I want to allow users on my website to upload images using Cloudinary and am looking at security best practice - the use case is a malicious user who is uploading images over and over in order to try and create problems.
I am guessing I should use signed uploads so that the signature is only valid for one hour....if an image is uploaded using that signature, is this a one time thing? i.e. if the malicious user tries to upload another image using the same signature, will this fail?
Also, if image upload is done in the browser, is it possible for my servers to be notified via Cloudinary servers when an image is uploaded?
(If there is a blueprint for best practice architecture for my use case, please do let me know)
Thanks and best wishes
Please sign in to leave a comment.