to help implement a basic version of this logic, or are you looking for more security hardening tips for your setup?