tags:

views:

322

answers:

1
Q: 

Using a CDN like Amazon S3 to control access to media

Hi.

I want to use Amazon S3/CloudFront to store flash files. These files must be private as they will be accessed by members. This will be done by storing each file with a link to Amazon using a mysql database. My problem is this... A high level member who has access to lots of flash files and content can simply find out the URL and then browse to it using the address bar, and share this with other members. As they are both using the http protocol, does this mean I can't prevent this?

I thought about htaccess but as its Amazon's own server I'm not sure. I looked at the Access Control documentation but it was a bit unclear.

Also while im here does anyone know a working method for stopping the flash media from showing up in the firefox Tools > Page Info > Media? I saw a post on here about a dummy loader but they don't work as pointed out because you can just download and change the file extension. There are sites out there that do it but I wan't to avoid expensive software licences etc.

Sorry thats so lengthy :) Big thanks!

+1  A: 

You can maintain ACL at your end and make every file on S3 private. Check if a particular member has access to some file, if yes then generate the signed URL for that particular file(you can set the expiry time of the link) at application end and give to user.

bhups  2009-11-21 19:09:18
Thanks for the reply. So the link will be generated by Amazon? As an example, would I check the user has bought the file on my end and then re-direct the page to some sort of S3 url generator scrip? Or will it be done via a php scrip? Just not sure what to store in the database. I was going to store the filename but not sure of the process.
whamo  2009-11-23 23:08:29
Store the file name in the DB, then check if member has access to the file, then generate the signed URL (you can do it in php, http://undesigned.org.za/2007/10/22/amazon-s3-php-class/documentation#getAuthenticatedURL) then either redirect user to this URL or use this URL at the user end to do something. Make sure to provide lifeTime to getAuthenticatedURL, otherwise the signed URL will work for 24 hours.
bhups  2009-11-24 09:57:31
That sounds like the business, cheers for your pointers mate
whamo  2009-11-24 22:21:30

related questions

Any way to have an ActionScript 3 (Flex/AIR) project print to standard output?
How can I make flash cs3, actionscript send events to javascript?
Large File Download
3.1 or 5.1 audio in Flash
Drawing a custom label on a pie chart in Yahoo's Flash Library ASTRA
How do you use a flash object as a link?
Is there a way to render svg data in a swf at runtime?
How can I resize a swf during runtime to have the browser create html scrollbars?
What does this javascript error mean? Permission denied to call method to Location.toString
Flash designer/coder collaboration best practices
FLVPlayback component memory issues
Create an EXE from a SWF using Flex 3 without requiring AIR?
Is there some way to show HTML content inside Flash?
FOSS tools for Flash development
Silverlight vs Flex
Best Practices for AS3 XML Parsing
How do I call a Flex SWF from a remote domain using Flash (AS3) ?
ActionScript 3.0 sockets can't reconnect
What are the options for delivering Flash video?
Best practices for building Flash video player
How to make a Flash movie with a transparent background
What are effective options for embedding video in an ASP.NET web site?
What are the best solutions for flash charts and graphs?
Best way to learn Flash?
Displaying Flash content in a C# WinForms application