This topic describes how to configure IP address blacklists and whitelists, configure consumer authorization, and manage authentication methods for a cloud-native gateway. This helps enhance security policies and ensure the security of APIs and the effectiveness of access control.
Configure IP address blacklists and whitelists for cloud-native gateways
You can configure a blacklist to deny access from specific IP addresses or configure a whitelist to allow access from specific IP addresses. Cloud-native gateways allow you to configure IP address blacklists or whitelists globally or at the domain name or route level. This helps implement fine-grained access control and allows for access to gateways in a more flexible and secure manner. For more information, see Configure IP address blacklists and whitelists for cloud-native gateways.
Configure consumer authorization
Cloud-native gateways support global authentication, route configuration authentication, and consumer authorization. This helps implement API access control, security protection, and policy management. For more information about how to configure consumer authorization, see Configure consumer authorization.
Configure authentication methods
Cloud-native gateways support the management of authentication methods at the gateway level. The authentication methods include the JSON Web Token (JWT) authentication, OpenID Connect (OIDC) authentication, and custom authentication. For more information, see Gateway authentication overview.