Controlling and Managing Access to a REST API in API Gateway