website

History

Noah Petherbridge 7869ff83ba Signed and Authenticated Static Photo URLs * Add support for authenticated static photo URLs, leveraging the NGINX module ngx_http_auth_request. The README is updated with an example NGINX config how to set this up on the proxy side. * In settings.json a new SignedPhoto section is added: not enabled by default. * PhotoURL will append a ?jwt= token to the /static/photos/ path for the current user, which expires after 30 seconds. * When SignedPhoto is enabled, it will enforce that the JWT token is valid and matches the username of the current logged-in user, or else will return with a 403 Forbidden error.	2024-10-03 18:04:14 -07:00
..
chat.go	Signed and Authenticated Static Photo URLs	2024-10-03 18:04:14 -07:00

Noah Petherbridge 7869ff83ba Signed and Authenticated Static Photo URLs

* Add support for authenticated static photo URLs, leveraging the NGINX module
  ngx_http_auth_request. The README is updated with an example NGINX config
  how to set this up on the proxy side.
* In settings.json a new SignedPhoto section is added: not enabled by default.
* PhotoURL will append a ?jwt= token to the /static/photos/ path for the
  current user, which expires after 30 seconds.
* When SignedPhoto is enabled, it will enforce that the JWT token is valid and
  matches the username of the current logged-in user, or else will return with
  a 403 Forbidden error.

2024-10-03 18:04:14 -07:00

chat.go

Signed and Authenticated Static Photo URLs

2024-10-03 18:04:14 -07:00