Securing AutoQuery so that only select users have access?

We’re setting up AutoQuery as a way to quickly look through our response logs.

Is there a way to secure access to AutoQuery behind a password or require authentication in order to access it so that only developers and not all API consumers have access to this interface?

Use [ValidateHasRole] declarative validation attributes.

Otherwise you can use GlobalRequestFiilters to inspect the request and run custom logic like any other API request.