Your team is responsible for managing a public API Gateway that is frequently accessed by clients from a specific domain. For the past few months, client usage has remained stable, but there has recently been a significant increase, with usage more than doubling. This surge has led to a rise in costs, and you are concerned about unauthorized access from other domains.

What actions should you take to ensure that your API is only accessed by authorized domains and prevent unauthorized domain access?