Full-Stack Security Setup
Comprehensive security setup: password hashing, JWT auth, CSP, CORS, security headers, and 2FA.
このレシピの使いどころ
Complete security foundation for a new web application. Covers authentication, authorization, browser security, and API protection in one workflow.
ステップ
Password Generator
このツールを試す →Create secure initial passwords
Hash Calculator
このツールを試す →Securely hash passwords
Secret Generator
このツールを試す →Create application secrets
JWT Generator
このツールを試す →Configure JWT authentication
よくある質問
What security should every web app have at minimum?
HTTPS, secure password hashing (bcrypt/argon2), CSRF protection, CSP headers, rate limiting, and input validation. This recipe covers most of these.
How often should I rotate secrets and keys?
JWT signing keys: every 90 days. API keys: every 180 days or on team changes. Session secrets: on every deployment. Passwords: on suspected breach only (not on a schedule).
関連レシピ
Website Launch Checklist
Complete pre-launch checklist: SEO meta tags, Open Graph, sitemap, robots.txt, and security headers.
Freelancer Financial Toolkit
Essential freelancer tools: project margin calculator, invoice tip estimator, and expense split for teams.
Blog Post SEO Optimization
Optimize blog posts with meta tags, Open Graph, SERP preview, and structured data for maximum visibility.
E-commerce Store Launch
Launch an online store with product margin analysis, SEO setup, security configuration, and pricing strategy.