Backoffice Post-launch Tasks (24β48h)
-
Flip CSP to enforce
- File:
toto-bo/src/app/middleware.ts - Replace
Content-Security-Policy-Report-OnlywithContent-Security-Policy - Target date: 2025-08-12
- Verify no console CSP violations before flipping
- File:
-
Monitoring & alerts
- Uptime check on
/api/health - Error alerts for 5xx spikes
- Uptime check on
-
Rate limiting follow-up
- Evaluate persistent/edge rate limiting (Cloud Armor, Redis) if needed