Static files are served without hitting your application code, so no way to control access to them -- they are public. If you need access control, the files have to go in /uploads or some other private folder.
Anthony On Tuesday, February 14, 2012 4:41:20 AM UTC-5, JimK wrote: > > I'm creating a webapp that would list some videos that would be > displayed only to logged in users. My question is, how can I keep > people from stealing the URLs to my videos in my static folder and > downloading my assets? I can digitally sign the static URLs but where > would I put the URL.verify? Is there another way that I'm unaware > of?? > > Thanks, > > JimK
