule": "max_length",
- "reason": "name must be shorter than or equal to 120 characters",
- "maximum": 120
}
]
}Creates a new resource quota, scoped to a given resource, for an organization.
| resource required | string (ResourceQuotaQualifier) Enum: "count/provider-accounts.per-provider" "count/networks.not-offline" "count/data-planes-estimate" "count/serverless-data-planes-estimate" Enumeration of resources available for quota enforcement. |
| value required | integer (ResourceQuotaValue) >= 0 The aggregate non-negative integer count of this resource that's allowed for the organization. |
{- "resource": "count/provider-accounts.per-provider",
- "value": 2
}{- "id": "9678f205-49a1-47bb-82d9-d01cafa42a0d",
- "resource": "count/provider-accounts.per-provider",
- "name": "Active Networks",
- "description": "Across the organization, the aggregate number of active networks cannot exceed this value.",
- "value": 2,
- "created_at": "2022-11-04T20:10:06.927Z",
- "updated_at": "2022-11-04T20:10:06.927Z"
}Updates a resource quota by ID.
| resourceQuotaId required | string <uuid> (ResourceQuotaId) Example: 9678f205-49a1-47bb-82d9-d01cafa42a0d The ID of the resource quota to operate on. |
| value required | integer (ResourceQuotaValue) >= 0 The aggregate non-negative integer count of this resource that's allowed for the organization. |
{- "value": 2
}{- "id": "9678f205-49a1-47bb-82d9-d01cafa42a0d",
- "resource": "count/provider-accounts.per-provider",
- "name": "Active Networks",
- "description": "Across the organization, the aggregate number of active networks cannot exceed this value.",
- "value": 2,
- "created_at": "2022-11-04T20:10:06.927Z",
- "updated_at": "2022-11-04T20:10:06.927Z"
}Creates a new resource configuration for an organization.
| qualifier required | string (ResourceConfigurationQualifier) Value: "data-plane-group-idle-timeout-minutes" Enumeration of configuration qualifiers available for organization-wide configuration. |
| value required | integer (ResourceConfigurationValue) The value of this resource configuration. |
{- "qualifier": "data-plane-group-idle-timeout-minutes",
- "value": 45
}{- "id": "9678f205-49a1-47bb-82d9-d01cafa42a0d",
- "qualifier": "data-plane-group-idle-timeout-minutes",
- "value": 45
}Updates a resource configuration by ID.
| resourceConfigurationId required | string <uuid> (ResourceConfigurationId) Example: 9678f205-49a1-47bb-82d9-d01cafa42a0d The ID of the resource configuration to operate on. |
| qualifier required | string (ResourceConfigurationQualifier) Value: "data-plane-group-idle-timeout-minutes" Enumeration of configuration qualifiers available for organization-wide configuration. |
| value required | integer (ResourceConfigurationValue) The value of this resource configuration. |
{- "qualifier": "data-plane-group-idle-timeout-minutes",
- "value": 45
}{- "id": "9678f205-49a1-47bb-82d9-d01cafa42a0d",
- "qualifier": "data-plane-group-idle-timeout-minutes",
- "value": 45
}Returns a paginated collection of default resource quotas for control planes, along with organizationally-defined overrides for those resource quotas.
{- "data": [
- {
- "id": "cc504063-f3bb-4e09-8e32-bbcdbc5cd618",
- "name": "consumer",
- "description": "Default value of the consumer resource",
- "resource": "count/control-plane.consumer",
- "value": 10000,
- "overrides": [
- {
- "id": "7cdad5ef-1738-4781-8d71-9c5bbc99b187",
- "name": "consumer override",
- "description": "Increase for consumer resource quota",
- "resource": "count/control-plane.consumer",
- "value": 50000,
- "created_at": "2022-11-04T20:10:06.927Z",
- "updated_at": "2022-11-04T20:10:06.927Z"
}
]
}, - {
- "id": "1beb9ad3-f3bb-4e09-8e32-bbcdbc5cd618",
- "name": "certificate",
- "description": "Default value of the route resource",
- "resource": "count/control-plane.route",
- "value": 500
}
]
}Returns a list of control plane quota override values created by the user.
{- "data": [
- {
- "id": "7cdad5ef-1738-4781-8d71-9c5bbc99b187",
- "name": "consumer override",
- "description": "Increase for consumer resource quota",
- "resource": "count/control-plane.consumer",
- "value": 50000,
- "created_at": "2022-11-04T20:10:06.927Z",
- "updated_at": "2022-11-04T20:10:06.927Z"
}, - {
- "id": "cbef8c44-0fb1-4cb6-979c-5b82d2334b5f",
- "name": "route override",
- "description": "Override for resource route",
- "resource": "count/control-plane.route",
- "value": 1000,
- "created_at": "2022-11-04T20:10:06.927Z",
- "updated_at": "2022-11-04T20:10:06.927Z"
}
]
}Creates a control plane resource quota scoped to a given resource, for an organization.
Request body for creating the control plane override resource quota value.
| name | string (ControlPlaneResourceQuotaName) The human-readable name of this resource quota. |
| description | string (ControlPlaneResourceQuotaDescription) A more verbose description of what this resource quota enforces. |
| resource required | string (ControlPlaneResourceQuotaResourceName) Identifier value of resources available for quota enforcement. |
| value required | integer (ControlPlaneResourceQuotaValue) >= 1 The aggregate non-negative integer count of this resource that's allowed for the organization. |
{- "name": "consumer override",
- "description": "Increase for consumer resource quota",
- "resource": "count/control-plane.consumer",
- "value": 40000
}{- "id": "7cdad5ef-1738-4781-8d71-9c5bbc99b187",
- "name": "consumer override",
- "description": "Increase for consumer resource quota",
- "resource": "count/control-plane.consumer",
- "value": 50000,
- "created_at": "2022-11-04T20:10:06.927Z",
- "updated_at": "2022-11-04T20:10:06.927Z"
}Returns the control plane resource quota for the ID.
| resourceQuotaId required | string <uuid> Example: 7f9fd312-a987-4628-b4c5-bb4f4fddd5f7 The UUID for the control plane resource quota. |
{- "id": "7cdad5ef-1738-4781-8d71-9c5bbc99b187",
- "name": "consumer override",
- "description": "Increase for consumer resource quota",
- "resource": "count/control-plane.consumer",
- "value": 50000,
- "created_at": "2022-11-04T20:10:06.927Z",
- "updated_at": "2022-11-04T20:10:06.927Z"
}Update the control plane resource quota for the corresponding ID.
| resourceQuotaId required | string <uuid> Example: 7f9fd312-a987-4628-b4c5-bb4f4fddd5f7 The UUID for the control plane resource quota. |
Request body for updating the control plane override resource quota value.
| value required | integer (ControlPlaneResourceQuotaValue) >= 1 The aggregate non-negative integer count of this resource that's allowed for the organization. |
{- "value": 50000
}{- "id": "7cdad5ef-1738-4781-8d71-9c5bbc99b187",
- "name": "consumer override",
- "description": "Increase for consumer resource quota",
- "resource": "count/control-plane.consumer",
- "value": 50000,
- "created_at": "2022-11-04T20:10:06.927Z",
- "updated_at": "2022-11-04T20:10:06.927Z"
}Deletes the created control plane resource quota which matches the ID provided.
| resourceQuotaId required | string <uuid> Example: 7f9fd312-a987-4628-b4c5-bb4f4fddd5f7 The UUID for the control plane resource quota. |
{- "status": 0,
- "title": "string",
- "type": "string",
- "instance": "string",
- "detail": "string",
- "invalid_parameters": [
- {
- "field": "name",
- "rule": "required",
- "source": "body",
- "reason": "is a required field"
}
]
}The response contains user ids and (non-deleted, non-deleting) organization ids for users associated with provided auth0 user subject.
| aid | string Auth0 User ID |
{- "meta": {
- "page": {
- "number": 1,
- "size": 1,
- "total": 10
}
}
}Updates the current user's organization. When updating the owner, the new owner must be an organization admin.
The request schema to update an organization.
| owner_id | string <uuid> The user id of the new owner of the organization. Must be a member of the Organization Admins team. |
| name | string The new name of the organization. |
{- "owner_id": "df120cb4-f60b-47bc-a2f8-6a28e6a3c63b",
- "name": "Kong Inc"
}{- "created_at": "2023-01-18T11:35:45.130Z",
- "id": "023bfa42-3513-4cbf-b059-a9ddb4ea995d",
- "name": "Acme Co.",
- "owner_id": "e02c829c-0e2d-44b5-9057-07714ea613a3",
- "login_path": "acme",
- "updated_at": "2023-01-23T17:22:52.150Z",
- "state": "active",
- "retention_period_days": 90
}Deletes the user account for the user identified in the token of the request.
{- "status": 401,
- "title": "Unauthenticated",
- "instance": "konnect:trace:952172606039454040",
- "detail": "A valid token is required"
}Updates the user account for the user identified in the token of the request.
The request schema for the update user request.
| full_name | string^[\w \W]+$ The user's full name. |
| preferred_name | string <= 250 characters The user's desired name. |
{- "full_name": "James C Woods",
- "preferred_name": "Jimmy"
}{- "id": "7f9fd312-a987-4628-b4c5-bb4f4fddd5f7",
- "email": "james.woods@email.com",
- "full_name": "James Woods",
- "preferred_name": "Jimmy",
- "active": true,
- "created_at": "1992-02-07T17:46:57.52Z",
- "updated_at": "2022-02-07T17:00:00.52Z"
}Returns the permissions for the current user
object Filter permissions returned in the response. |
{- "data": [
- {
- "resource": "krn:accounts:reg/*:org/aa878768-05cb-4811-90d2-b82ef61caf44",
- "actions": [
- "#root"
]
}
]
}Lists the roles belonging to a managed system account. Returns 400 if any filter parameters are invalid.
| accountId required | string ID of the system account. |
object Filter roles returned in the response. |
{- "meta": {
- "page": {
- "number": 1,
- "size": 10,
- "total": 100
}
}, - "data": [
- {
- "id": "b02e23c5-8ee4-4e5a-99f4-43329923adcd",
- "role_name": "Connector",
- "entity_id": "437c7192-fea0-4f35-8478-c8d57783f8c1",
- "entity_type_name": "Mesh Control Planes",
- "entity_region": "us",
- "parameters": {
- "zoneName": "zone2"
}
}, - {
- "id": "869d9402-f117-4f9a-840f-69acaf70a81a",
- "role_name": "Connector",
- "entity_id": "18ee2573-dec0-4b83-be99-fa7700bcdc61",
- "entity_type_name": "Mesh Control Planes",
- "entity_region": "eu",
- "parameters": {
- "zoneName": "zone3"
}
}
]
}Assigns a role to a managed system account. Returns 409 if role is already assigned.
| accountId required | string ID of the system account. |
The request schema for assigning a role.
| role_name | string The desired role. |
| entity_id | string <uuid> The ID of the entity. |
| entity_type_name | string The type of entity. |
| entity_region | string Enum: "us" "eu" "au" "me" "in" "*" The region to scope the role assignment to. |
| parameters | object |
{- "id": "eaf7adf1-32c8-4bbf-b960-d1f8456afe67",
- "role_name": "Connector",
- "entity_id": "18ee2573-dec0-4b83-be99-fa7700bcdc61",
- "entity_type_name": "Mesh Control Planes",
- "entity_region": "eu",
- "parameters": {
- "zoneName": "zone4"
}
}{- "id": "eaf7adf1-32c8-4bbf-b960-d1f8456afe67",
- "role_name": "Connector",
- "entity_id": "18ee2573-dec0-4b83-be99-fa7700bcdc61",
- "entity_type_name": "Mesh Control Planes",
- "entity_region": "eu",
- "parameters": {
- "zoneName": "zone4"
}
}Issues new tokens. Returns 401 if a) the user is no longer active, b) the token has exceeded its lifetime limit, or c) the token has been revoked.
{- "status": 401,
- "title": "Unauthenticated",
- "instance": "konnect:trace:952172606039454040",
- "detail": "A valid token is required"
}This call the aws marketplace resolve customer api.
AWS Marketplace Metering Resolve Customer request.
| token required | string Token is the aws customer token from the aws marketplace. |
{- "token": "A1B2C3D4E5F6G7H8I9J0K+LMNOPQRSTUVWXYZabcd+efghijklmnopqrstuv+wxyz0123456789+"
}{- "organization_id": "7c60d51f-b44e-4682-87d6-449835ea4de6"
}Confirms the authorization request by marking the device code as confirmed.
The request schema for the device confirmation request.
| user_code required | string The end-user device verification code. |
{- "user_code": "string"
}{- "status": 400,
- "title": "Bad Request",
- "detail": "Could not parse request body",
- "instance": "konnect:trace:3674017986744198214",
- "invalid_parameters": [
- {
- "field": "body",
- "reason": "request format is invalid"
}
]
}This endpoint provides the machine client a means of being notified when a request for authorization is granted or rejected. It is expected for the client to try the access token request repeatedly in a polling fashion based on the error code in the response. See https://www.rfc-editor.org/rfc/rfc8628#section-3.4 for details.
The request schema for the device access token request.
| grant_type required | string Value MUST be set to "urn:ietf:params:oauth:grant-type:device_code". |
| device_code required | string The device verification code, "device_code" from the device authorization response. |
| client_id required | string The client identifier. |
{- "access_token": "2YotnFZFEjr1zCsicMWpAA",
- "token_type": "Bearer",
- "expires_in": 3600,
- "refresh_token": "tGzv3JOkF0XG5Qx2TlKWIA",
- "scope": "read write"
}Retrieves the list of organizations available to the given user.
{- "meta": {
- "page": {
- "number": 1,
- "size": 1,
- "total": 10
}
}, - "data": [
- {
- "name": "IDM - Developers",
- "login_path": "/v2/authenticate/federated?org_id=7f9fd312-a987-4628-b4c5-bb4f4fddd5f7"
}
]
}Create a new organization with Auth0 authentication. The Auth0 user will be the organization owner.
| organization_name required | string |
| default_region required | string |
{- "organization_name": "string",
- "default_region": "string"
}{- "organization_id": "string",
- "login_path": "string"
}Sets the deletion configs for a specified organization. The retention period is the number of days an organization can remain in the inactive state before being permanently deleted.
| organizationId required | string <uuid> Example: d32d905a-ed33-46a3-a093-d8f536af9a8a The ID of the organization being patched. |
The request schema to set an organization's retention period.
| retention_period_days | integer [ 1 .. 365 ] The retention period in days. |
{- "retention_period_days": 90
}{- "retention_period_days": 90
}Sets a new state for an organization and creates an organization state history record. An organization can be set to active or inactive.
The request schema to set an organization's state.
| state required | string Enum: "active" "inactive" "deleting" "deleted" The state of the organization to set. |
| reason | string The reason for the state change. |
| changed_by | string The uuid of the konger who modified the state. |
{- "state": "inactive",
- "reason": "invoice overdue (30 days)",
- "changed_by": "00uerwcs8eC4ifanR256"
}{- "id": "d99c041a-c7cf-46a2-bf3a-44bb5f75400e",
- "state": "active",
- "reason": "invoice overdue (30 days)",
- "service": "kadmin",
- "changed_by": "00uerwcs8eC4ifanR256",
- "created_at": "2023-01-18T11:35:45.130Z"
}Returns the state history of an organization sorted in reverse chronological order. Possible states include active, inactive, deleting, and deleted. An organization state will be transitioned to the deleting state if the organization remains inactive for 90 days. After deletion is complete, the state will be transitioned to the final deleted state.
{- "meta": {
- "page": {
- "number": 1,
- "size": 2,
- "total": 2
}
}, - "data": [
- {
- "id": "7f9fd312-a987-4628-b4c5-bb4f4fddd5f7",
- "state": "inactive",
- "service": "kadmin",
- "reason": "invoice overdue (30 days)",
- "changed_by": "00uerwcs8eC4ifanR256",
- "created_at": "2022-09-25T13:00:00.00Z"
}, - {
- "id": "7f9fd312-a987-4628-b4c5-bb4f4fddd5f8",
- "state": "active",
- "service": "kauth",
- "created_at": "2021-09-25T13:00:00.00Z"
}
]
}List all plugins linked to the partial
| controlPlaneId required | string <uuid> Example: 9524ec7d-36d9-465d-a8c5-83a3c9390458 The UUID of your control plane. This variable is available in the Konnect manager. |
| PartialId required | string ID of the Partial to lookup |
| size | integer [ 1 .. 1000 ] Default: 100 Number of resources to be returned. |
| offset | string Offset from which to return the next set of resources. Use the value of the 'offset' field from the response of a list operation as input here to paginate through all the resources |
| tags | string Example: tags=tag1,tag2 A list of tags to filter the list of resources on. Multiple tags can be concatenated using ',' to mean AND or using '/' to mean OR. |
{- "count": 10,
- "data": [
- {
- "id": "string",
- "instance_name": "string",
- "name": "string"
}
], - "next": "string",
- "offset": "string"
}