Introduction
This blog picks up from where we left
here.
In that blog we had discussed about an end-to-end usecase
involving API Gateway, WAF and OCI Functions. We had showcased how
we can implement security using a combination of WAF and API
Gateway, with WAF handling the edge security usecases such as SQL
injection protection, and the API Gateway handling authentication.
In the API Gateway setup we had used a custom function that
remotely introspected the JWT token in the...