If you are running the application on a remote server, you should secure the server so that no one except you has access to it. Because Jesse is a self-hosted application, it is not supposed to be accessible by the public. That makes it much easier to secure the application.
I will mention two methods here, but security is a big topic. Nonetheless, I think these two methods are enough.
Change the password (PASSWORD) in your .env file. Make sure to set it to something secure. You can use a password generator serviceopen in new window to generate a strong password.
2. Limit access to your IP address via the firewall
The dashboard is supposed to be accessible only by you. That makes it easy to secure. So the best and easiest way is to close all incoming ports except for the ones you need. But even for ports that we need, it would be much safer if we could limit access to trusted IP addresses only.
I will show you how to do it via ufw which is a popular firewall that ships with Ubuntu 20.04:
# to see if ufw is installed and activated ufw status # if it's active, stop it: systemctl stop ufw # allow all outgoing traffic ufw default allow outgoing # deny all incoming traffic ufw default deny incoming # allow ssh port (22) ufw allow ssh # If you don't have specific IP addresses, you can open the targeted port # (9000 by default) for all, but it's best to allow specific IP addresses only. # Assuming your IP addresses are 188.8.131.52, 184.108.40.206, and 220.127.116.11, run: ufw allow from 18.104.22.168 to any port 9000 proto tcp ufw allow from 22.214.171.124 to any port 9000 proto tcp ufw allow from 126.96.36.199 to any port 9000 proto tcp # enable the firewall ufw enable # check the status ufw status numbered # restart ufw to apply the changes systemctl restart ufw