I am moving to WSO2 API Manager cloud. I have hosted my backend API's and wso2 API Manager in AWS myself. The access to backend API's were limited only to WSO2 API Manager EC2 Mahcine's IP. So that every request will have to go through WSO2 Machine.
How to achieve the same when using WSO2 Cloud?What is the ideal way to protect my Back End API's? OR is there a recommended approach for protecting backend API's? May be check for some token in the backend code to see if request comes via WSO2 API Mananger?
You have the following options available in the cloud.
https://docs.wso2.com/display/APICloud/Secure+your+Backend+Services