I have an application that consists of a "front-end" website, and a back-end web API. Iwant the end users of my application to be able to access the front-end website, but ionly want the front end to be accessible to the end users. The back-end should be locked down so it is only callable from the front-end.
Please suggest some better solution, I have tried multiple things but did not get any proper solution.