@Anil Sagar @ Google Let's say Apigee has been implemented for APIs from the Banking domain. There is a parameter named as 'loanId'(can be present anywhere - request payload or query parameters).

Now we have below requirements -

1. To check if loanId is greater than 0

2. To check the value of some parameter is within the specified range or not? Like value should be greater than 10 but less than 40.

3. There is an array coming in request payload. Requirement is to check if root element of request payload is - let's say 'abc' then that array must be present in request. If root tag is "xyz" then array should not be present in request.

Question - Is it good to implement these kinds of validations at Apigee level?

I am asking this question because main principle of using API Management tool states that we should not implement complext logic at API Management level.

Waiting for your inputs.