Today we discuss about API security issue in magento 2.
By default, Magento 2 now prevents anonymous users from accessing the APIs that could reveal sensitive information.
When the feature is enabled, the user must have administrator privileges to execute the affected APIs.
Preventing anonymous access to these endpoints could cause third-party integrations to fail.
If a third-party integration calls any of these endpoints, it will receive an authentication error instead of the expected response.
In this case, you might need to disable this feature.
Path : Stores -> Configuration -> Services -> Magento Web API -> Web API Security
Then select “Yes” from the Allow Anonymous Guest Access menu.
If you want to call external API in Magento then you get an issue related to security.You will need to enable the above option.
I hope the above solution(Magento 2 API security issue) saves your time.
Related Post on Add Multiple Sitemap Into One In Website