27 lines
1.0 KiB
Markdown
27 lines
1.0 KiB
Markdown
|
---
|
||
|
title: "Security"
|
||
|
description: "An overview introduction into Authelia's security features."
|
||
|
lead: "An overview introduction into Authelia's security features."
|
||
|
date: 2022-05-13T12:34:15+10:00
|
||
|
draft: false
|
||
|
images: []
|
||
|
menu:
|
||
|
overview:
|
||
|
parent: "security"
|
||
|
weight: 410
|
||
|
toc: false
|
||
|
aliases:
|
||
|
- /docs/security/
|
||
|
---
|
||
|
|
||
|
The __Authelia__ team takes security very seriously. Because __Authelia__ is intended as a security product a lot of
|
||
|
decisions are made with security being the priority. This section discusses these decisions as well as considerations
|
||
|
users should make when implementing __Authelia__.
|
||
|
|
||
|
## Coordinated vulnerability disclosure
|
||
|
|
||
|
__Authelia__ follows the [coordinated vulnerability disclosure](https://en.wikipedia.org/wiki/Coordinated_vulnerability_disclosure)
|
||
|
model when dealing with security vulnerabilities. This was previously known as responsible disclosure. We strongly
|
||
|
urge anyone reporting vulnerabilities to __Authelia__ or any other project to follow this model as it is considered
|
||
|
as a best practice by many in the security industry.
|