diff --git a/ansible/roles/kong-api/defaults/main.yml b/ansible/roles/kong-api/defaults/main.yml
index 4ccdf56cff142ef9f481500da209ecf7d19d3e94..a4f8ac7c2b848d6ec25a8f5515d03fdb97c1a30f 100644
--- a/ansible/roles/kong-api/defaults/main.yml
+++ b/ansible/roles/kong-api/defaults/main.yml
@@ -14430,3 +14430,192 @@ kong_apis:
- name: opa-checks
config.required: false
config.enabled: false
+
+- name: privateUserManagementCreate
+ uris: "{{ usermanagement_prefix }}/create"
+ upstream_url: "{{ usermanagement_service_url }}/api/v1/user/create"
+ strip_uri: true
+ plugins:
+ - name: jwt
+ - name: cors
+ - "{{ statsd_pulgin }}"
+ - name: acl
+ config.whitelist:
+ - userCreate
+ - name: rate-limiting
+ config.policy: local
+ config.hour: "{{ medium_rate_limit_per_hour }}"
+ config.limit_by: credential
+ - name: request-size-limiting
+ config.allowed_payload_size: "{{ small_request_size_limit }}"
+ - name: opa-checks
+ config.required: false
+ config.enabled: false
+
+- name: privateUserManagementUpdate
+ uris: "{{ usermanagement_prefix }}/update"
+ upstream_url: "{{ usermanagement_service_url }}/api/v1/user/update"
+ strip_uri: true
+ plugins:
+ - name: jwt
+ - name: cors
+ - "{{ statsd_pulgin }}"
+ - name: acl
+ config.whitelist:
+ - userCreate
+ - name: rate-limiting
+ config.policy: local
+ config.hour: "{{ medium_rate_limit_per_hour }}"
+ config.limit_by: credential
+ - name: request-size-limiting
+ config.allowed_payload_size: "{{ small_request_size_limit }}"
+ - name: opa-checks
+ config.required: false
+ config.enabled: false
+
+- name: privateUserManagementDetails
+ uris: "{{ usermanagement_prefix }}/details"
+ upstream_url: "{{ usermanagement_service_url }}/api/v1/user/details"
+ strip_uri: true
+ plugins:
+ - name: jwt
+ - name: cors
+ - "{{ statsd_pulgin }}"
+ - name: acl
+ config.whitelist:
+ - userCreate
+ - name: rate-limiting
+ config.policy: local
+ config.hour: "{{ medium_rate_limit_per_hour }}"
+ config.limit_by: credential
+ - name: request-size-limiting
+ config.allowed_payload_size: "{{ small_request_size_limit }}"
+ - name: opa-checks
+ config.required: false
+ config.enabled: false
+
+- name: privateUserManagementList
+ uris: "{{ usermanagement_prefix }}/list"
+ upstream_url: "{{ usermanagement_service_url }}/api/v1/user/list"
+ strip_uri: true
+ plugins:
+ - name: jwt
+ - name: cors
+ - "{{ statsd_pulgin }}"
+ - name: acl
+ config.whitelist:
+ - userCreate
+ - name: rate-limiting
+ config.policy: local
+ config.hour: "{{ medium_rate_limit_per_hour }}"
+ config.limit_by: credential
+ - name: request-size-limiting
+ config.allowed_payload_size: "{{ small_request_size_limit }}"
+ - name: opa-checks
+ config.required: false
+ config.enabled: false
+
+- name: privateUserManagementActivate
+ uris: "{{ usermanagement_prefix }}/activate"
+ upstream_url: "{{ usermanagement_service_url }}/api/v1/user/activate"
+ strip_uri: true
+ plugins:
+ - name: jwt
+ - name: cors
+ - "{{ statsd_pulgin }}"
+ - name: acl
+ config.whitelist:
+ - userCreate
+ - name: rate-limiting
+ config.policy: local
+ config.hour: "{{ medium_rate_limit_per_hour }}"
+ config.limit_by: credential
+ - name: request-size-limiting
+ config.allowed_payload_size: "{{ small_request_size_limit }}"
+ - name: opa-checks
+ config.required: false
+ config.enabled: false
+
+- name: privateUserManagementDeactivate
+ uris: "{{ usermanagement_prefix }}/deactivate"
+ upstream_url: "{{ usermanagement_service_url }}/api/v1/user/deactivate"
+ strip_uri: true
+ plugins:
+ - name: jwt
+ - name: cors
+ - "{{ statsd_pulgin }}"
+ - name: acl
+ config.whitelist:
+ - userCreate
+ - name: rate-limiting
+ config.policy: local
+ config.hour: "{{ medium_rate_limit_per_hour }}"
+ config.limit_by: credential
+ - name: request-size-limiting
+ config.allowed_payload_size: "{{ small_request_size_limit }}"
+ - name: opa-checks
+ config.required: false
+ config.enabled: false
+
+- name: privateUserManagementSmsOtp
+ uris: "{{ usermanagement_prefix }}/sms/otp"
+ upstream_url: "{{ usermanagement_service_url }}/api/v1/user/sms/otp"
+ strip_uri: true
+ plugins:
+ - name: jwt
+ - name: cors
+ - "{{ statsd_pulgin }}"
+ - name: acl
+ config.whitelist:
+ - userCreate
+ - name: rate-limiting
+ config.policy: local
+ config.hour: "{{ medium_rate_limit_per_hour }}"
+ config.limit_by: credential
+ - name: request-size-limiting
+ config.allowed_payload_size: "{{ small_request_size_limit }}"
+ - name: opa-checks
+ config.required: false
+ config.enabled: false
+
+- name: privateUserManagementKeycloakOTP
+ uris: "{{ usermanagement_prefix }}/keycloak/otp"
+ upstream_url: "{{ usermanagement_service_url }}/api/v1/user/keycloak/otp"
+ strip_uri: true
+ plugins:
+ - name: jwt
+ - name: cors
+ - "{{ statsd_pulgin }}"
+ - name: acl
+ config.whitelist:
+ - userCreate
+ - name: rate-limiting
+ config.policy: local
+ config.hour: "{{ medium_rate_limit_per_hour }}"
+ config.limit_by: credential
+ - name: request-size-limiting
+ config.allowed_payload_size: "{{ small_request_size_limit }}"
+ - name: opa-checks
+ config.required: false
+ config.enabled: false
+
+- name: privateUserManagementKeycloakLogin
+ uris: "{{ usermanagement_prefix }}/keycloak/login"
+ upstream_url: "{{ usermanagement_service_url }}/api/v1/user/keycloak/login"
+ strip_uri: true
+ plugins:
+ - name: jwt
+ - name: cors
+ - "{{ statsd_pulgin }}"
+ - name: acl
+ config.whitelist:
+ - userCreate
+ - name: rate-limiting
+ config.policy: local
+ config.hour: "{{ medium_rate_limit_per_hour }}"
+ config.limit_by: credential
+ - name: request-size-limiting
+ config.allowed_payload_size: "{{ small_request_size_limit }}"
+ - name: opa-checks
+ config.required: false
+ config.enabled: false