Azure API Management support for request and response validation policies has reached general availability.
Published date: March 17, 2021
API Management support for request and response validation enables you to block or log API requests and responses that don't adhere to the specified API schema - without utilizing an add-on solution. This offers you protection for your APIs, without additional complexity or cost associated with an add-on.
Requests and responses can be blocked or logged if they contain:
- Missing required query parameters.
- JSON bodies that don’t comply to the declared JSON schema.
- Excessive body size.
- Query parameters that don’t match specified regex pattern or data type.
- Headers not specified in the API schema.
This capability will be rolled out over the next several weeks.