PAPER MODEPaper Broker Connected Live Trading Locked

Settings

Admin settings for sessions, notifications, credentials metadata, and safety defaults. Secrets are stored through environment variables or encrypted storage only.

PAPER FIRST

Admin Login Rotation

Rotated Login
Passwords are never written to audit payloads.

Broker Credential Metadata

No Secrets

Record rotation evidence only. Raw broker passwords, API keys, session tokens, and secret values are rejected and must stay in environment variables or managed secrets.

BrokerLabelRotatedRevokedPermissions
No records yet.

Settings Checklist

  • Rotate the seeded admin login before production and after any shared setup session.
  • Set strong SESSION_SECRET and CSRF_SECRET values; generate APP_ENCRYPTION_KEY with openssl rand -base64 32.
  • Use DigitalOcean managed environment variables for broker credentials.
  • Rotate broker API keys, record rotation metadata, and keep IP allowlists current.