When API scope security configuration is enabled using custom WAF settings, it applies only to the individual or specified APIs selected.
- Security rules are enforced at the API level
- Other APIs in the same environment remain unaffected
- This allows for tailored protection based on API sensitivity or usage
What you can do on API scope security configuration page
You can:
- Create an API scope security configuration
- View an API scope security configuration
- Edit an API scope security configuration
- Delete an API scope security configuration
- Add an API scope WAF policy exclusions
- View an API scope WAF policy exclusion
- Edit an API scope WAF policy exclusion
- Delete an API scope WAF policy exclusion
See API custom security configuration
Use API scope configuration when you need tight control over how specific APIs are secured.