Last updated 11th May 2021
Data in Transit
Data in transit between the World and Web PaaS is always encrypted as all of the sites and tools which Web PaaS supports and maintains require TLS or SSH to access. This includes the Web PaaS management console, Accounts site, Git repositories, Documentation, and Helpdesk.
Data in transit between the World and customer applications is encrypted by default. Only SSH and HTTPS connections are generally accepted, with HTTP request redirected to HTTPS. Users may opt-out of that redirect and accept HTTP requests via
routes.yaml configuration, although that is not recommended. By default HTTPS connections use an automatically generated Let's Encrypt certificate or users may provide their own TLS certificate.
Data in transit on Web PaaS controlled networks (eg. between the application and a database) may or may not be encrypted, but is nonetheless protected by private networking rules.
Did you find this guide useful?
Please feel free to give any suggestions in order to improve this documentation.
Whether your feedback is about images, content, or structure, please share it, so that we can improve it together.
Your support requests will not be processed via this form. To do this, please use the "Create a ticket" form.
Thank you. Your feedback has been received.