I am facing an issue regarding the calling of a web API in an MVC 5 Application.
I want to protect my web API from being called through tools (e.g. Postman, REST client and so on). When I am logged into my apps with my login and password and I copied all request headers from browsers and pass the copied headers and API URLs in the Postman and submitted. After submit, it is getting a valid response.
How to protect against this? I want to call it from my apps only, not other tools like Postman.
You can look into either:
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With