The issuer plane is now protected without breaking public verification.
The dashboard, issuance, refreshes, ledger, and sensitive issuer artifacts now require a secure issuer session or issuer key. The public verify page, DID, and status list remain intentionally open.
QR verification remains public.
VC and PDF exports now require an issuer session or a valid public token.
The destructive reseed flow should no longer be used in production.
Open issuer console
Use the issuer access key configured in Railway to enter the Passport dashboard.