Exposed port to Hasura is public, undocumented

[TheTrunk]

Ask a question

The GraphQL stack exposes port 8090 to public.

Anyone can go and modify the cardano database, insert, delete data and more.

This can potentially have major impact for someone using the stack or connecting to a stack that can have data modified from outside.

This is especially critical as docker by default bypasses default ufw firewall so a special configuration needs to be done either on docker or ufw side or env vars for graphql stack specified (?)

Ask: Document or disable this public exposure with all security impacts it has.