Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
We use Amazon S3 for storing large files, so we use direct upload from user’s browser as described here: http://aws.amazon.com/articles/1434
My question is:
could I somehow hide form’s action URL so user won’t be able to find out where the file is being uploaded? Would it be 100% hiden or could I just at least make it harder for experienced users to find it?
Thanks.
Well, you need to give the information to the user so that they can use it to upload to S3… the only way to hide it would be to have them POST to your server, where you then re-POST it to S3, but that defeats the purpose doesn’t it?
What’s the concern, exactly? The document you linked shows that you have to sign everything so they know that only you could’ve made that form… so it’s not like anybody can get at your data, anyway.