Thanks for the Tutorial.
Sam S
1

The point is that your APIs are public and available because that is going to be the only way that they can be accessible. However, having said that — you must put authentication on your APIs. In your Endpoint handler, you will need to check the user who got authenticated and then see if the user is authorized to access the rest of the functionality or not. The error should be returned from there.

Show your support

Clapping shows how much you appreciated Romin Irani’s story.