You are a developer for a SaaS company that offers many web services. All web services for the company must meet the following requirements: ✑ Use API Management to access the services ✑ Use OpenID Connect for authentication ✑ Prevent anonymous usage A recent security audit found that several web services can be called without any authentication. Which API Management policy should you implement?

A. jsonp
B. authentication-certificate
C. check-header
D. validate-jwt
  Discussion forum


Leave an answer