You can configure filters in the repository to mitigate security attacks when theContent Services ReST API is accessed externally.
The Content Services ReST API must be accessible on the network when the user interface is implemented with the Alfresco Application Development Framework (ADF). The /alfresco URL path then needs to be protected with a CSRF filter.