Security

Scriibo security controls are implemented across authentication, role restrictions, backend processing, and operational monitoring.

Access Control

Sensitive areas are gated by authentication and role-aware access rules.

- Protected pages for authenticated operations
- Role-specific actions for user and payment management
- Unauthorized access handling paths in frontend routing

Request Protection

Backend interactions include request controls used in active workflows.

- CSRF token handling for sensitive requests
- Backend API processing for transcription and AI tasks
- Rate-limited endpoints in selected API flows

Key and Processing Controls

AI provider keys are managed in backend flows and used server-side for shared operations.

- Backend-side key usage for frontend-triggered AI actions
- Operational visibility through monitor and insights
- Server-side persistence for key-driven AI workflows

Settings Monitor