This topic describes how to set gateway IP blacklists and whitelists, configure consumer authentication, and manage instance-level authentication in a cloud-native API gateway to strengthen your security policies and ensure API security and effective access control.
Set gateway IP blacklists and whitelists
You can configure blacklists and whitelists to deny or allow access requests from specific IP addresses. Cloud-native API Gateway lets you configure IP blacklists and whitelists at the global, domain name, and routing levels for fine-grained access control. This ensures more flexible and secure access management. For more information, see Set gateway IP blacklists and whitelists.
Consumer authentication
Cloud-native API Gateway provides global, routing-level, and consumer authentication to control API access, ensure security, and manage policies. For more information about how to configure consumer authentication, see Configure consumer authentication.
Global Authentication and Authorization
Cloud-native API Gateway lets you manage instance-level authentication, including JSON Web Token (JWT), OpenID Connect (OIDC), and custom authentication methods. For more information, see Global authentication.