Can I run this Kong image without setting up memcache or shm. Just use the default KONG_X_SESSION_STORAGE=cookie settings?

Yes, it is the default.

Keep in mind that the cookie is sent as a header, and there are limitations, so you might need to increase header size for kong's nginx, e.g.

• KONG_NGINX_CLIENT_HEADER_BUFFER_SIZE: '32k'
• KONG_NGINX_LARGE_CLIENT_HEADER_BUFFERS: '4 16k'

There may be other parameters, I have played around with others as well:

• KONG_NGINX_PROXY_LARGE_CLIENT_HEADER_BUFFERS: '16 128K'
• KONG_NGINX_HTTP_OUTPUT_BUFFERS: "8 64K"

I do recommend using "shm" as described in the README, it is more secure.