Welcome! Log In Create A New Profile

Advanced

Secure Link Expires - URL Signing

January 10, 2018 03:15AM
URL Signing by Secure Link MD5 , restricts the client from accessing the secured object for limited time using below module

Exp time is sent as query parameter from client device

secure_link $arg_hash,$arg_exp;
secure_link_md5 "secret$arg_exp";
if ($secure_link = "") {return 405;}
if ($secure_link = "0") {return 410;}

Here problem is that if expiry time i.e exp send from client is less than server time nginx module returns 410 .

But if some client changes the time of device to some future date and request for object in that case also object will be delivered as client time will be greater than server time.
Is there a way to restrict the request, by secure link module, to future time so that for example object should be accessible only for 1 hour time duration from current time.
Please suggest
Subject Author Posted

Secure Link Expires - URL Signing

anish10dec January 10, 2018 03:15AM

Re: Secure Link Expires - URL Signing

Francis Daly January 10, 2018 03:50AM

Re: Secure Link Expires - URL Signing

anish10dec January 10, 2018 01:32PM

Re: Secure Link Expires - URL Signing

Richard Stanway via nginx January 10, 2018 01:50PM

Re: Secure Link Expires - URL Signing

Francis Daly January 10, 2018 06:02PM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 68
Record Number of Users: 6 on February 13, 2018
Record Number of Guests: 185 on January 31, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready