Sign (file) URLs with userId as payload #4793
Answered
by
thetutlage
marvin-wtt
asked this question in
Help
-
I'd like to be able to ensure that file URLs can only be accessed by a user with sufficient permissions. Currently, the URL can be accessed by everyone within the validity time of the signature. This is a problem. |
Beta Was this translation helpful? Give feedback.
Answered by
thetutlage
Nov 13, 2024
Replies: 1 comment
-
You can encode the |
Beta Was this translation helpful? Give feedback.
0 replies
Answer selected by
marvin-wtt
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
You can encode the
userId
within the URL and then during verification you can manually check that the payload userId matches the user id of the logged-in user.