CSRF
Apply a CSRF filter to the gateway to help prevent cross-site request forgery attacks.
Data loss prevention (DLP)
Ensure that sensitive data isn't logged or leaked by masking data in response bodies<!–and headers, …
External authentication and authorization
Rate limiting
Web Application Firewall (WAF)