Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create a Production-Ready Setup #2493

Closed
Tracked by #1518
JoblersTune opened this issue Mar 5, 2024 · 0 comments · Fixed by #2588
Closed
Tracked by #1518

Create a Production-Ready Setup #2493

JoblersTune opened this issue Mar 5, 2024 · 0 comments · Fixed by #2588
Assignees
@JoblersTune

Comments

@JoblersTune
Copy link
Collaborator

JoblersTune commented Mar 5, 2024
edited

Context

The Docker environment and config files are still set to dev appropriate values. These need to be checked and configured appropriately.
This also requires configuring all settings to be dynamically manageable through environment variables.
Implement Role-Based Access Control

  • Currently anyone who logs in simply has full_access
  • Define and implement role-based access controls within your application to manage user permissions effectively. This involves creating roles, assigning roles to users, and enforcing permission checks before executing sensitive operations.
  • Ory Kratos session lifespans should be considered
  • Ory Kratos access token lifespans should be considered
  • Ensure proper error handling
  • Ensure proper handling of all secrets
  • Ensure proper handling of all environment variables

Time Estimate

3 days
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@JoblersTune JoblersTune

Labels
None yet
Projects
Rafiki
Status: Done
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat!: securing the Admin UI interledger/rafiki
1 participant
@JoblersTune