Skip to main content

Best Practices

Here are some common best practices for running Secured Signal API, but these generally apply for any service.

Usage

Create seperate configs for each service
Use Placeholders extensively (they are your friends)
Always keep your stack up-to-date (this is why we have docker)

Security

Always use API tokens in production
Run behind a tls-enabled Reverse Proxy
Be cautious when overriding Blocked Endpoints
Use per-token overrides to enforce least privilege
Always allow the least possible access points

Usage
Security