Home / Kong Plugin Hub

Edit this Page Edit

Report an Issue Report

ACL

Overview Examples Guides Configuration reference Changelog API reference

Related Documentation

Gateway Documentation

Made by

Kong Inc.

Supported Gateway Topologies

hybrid db-less traditional

Supported Konnect Deployments

hybrid cloud-gateways serverless

Compatible Protocols

grpc grpcs http https ws wss

Minimum Version

Kong Gateway - 1.0

Tags

#traffic-control

Related Resources

Use the ACL plugin with Consumer Groups

Kong Gateway traffic control and routing

3.14.0.2

Release date 2026/04/28

Bugfix

Fixed an issue where anonymous consumers with valid legacy ACL group credentials were rejected with 403 when include_consumer_groups was enabled and no enterprise consumer groups were assigned.

3.14.0.0

Release date 2026/04/07

Feature

Added WebSocket protocol support (ws/wss). The plugin now enforces allow/deny group rules during the WebSocket handshake phase.

Bugfix

Fixed an issue where the ACL plugin did not check consumer groups from all sources, causing it to incorrectly deny access when consumer groups were set by other plugins like ACE in ngx.ctx.authenticated_consumer_groups.

3.13.0.3

Release date 2026/04/08

Bugfix

Fixed an issue where anonymous consumers with valid legacy ACL group credentials were rejected with 403 when include_consumer_groups was enabled and no enterprise consumer groups were assigned.

3.13.0.1

Release date 2026/02/01

Bugfix

Fixed an issue where the ACL plugin did not check consumer groups from all sources, causing it to incorrectly deny access when consumer groups were set by other plugins like ACE in ngx.ctx.authenticated_consumer_groups.

3.13.0.0

Release date 2025/12/18

Bugfix

Fixed an issue where the cache was not being invalidated for incremental sync in certain scenarios, leading to stale data being served.

3.12.0.1

Release date 2025/11/18

Bugfix

Fixed an issue where the cache was not being invalidated for incremental sync in certain scenarios, leading to stale data being served.

3.11.0.5

Release date 2025/10/23

Bugfix

Fixed an issue where the cache was not being invalidated for incremental sync in certain scenarios, leading to stale data being served.

3.10.0.7

Release date 2025/12/09

Bugfix

Fixed an issue where the cache was not being invalidated for incremental sync in certain scenarios, leading to stale data being served.

3.8.0.0

Release date 2024/09/11

Feature

Added a new config always_use_authenticated_groups to support using authenticated groups even when an authenticated consumer already exists.

3.6.0.0

Release date 2024/02/12

Feature

Add support for consumer-groups

3.0.0.0

Release date 2022/09/09

Breaking Change

Removed the deprecated blacklist and whitelist configuration parameters. #8560

Related Documentation

Gateway Documentation

Made by

Kong Inc.

Supported Gateway Topologies

hybrid db-less traditional

Supported Konnect Deployments

hybrid cloud-gateways serverless

Compatible Protocols

grpc grpcs http https ws wss

Minimum Version

Kong Gateway - 1.0

Tags

#traffic-control

Related Resources

Use the ACL plugin with Consumer Groups

Kong Gateway traffic control and routing

Something wrong?

Report an Issue | Edit this Page

View all Kong documentation

Help us make these docs great!

Kong Developer docs are open source. If you find these useful and want to make them better, contribute today!

Contribute

Still need help?

Ask in our Slack Community

Contact Support