Policy Catalog

Zuplo includes policies for any solution you need for securing and sharing your API. See the policy introduction to learn about using policies.

The CORS policy is a special type of policy that is configured separately. Check out details here.

A/B Test Inbound

A/B Test Outbound

Access Control List

Add or Set Query Parameters

Add or Set Request Headers

Add or Set Response Headers

Amberflo Metering / Billing

API Key Authentication

Archive Request to AWS S3

Archive Request to Azure Storage

Archive Response to AWS S3

Archive Response to Azure Storage

Audit Logs Inbound

Auth0 JWT Auth

AWS Cognito JWT Auth

Basic Auth

Bot Detection

Brown Out

Caching

Change Method

Clear Request Headers

Clear Response Headers

Clerk JWT Auth

Composite Inbound (Group Policies)

Custom Code Inbound

Custom Code Outbound

Firebase JWT Auth

Form Data to JSON

Geo-location filtering

GraphQL Complexity Limit

GraphQL Disable Introspection

HMAC Auth

IP Restriction

JSON Body Validation (legacy)

JWT Auth

LDAP Auth

Legacy API Key Authentication (deprecated)

Mock API Response

Moesif Analytics & Billing

mTLS Auth

Okta JWT Auth

PropelAuth JWT Auth

Quota

Rate Limiting

RBAC Authorization

Readme Metrics

Remove Query Parameters

Remove Request Headers

Remove Response Headers

Replace String in Response Body

Request Size Limit

Request Validation

Require Origin

Set Body

Set Status Code

Sleep / Delay

Supabase JWT Auth

Transform Request Body

Transform Response Body

Upstream Azure AD Service Auth

Upstream Firebase Admin Auth

Upstream Firebase User Auth

Upstream GCP Self-Signed JWT

Upstream GCP Service Auth