We intend to secure the download link with the access control defined in the KMC. Especially we would like to check if the referer of the request is one defined domains in the access control profile.
In result that the entries, which are secured with a access control rule, are no longer accessable through the generated links like "https://www.mydomain.com/p/105/sp/10300/serveFlavor/entryId/0_1r42g4bn/v/2/flavorId/0_v5t5j6m4/forceproxy/true/name/a.mp4" if they dont match the access rules.
In addition if the entry is in moderation it should not be accessable with this link and even if the scheduling is expired it should deny the access.
We would like to implement a solution in the right part of the code. Where could we achieve a solution for this?
↧
Secure links with access control profile, scheduling and moderation
↧