Security

API Security

The API uses a combination of API keys and OAuth2 for security:

API Key: Used for simpler endpoints that require basic authentication.
OAuth2: Used for more sensitive endpoints, providing robust access control with scopes.

Data Encryption

Sensitive data in transit is protected using SSL/TLS, as configured in the application settings. Data at rest is encrypted using AWS-managed encryption solutions.

Secure Storage

API keys and sensitive credentials are stored securely using AWS Secrets Manager, ensuring they are encrypted and access is controlled.

Security​

API Security​

Data Encryption​

Secure Storage​

Security

API Security

Data Encryption

Secure Storage