Warpgate Tech
  • Introduction
  • API Docs
    • Getting started
  • 🔐Accounts
    • Register a user
    • Signup
    • Authenticate a user
    • Get User
    • Forgot Password
    • Reset password
    • Change password
    • Set password
    • Verification code
    • Verify user
    • Create a user profile
    • Update a profile
    • ⚠ Delete a profile
    • List all users
  • 📎File uploads
    • Introduction
    • Pre-sign URL
    • Upload file
    • Create file
    • Update file
    • Delete File
  • 📕Ledger
    • Create a wallet
    • Deposit amount to wallet
    • Transfer amount
    • Accounts and balances
    • Ledger entries
    • Withdraw amount from wallet
    • Create a ledger account
    • Update a ledger account
    • ⚠ Delete a ledger account
  • Commerce
    • Create Shop
    • Get Shop
    • List all Shops
    • Update Shop
    • ⚠ Delete Shop
    • Create product
    • Get Product
    • Update Product
    • Delete Product
    • Create Product Variant
    • Delete Variant
    • Add Product File
    • Remove Product File
    • Create Price
    • Update Price
    • Delete Price
    • List products
    • Create Order
    • Update Order
    • Delete an Order
  • Legal
    • Frequently Asked Questions
    • Security FAQ
    • Terms of Service
    • Privacy Policy
Powered by GitBook
On this page
  • 🔐 Is my data at Warpgate API secure?
  • 🔑 Is my customer data encrypted?
  • 🔏 How do you store sensitive information like user passwords?
  • đŸŠčđŸ»â€â™‚ïž How well is Warpgate protected against server vulnerabilities?

Was this helpful?

  1. Legal

Security FAQ

PreviousFrequently Asked QuestionsNextTerms of Service

Last updated 4 years ago

Was this helpful?

🔐 Is my data at Warpgate API secure?

We chose AWS as our cloud-hosting provider due to their dedication towards .

🔑 Is my customer data encrypted?

Yes. All customer data is encrypted at rest and in-transit.

  • In transit, we use HTTPS to encrypt all traffic

  • SSL certificates are provided by Amazon Web Services.

🔏 How do you store sensitive information like user passwords?

We never store plaintext passwords of users.

When you create a user via the API, we hash the password you pass using a password hashing function. We perform 12 rounds of hashing using our own . This is why you may notice a slightly slower than usual API call when you create a user using the or function.

đŸŠčđŸ»â€â™‚ïž How well is Warpgate protected against server vulnerabilities?

Amazon Web Services, where we host our applications, is built with a which immediately grants our DNS and EC instances protection against DDoS attacks,

We prevent SSH access from the outside world and our core applications live behind a load balancer.

  • Fault tolerance: our core API is built using Elixir which is then compiled to native Erlang upon deployment. Erlang is known for fault-tolerance and is known for being used in telecom, banking and messaging platforms.

  • Rate limit: we implement per IP and per user rate limit that prevents users from spamming our GraphQL mutations and queries.

server security
Bcrypt
Salt
register()
signup()
high-level of security