Authelia is commonly used as access gateway in front of internal apps.\n\n## Access Gateway Security\n\n- Enforce MFA for privileged app policies.\n- Protect session and encryption keys in dedicated secret stores.\n- Restrict trusted reverse proxy headers to known proxies.\n\n## Identity Backend and Logging\n\n- Secure LDAP/DB backends with TLS and least privilege.\n- Monitor failed login and brute-force events.\n- Rotate JWT/session secrets during incident response.