@thahaseen could you answer this in detail?
TradlyPlatform is hosted on AWS and we follow the best practices:
- All our API endpoints are secured using secret API keys or JWT tokens which are expired periodically and need to be refreshed.
- All our servers are hosted in a private network, they are not accessible from the Internet, except for the load balancers and a bastion server for SSH (that does not have any credentials on it).
- All the incoming requests go through a set of WAF firewall rules before they are processed.
- HTTPS/SSL certificates for everything.
If you have any specific concerns, please Contact Us or reply here and we’ll be happy to help. 