Security Model
Piglet Run provides multiple layers of security for your development environment.
Access Control
| Layer | Mechanism |
|---|---|
| Network | Firewall, VPN support |
| Web | Nginx authentication |
| Database | PostgreSQL roles |
| Filesystem | Unix permissions |
Authentication
Default authentication methods:
- VS Code: Password or token
- Jupyter: Token-based
- Grafana: Username/password
- PostgreSQL: Role-based access
Encryption
| Type | Support |
|---|---|
| In Transit | SSL/TLS |
| At Rest | Database encryption |
| Backup | Encrypted backups |
Best Practices
- Change default passwords immediately
- Enable SSL for all services
- Restrict network access
- Regular security updates