soeren/fotospiel-app
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
Files
bd38decc239cce424aefc48d39fb06f2e129e209
fotospiel-app/docs/prp/09-security-compliance.md
Auto Commit 44ab0a534b Initialize repo and add session changes (2025-09-08)
2025-09-08 14:03:43 +02:00

537 B
Raw Blame History

09 — Security & Compliance

  • Roles: super_admin, tenant_admin, member; guest upload via signed tokens.
  • Policies: all tenant-owned models gated; Super Admin bypass via explicit ability.
  • Audit: record impersonation and destructive actions with actor, target, reason.
  • Logging: structured, no PII; add request/trace IDs; redact secrets.
  • GDPR: retention settings per tenant; deletion workflows; legal pages managed via CMS-like resource.
  • Rate limits: per-tenant, per-user, per-device; protect upload and admin mutations.
Reference in New Issue View Git Blame Copy Permalink