Security tips for operations
Tips to Ensure Security When Using OpenGate Operations
To ensure the security of your operations with OpenGate, follow these recommended practices:
-
Use Encrypted Communication: Always use secure HTTP (HTTPS) for communication, utilizing the default TCP port
443. Unsecured HTTP communication (default TCP port80) is deprecated and will soon be unsupported. -
Authentication Mechanisms: OpenGate requires authentication for all operations. There are two mechanisms you can use simultaneously for enhanced security:
- API Key Authentication: Include the
X-ApiKeyHTTP header with the API key of a valid user in every request. - Mutual Authentication: Implement mutual authentication based on secure HTTP PKI infrastructure for an additional layer of security, ensuring the integrity and confidentiality of your communications.
- API Key Authentication: Include the
By following these guidelines, you can enhance the security and reliability of your interactions with the OpenGate platform.