Autentifikatsiya
Flask-Login sessiya, 30 daqiqa timeout, parol hash
Production darajasidagi himoya, shifrlash va audit
Flask-Login sessiya, 30 daqiqa timeout, parol hash
Flask-WTF token, 1 soat amal qilish muddati
HttpOnly, SameSite=Lax, Secure cookie productionda
Yuz foto, QR sessiya, kirishdan oldin gate
Hikvision parollari Fernet bilan shifrlangan
HMAC imzo, Zero Trust rejimi, correlation ID
Xavfsizlik ro'yxati va yuz hodisalarida tekshiruv
Prometheus /metrics, /health, /ready, Telegram alert
ELEMES production muhitida qo'shimcha himoya choralari
FORCE_HTTPS_REDIRECT va Secure cookie productionda yoqiladi
Productionda standart parol va secret bilan ishga tushirish bloklanadi
Faollik jurnallari, Face ID loglari va correlation ID izlash