Skip to content

[Connector] Improve offline match endpoint authentication #409

Closed
5stackgg/game-server-node-connector
#8
Closed
[Connector] Improve offline match endpoint authentication#409
5stackgg/game-server-node-connector
#8
Labels
P1-highStability & reliabilityaudit-2026-03From March 2026 codebase auditsecuritySecurity vulnerability or hardeningservice:connector5stackgg/game-server-node-connector service
@Flegma

Description

@Flegma
Flegma
opened on Mar 26, 2026

Summary

The offline match management endpoint authentication mechanism needs strengthening to use proper secrets.

Tasks

  • Replace current authentication credentials with a dedicated secret
  • Ensure credentials are not derivable from public information

Impact

Could allow unauthorized access to match management endpoints.

Details

Full details in internal audit document. Finding IDs: HIGH-CONN-05

Related Issues (Security Hardening Pattern)

Metadata

Metadata

Assignees

No one assigned

    Labels

    P1-highStability & reliabilityaudit-2026-03From March 2026 codebase auditsecuritySecurity vulnerability or hardeningservice:connector5stackgg/game-server-node-connector service

    Type

    No type

    Projects

    5stack - Roadmap

    Status

    Done

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions