- Joined
- Jan 8, 2019
- Messages
- 56,623
- Solutions
- 2
- Reputation
- 32
- Reaction score
- 100,456
- Points
- 2,313
- Credits
- 32,750
6 Years of Service
76%
API Firewall is a high-performance proxy with API request and response validation based on OpenAPI/Swagger schema. It is designed to protect REST API endpoints in cloud-native environments. It provides API hardening with the use of a positive security model allowing calls that match a predefined API specification for requests and responses while rejecting everything else.
The key features of API Firewall are:
Secure REST API endpoints by blocking malicious requests
Stop API data breaches by blocking malformed API responses
Discover Shadow API endpoints
Validate JWT access tokens for OAuth 2.0 protocol-based authentication
(NEW) Denylist compromised API tokens, keys, and Cookies
Changelog v0.6.11
Add decompression for the request body and response body
Add APIFW_SERVER_DELETE_ACCEPT_ENCODING env var (possible values are True or False). If the value is True then the Accept-Encoding header will be deleted from proxied requests. The default value is False
Fix 56 and 57 issues
Add tests
Update Dockerfile