Lộ trình liên quan Related learning track
Application Services Application Services
Bảo vệ API với Cloudflare Secure an API with Cloudflare
API thường bị abuse bởi bots, scrapers, credential stuffing, excessive requests và broken clients. APIs are often abused by bots, scrapers, credential stuffing, excessive requests, and broken clients.
Tài liệu Cloudflare (use case) → Official Cloudflare use case docs →
Kiến trúc gợi ý Suggested architecture
Mobile/Web Client → Cloudflare API security controls → API origin Mobile/Web Client → Cloudflare API security controls → API origin
Sơ đồ tham chiếu — API Shield Reference diagram — API Shield
Common user workflow for API Shield Common user workflow for API Shield
Luồng API Shield: discovery endpoint → review → positive security (schema, mTLS, JWT) → chống abuse → giám sát endpoint. API Shield stages: endpoint discovery, review, positive security model (schema, mTLS, JWT), abuse protection, sensitive data detection, and endpoint monitoring — from Cloudflare Security Reference Architecture.
Thuật ngữ: Concepts: API Shield · Endpoint discovery · Schema validation · mTLS · JWT validation · Rate limiting · Positive security model
Sơ đồ chính thức ↗ Official diagram ↗ · Security Security
Controls & stack Controls & stack
- API Shield: discovery endpoint, schema validation, sequence analytics API Shield: endpoint discovery, schema validation, sequence analytics
- WAF + managed rules cho pattern phổ biến WAF + managed rules for common patterns
- Rate limiting theo endpoint (login, OTP, search, checkout) Endpoint-based rate limiting (login, OTP, search, checkout)
- Bot protection cho traffic automation xấu Bot protection for harmful automation
- mTLS/JWT validation cho client và auth endpoints mTLS/JWT validation for clients and auth endpoints
- Logging/analytics để thấy top paths & top clients Logging/analytics to see top paths & clients
Tình huống khác (cùng lộ trình) Other scenarios (same track)
- Bảo vệ website với Cloudflare Protect a website with Cloudflare
- Chống DDoS và giữ site online Defend against DDoS and stay online
- Tăng tốc phân phối nội dung (CDN) Accelerate content delivery
- E-commerce: bảo mật & performance E-commerce security and performance
- Stream video & media tại scale Deliver images and stream video at scale
← Tất cả tình huống lộ trình này ← All scenarios in this track · Ba nhóm tình huống All three groups
Next step Next step
Tiếp tục hành trình học của bạn. Continue your learning journey.