Skip to content

Gateway secure-config option + hardening profile #480

Description

@mfaferek93

Provide a documented secure config preset wiring the existing JWT/RBAC/TLS: auth.enabled, require_auth_for=all, TLS, CORS restricted to explicit origins, rate limiting; plus a hardening checklist. The gateway default stays dev-friendly (open, no auth); the secure preset is opt-in and is what packaged deployments apply.

  • Acceptance: enabling the preset refuses unauthenticated writes and serves over TLS; the default (no preset) stays dev-friendly.

Metadata

Metadata

Assignees

Labels

No labels
No labels

Type

No type
No fields configured for issues without a type.

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions