Setup & configure mTLS certificates
Encrypt communication between applications using self-signed or user supplied x.509 certificates
Security
Configure endpoint authorization with OAuth
Enable OAuth authorization on application endpoints for your web APIs
Enable API token authentication in Dapr
Require every incoming API request for Dapr to include an authentication token before allowing that request to pass through
Authenticate requests from Dapr using token authentication
Require every incoming API request from Dapr to include an authentication token
How-To: Apply workflow access policies
Restrict which applications can invoke workflow and activity operations on a target application