I'm not a Cloudflare employee but the
I'm not a Cloudflare employee but the language they use in the tos blog is pretty clear:
These services are explicitly designed to allow customers to serve non-HTML content like video, images, and other large files hosted directly by Cloudflare.It's not hosted directly in this case. Will they take action on you for you? Eh, espec if you're not using a lot of bandwidth, the terms are more focused on big abusers and such. I would ask this though: Why not have your custom app return a presigned url if you're trying to do access enforcement? The way you described would entirely depend on your app's bandwidth/connection/make it a bottleneck for all requests
1 Reply
yes that's actually a better solution, I was not aware of presigned urls, thank you