Depends on which external service you use. Most likely you will need to proxy credential between different services. Amazon S3 doesn't have per user ACL I believe. The simplest way in mind: you put your s3 credential in your code, when a user request comes in, you check user credential, if verified you generated a timed url of S3 and redirect user there.
On Nov 3, 3:44 pm, jivany <[EMAIL PROTECTED]> wrote: > Thanks to all of you for all of the info so far! > > What I was thinking is that you would simply have the GAE app generate > the appropriate URL for the external server. I don't really care if > the end user sees that the images are coming from another site. > > What I do care about is ensuring that the URLs are only accessible if > the user is authenticated to the GAE app (and thus either a Google or > a Google Apps account for my domain). I've been looking at the Account > Authentication API (http://code.google.com/apis/accounts/) but I'm not > sure if this would allow my remote server to automatically > authenticate each request for an image. > > Jeff > > On Nov 3, 2:53 pm, yejun <[EMAIL PROTECTED]> wrote: > > > I don't think urlfetch is a good way to get remote object especial > > large one like images, you will be double charged by network usage. > > I think HTTP 302 redirect with url based authentication would be a > > more economical solution. > > > On Nov 3, 12:45 pm, "[EMAIL PROTECTED]" > > > <[EMAIL PROTECTED]> wrote: > > > A solution based off of this > > > :http://stuporglue.org/restrict-access-jpg-htaccess.php > > > on your remote server. > > > > Use urlfetch to return and display the images. You'll need to > > > determine the best method for passing off to the remote server that > > > the request is from a validated GAE user, but that should be simple > > > enough for you to figure out without posting the information in a > > > group which is indexed by search engines allowing people to easily > > > bypass whatever you put in place. > > > > On Nov 3, 12:28 pm, yejun <[EMAIL PROTECTED]> wrote: > > > > > You can use amazon S3 storage for now which support query string > > > > authorization. I believe google will offer large file storage in the > > > > near future. > > > > > On Nov 3, 11:19 am, jivany <[EMAIL PROTECTED]> wrote: > > > > > > Part of me thinks this is a stupid question and I'm over-complicating > > > > > the solution but... > > > > > > I have a server with a large amount of storage space available. I'd > > > > > like to use that space to serve up images through a GAE app. The > > > > > reason I want a GAE app is so I can integrate with my Google Apps on > > > > > my domain. The reason I want to use the other server is because it's > > > > > paid for and has a much higher storage limit than the 500MB on GAE. > > > > > > I think the easiest way is to just have the GAE app get the browser to > > > > > pull the images from the external server. My concern is finding a way > > > > > to secure the external images so that they can only be accessed with a > > > > > valid Google account (as if they were on GAE). > > > > > > Can anyone point me in the right direction to do something like this? > > > > > Am I over-complicating this? --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to google-appengine@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en -~----------~----~----~----~------~----~------~--~---
