Which approach should the company take to secure its API?

1 Comment

  1. Caleb
    Author

    In my experience, the answer is:
    Create an AWS WAF web ACL with a rule to allow access to the IP addresses used by the six partners. Associate the web ACL with the API. Create a usage plan with a request limit and associate it with the API. Create an API key and add it to the usage plan.

Leave a Reply to Caleb Cancel reply

Your email address will not be published. Required fields are marked *

2 + 1 =