how to secure downloading mp3 or flv files in nginx

Thanos Chatziathanassiou tchatzi at arx.net
Mon Jun 15 13:33:28 MSD 2009


On Mon, 15 Jun 2009 13:11:09 +0400, Igor Sysoev wrote:

> On Mon, Jun 15, 2009 at 05:05:31PM +0800, Delta Yeh wrote:
> 
>> Please refer to secure_link module
> 
> No, ngx_http_secure_link has no timestamp information, it's just for URL
> validating.
> 

I've found nginx-accesskey module 
(http://wiki.nginx.org/Nginx3rdPartyModules#Access_Key_Module) 
quite useful for this.

something like:

        location ~ \.flv$ {
            accesskey   on;
            accesskey_hashmethod        md5;
            accesskey_arg       "key";

            accesskey_signature "secret_$remote_addr";
        }

in the config and  then the link would be 

http://host/download.php?key=<md5 hash of secret_REMOTE_ADDR>

mind you, the link will be available indefinitely (ie will not expire) 
and won't work if the users REMOTE_ADDR changes between requests (eg is 
behind a round-robin cluster of proxies).
But perhaps another variable can control both these factors..







More information about the nginx mailing list