Authentication and security
API keys, OAuth, rate limiting, and security best practices.
- Privacy-by-design in Leafy Energy integrations
- Logging, auditing and who did what
- Securing home automation integrations (Home Assistant and Homey)
- Securely storing secrets in CI/CD and environment variables
- Rate limiting and protection against abuse
- Scopes and permissions for API access
- Securing webhooks with signatures and secrets
- Issuing, rotating and revoking API keys
- Overview of authentication methods in the Leafy Energy API