How Do I Enforce Policies to Protect My APIs?
This section explains the steps to secure your API using the API Key check policy. This policy enables you to identify and validate the client's identity for exposing an API. After configuring policies, you must configure transaction logger to save API Gateway transaction event logs.
To enforce policies on APIs
1. Click APIs in the title navigation bar and select the required API.
2. Click Policies and click Edit.
3. Select the policy stage and the required policy.
The details of the policy appear.
4. Provide the properties for the selected policy and click Save.
The policy is applied to the API.
For more information, see
Policies - Overview.