Secure Web API from outside calls

Question

User-1070361409 posted

What is the best way to restrict api calls outside of my website? I am deploying a web site to windows azure using asp.net web api and my api becomes exposed to calls through the uri. Can this be secured so that only my website can access the api and all direct calls from other users are blocked?

Answer 1

User-782957977 posted

You can configure this in IIS

https://technet.microsoft.com/en-us/library/cc730889.aspx

http://www.iis.net/learn/get-started/whats-new-in-iis-8/iis-80-dynamic-ip-address-restrictions