Open datapointchris opened 1 month ago
[API & Web Architecture - Security Best Practices | by Abdul Wahab | Medium](https://abdulrwahab.medium.com/api-web-architecture-security-best-practices-61522aff37be)
[Designing a secure API - DEV Community](https://dev.to/vaultree/designing-a-secure-api-4059)
[ ] Make a new user for postgres?
[ ] Should I make a special user that connects to postgres?
[ ] Or should I use AWS IAM authentication with a password?
[ ] But I need a user to do admin stuff, I guess postgres is okay for that
[ ] But should definitely be a separate user for the app
[ ] They don't need permission to:
[ ] postgres database
[ ] pgcron
[ ] ONLY to `ichrisbirch` db
[API & Web Architecture - Security Best Practices | by Abdul Wahab | Medium](https://abdulrwahab.medium.com/api-web-architecture-security-best-practices-61522aff37be)
[Designing a secure API - DEV Community](https://dev.to/vaultree/designing-a-secure-api-4059)
[ ] Make a new user for postgres?
[ ] Should I make a special user that connects to postgres?
[ ] Or should I use AWS IAM authentication with a password?
[ ] But I need a user to do admin stuff, I guess postgres is okay for that
[ ] But should definitely be a separate user for the app
[ ] They don't need permission to:
[ ] postgres database
[ ] pgcron
[ ] ONLY to `ichrisbirch` db