apaleo interview question

How you can secure rest api ?