nukely
Explore posts from serversCDCloudflare Developers
•Created by nukely on 3/10/2025 in #general-help
Chatbot as a service security
I am building a chatbot-as-a-service using nextjs where clients can set up a chatbot and get an
<iframe> code to embed on their website. The problem is that anyone can copy this <iframe> code and use it on their own site.
Even if I set up CORS, request headers can be modified before sending the request, making it possible to bypass restrictions. What’s the best way to securely allow only authorized websites to use the chatbot?1 replies
TTCTheo's Typesafe Cult
•Created by nukely on 12/26/2024 in #questions
client - uploadthing architecture
https://docs.uploadthing.com/getting-started/appdir
I am new to uploadthing, want upload large video files directly from client's broswer to uploadthing, without first uploading from client to server then UT,
so i was reading this docs and i am curious that are we uploading the whole file to the nextjs backend and then to UT or else we are only using nextjs API routes to authenticate. i want some DB interactions in the middleware before user ables to upload.
4 replies