Home / Kong Plugin Hub
Edit
Report

Access Control Enforcement

Overview Examples Configuration reference Changelog
Related Documentation
Gateway Documentation
Made by
Kong Inc.
Incompatible with
on-prem
Supported Gateway Topologies
hybrid
Supported Konnect Deployments
hybrid cloud-gateways serverless
Compatible Protocols
grpc grpcs http https
Minimum Version
Kong Gateway - 3.13
Tags
#traffic-control

3.13.0.0

Release date 2025/12/18

Feature

  • Enabled at-rest keyring encryption for sensitive fields in ACE plugin.

  • Added operation_id in analytics and set it to the header X-ACE-Operation-ID.

  • ace_credentials can now be linked to Consumers or Consumer Groups

Bugfix

  • Fixed an issue where the anonymous consumer was not being set properly when authentication failed.

  • Fixed an issue where users could set the anonymous field in the OpenID Connect configuration of ACE auth strategies, which is not supported and could lead to unexpected authentication behavior.

  • Fixed an issue where multiple key-auth strategies could not use the same apikey.

  • Fixed an issue where observability headers could not be set correctly in some unhappy paths.

Something wrong?
Report an Issue | Edit this Page

Help us make these docs great!

Kong Developer docs are open source. If you find these useful and want to make them better, contribute today!
Contribute

Still need help

Ask in our Forum
Contact Support