Release Security
This section covers security configuration for Digital.ai Release. Use these guides to harden your Release installation by managing passwords, configuring certificates, and enabling security features.
Start with the security properties file to understand the default JVM security settings. From there, you can configure passwords, set up account lockout policies, manage server certificates, enable CSRF protection, and control session timeouts. These settings apply whether you run Release on JVM or Kubernetes.
Key Topics
- Security Properties File: Understand and override default JVM security settings for Release.
- Password Configuration: Manage and change passwords in Digital.ai Release.
- Account Lockout: Configure account lockout policies to prevent brute-force attacks.
- Encrypted Passwords: Store encrypted passwords in Release configuration files.
- Release Server Certificate: Configure the SSL certificate for the Release server.
- Deploy Server Certificate: Configure Release to trust the Deploy server certificate.
- SSL Options for HttpRequest: Configure SSL options for HTTP requests made by Release.
- HTTP Host Header Protection: Protect against HTTP host header attacks.
- CSRF Protection: Enable and configure cross-site request forgery protection.
- sameSite Cookie Configuration: Configure the sameSite attribute for cookies.
- Maximum HTTP Header Size: Set the maximum allowed size for HTTP request headers.
- Session Timeout: Configure how long user sessions remain active.
- Pendo Analytics and Guidance: Configure Pendo analytics and in-app guidance.