Tutorial : How to protect your MicroServices / APIs from SQL Injection Threat using Apigee

Hello Everyone,

In this video, Subra explains how to protect your APIs from SQL Injection threats using Apigee Edge out of the box policies.

Using Apigee Edge out of the box Regular Expression Threat Protection policy in Apigee Edge you can protect your APIs from SQL Injection attacks. You can find more about same here. You will use patterns to match SQL injection threats to filter out words like "SELECT", "DELETE", "TABLE" etc. For example pattern for SQL Injection prevention looks like below,

[\s]*((delete)|(exec)|(drop\s*table)|(insert)|(shutdown)|(update)|(\bor\b))

Keep us posted if you have any queries.

Version history
Last update:
‎02-15-2016 09:51 PM
Updated by: