How do you secure an API endpoint that handles high-volume user-generated content at Twitch from unauthorized access?