Security

Best practices for securing your applications and data

7 articles

Using private Composer packages in your application

Install private Composer packages (Private Packagist, GitHub, GitLab, Bitbucket) by setting `COMPOSER_AUTH` as a build secret. Full JSON examples for each provider.

4 min read

Security Best Practices

Essential security practices for applications deployed on Ploi Cloud, including domain validation and multi-layer protection.

2 min read

IP ranges for security whitelisting

Access the IP ranges used by your applications for configuring external service whitelists and firewall rules.

1 min read

Nginx security headers

Production-ready Nginx security headers for 2026: CSP, HSTS, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Copy-paste config + per-header explanations.

4 min read

Custom nginx configuration

Add custom nginx server directives to your PHP applications for advanced configuration needs.

2 min read

Basic authentication

Protect your application with username and password authentication before visitors can access your site.

2 min read

Wildcard SSL Domains

Activate free wildcard SSL for any custom domain on Ploi Cloud. Automatic Let's Encrypt provisioning, DNS-01 challenge handled for you, no extra setup.

3 min read