TechQA.

Do I need a Web Application Firewall if my APIs are protected with OAuth?

343 views Asked by At

I implemented a micro-service model and each API is protected using bearer token authentication... no service logic is executed unless a valid OAuth token is provided as part of the request header.

What problem does using a Web Application Firewall to protect my APIs solve if only authenticated users are able to execute them?

api oauth-2.0 azure-functions web-application-firewall azure-waf
Original Q&A
1

There are 1 answers

0
Troy Witthoeft On

Client id's and secrets can leak. Users can become disgruntled. The WAF protects you in a situation where an authenticated user is attacking/probing the system.

Related Questions in API

Related Questions in OAUTH-2.0

Related Questions in AZURE-FUNCTIONS

Related Questions in WEB-APPLICATION-FIREWALL

Related Questions in AZURE-WAF

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions