A company is building a serverless application using AWS Lambda and Amazon API Gateway. They need to secure the API against unauthorized access. The users authenticate via a third-party Identity Provider (IdP) that supports OpenID Connect (OIDC). Which TWO methods can be used to authorize API requests? (Select TWO)

Use an API Gateway Lambda authorizer to validate the OIDC token.

Integrate the IdP with Amazon Cognito User Pools and use a Cognito authorizer in API Gateway.

Use AWS IAM Identity Center to generate temporary AWS credentials for the API.

Configure API Gateway to use AWS WAF to validate the OIDC token.

Use Amazon Macie to inspect the incoming tokens.

Enable API Gateway resource policies to allow the IdP's IP address.