Enterprise
Enterprise API gateway
IP allowlist, role gates, high-throughput rate limits, PII masking, and 3-year audit.
What this package does
Zero-trust API gateway guardrails for enterprise deployments with internal and external consumers. Restricts API access to declared CIDRs and service account roles, enforces high-throughput rate limits while blocking per-user abuse, masks PII in transit, and retains a 3-year audit trail. Drop this on any internal API before granting LLM agents access to it.
Designed for
- Enterprise internal APIs exposed to AI agents
- Partner-facing API gateways
- Platform teams governing AI tool access
What's included
- IP allowlist (declare your service CIDRs)
- Role-gated access (api_client + service_account)
- High-throughput limits: 1000 req/min, 500 events/hr per user
- PII masking before downstream sinks
- Security ops manual review with 1-hour SLA
Controls in this bundle
Profile tiers
Switch profiles in Studio to retune default thresholds across the whole bundle without rewriting any control by hand. This package ships at balanced — anything you've already tightened by hand is preserved on switch.
Every control in this package uses identical parameters across all four profiles. Switching profile in Studio has no effect here.
Attestation
The canonical hash of these bundle bytes is sha256:71e80c7235f361de4fff6786a901adf0212164a75b22d9d0fbf3546f68fea02e. The same hash is computed at lock time, at Stripe checkout, and again on the runtime side before any byte is honored.
Want to customize first? Opening this package in Studio prefills the canvas with the 10 controls above. You can add, remove, or retune any of them before you lock the hash and pay.